Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/9457c7-bdfe-4c8a-8f54-747d88367adc/1/HEf2Qr9JJtBjp-zlAzDX4LWj7KM.roa
File: HEf2Qr9JJtBjp-zlAzDX4LWj7KM.roa (raw, json)
Hash identifier: wARLGoFr2macLDTgaBEG3lHxaW5BW5y4d8tRIr6sXA8=
Subject key identifier: 1C:47:F6:42:BF:49:26:D0:63:A7:EC:E5:03:30:D7:E0:B5:A3:EC:A3
Certificate issuer: /CN=5fd351e5eb2962fc16fc14e7c6e51b84ad1de8b5
Certificate serial: 018CC6B8D9A7A3DF1376E149613C9C13A261
Authority key identifier: 5F:D3:51:E5:EB:29:62:FC:16:FC:14:E7:C6:E5:1B:84:AD:1D:E8:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X9NR5espYvwW_BTnxuUbhK0d6LU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/9457c7-bdfe-4c8a-8f54-747d88367adc/1/HEf2Qr9JJtBjp-zlAzDX4LWj7KM.roa
Signing time: Mon 01 Jan 2024 20:30:52 +0000
ROA not before: Mon 01 Jan 2024 20:30:52 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 185.140.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:b8:d9:a7:a3:df:13:76:e1:49:61:3c:9c:13:a2:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fd351e5eb2962fc16fc14e7c6e51b84ad1de8b5
Validity
Not Before: Jan 1 20:30:52 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c47f642bf4926d063a7ece50330d7e0b5a3eca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:5d:c2:fb:ab:2a:15:03:b5:8f:5c:f2:6c:98:
35:6c:51:2a:9f:c1:52:2c:de:6c:f3:52:92:c7:7b:
b7:80:69:55:0c:c7:f6:ba:05:bd:e3:75:16:b9:b3:
f0:7e:a1:33:0c:eb:90:8d:3b:c0:36:e7:a1:dc:7d:
8b:7e:82:47:76:75:41:9f:c3:ab:e2:a9:e6:07:b4:
80:7a:9f:ab:64:e0:c5:66:3c:ea:be:58:a9:5a:66:
dd:8b:8e:7f:ff:69:3d:77:6d:dd:c2:03:b1:ea:76:
31:cd:cd:99:ac:cd:c9:cd:b0:78:a8:70:3d:20:81:
fa:49:e2:82:6a:12:f6:4b:86:2f:6e:0d:27:8f:cc:
b4:0b:1e:db:cd:6a:3d:a4:ff:d4:eb:c2:c5:68:cc:
3f:28:05:e4:e8:df:9c:d3:f2:a1:1f:ab:97:c1:5b:
6c:fb:b9:fd:5b:0b:e9:c0:9e:62:a4:84:06:d7:c1:
34:f6:7b:70:0d:85:fe:38:42:eb:d7:e8:af:64:50:
75:5a:c7:a8:61:89:23:88:64:5f:45:d5:66:4b:f1:
ee:0e:18:79:b8:f9:d0:1b:5e:9f:8c:80:7f:58:42:
3b:1b:8c:cd:6f:bd:d8:a9:ed:9f:d4:dc:5d:74:af:
d7:81:56:e2:01:a8:99:7b:cf:7d:62:50:27:a7:5d:
1e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:47:F6:42:BF:49:26:D0:63:A7:EC:E5:03:30:D7:E0:B5:A3:EC:A3
X509v3 Authority Key Identifier:
keyid:5F:D3:51:E5:EB:29:62:FC:16:FC:14:E7:C6:E5:1B:84:AD:1D:E8:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X9NR5espYvwW_BTnxuUbhK0d6LU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/9457c7-bdfe-4c8a-8f54-747d88367adc/1/HEf2Qr9JJtBjp-zlAzDX4LWj7KM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/9457c7-bdfe-4c8a-8f54-747d88367adc/1/X9NR5espYvwW_BTnxuUbhK0d6LU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.140.172.0/24
Signature Algorithm: sha256WithRSAEncryption
18:1b:43:4c:fe:3c:d4:88:3a:0c:63:ea:20:bf:a4:53:d1:3e:
85:14:83:62:ea:ba:6d:14:b2:9b:7b:ec:47:b7:95:65:b4:c5:
62:d4:ab:7c:d7:31:36:b2:35:bd:77:88:5f:c4:de:55:80:b5:
cc:b6:9a:d4:0f:21:01:ac:3b:97:c9:3e:9b:44:ac:b2:25:60:
9f:47:f6:f0:09:71:97:1c:3b:dd:eb:fb:94:13:46:92:57:17:
fd:e5:89:d7:3e:f7:e9:8d:b7:f0:51:ee:9a:a6:e4:2d:0e:f1:
21:e8:f5:83:7d:f8:be:26:6e:c4:f9:ad:36:86:30:51:bc:d4:
9f:f8:1c:4e:a7:65:26:2a:96:17:fa:23:89:eb:4c:ff:f9:be:
08:07:28:c1:bd:ca:ed:86:d6:5c:fd:29:23:b3:c3:6e:04:68:
8f:5a:1d:65:1c:99:50:0e:4b:cb:90:0b:2a:5b:7b:f9:41:c8:
8a:da:27:3b:e5:5e:2b:11:27:50:24:48:2f:d0:a6:4e:c8:23:
b2:dd:75:41:cf:d2:5e:6c:7c:c1:c0:1c:b7:3c:bd:71:4b:14:
cc:c9:fc:98:af:6b:db:50:29:c8:08:54:eb:f5:72:d1:04:5f:
91:8d:98:68:c3:2e:a5:16:96:b9:79:aa:a1:c9:80:84:b3:4a:
52:9b:e6:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:53 2024 by rpki-client on console-ams.rpki-client.org