Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/eeb67b-adb4-458a-93be-7e9d73304d7c/1/k7M9FdKGnYkEt8Iq6UW5G7mCJws.roa
File: k7M9FdKGnYkEt8Iq6UW5G7mCJws.roa (raw, json)
Hash identifier: U4pIltpwoeswCeqIERUCvRmtuqJH73vpmXYIjDApOpc=
Subject key identifier: 93:B3:3D:15:D2:86:9D:89:04:B7:C2:2A:E9:45:B9:1B:B9:82:27:0B
Certificate issuer: /CN=1f5a551d52a15f67a586e0efb62a0af2896909e8
Certificate serial: 018CC493928593895F2E6A54016CA20A02E2
Authority key identifier: 1F:5A:55:1D:52:A1:5F:67:A5:86:E0:EF:B6:2A:0A:F2:89:69:09:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H1pVHVKhX2elhuDvtioK8olpCeg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/eeb67b-adb4-458a-93be-7e9d73304d7c/1/k7M9FdKGnYkEt8Iq6UW5G7mCJws.roa
Signing time: Mon 01 Jan 2024 10:30:54 +0000
ROA not before: Mon 01 Jan 2024 10:30:54 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 20723
IP address blocks: 185.111.96.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:93:92:85:93:89:5f:2e:6a:54:01:6c:a2:0a:02:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f5a551d52a15f67a586e0efb62a0af2896909e8
Validity
Not Before: Jan 1 10:30:54 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=93b33d15d2869d8904b7c22ae945b91bb982270b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:2c:f2:92:f5:ce:89:39:c8:95:7a:39:9f:65:
ca:64:8a:8e:bd:2e:1a:35:de:58:ca:e5:99:db:bc:
51:04:8e:9d:3d:11:18:1b:9d:08:26:28:4c:43:e7:
b2:43:9d:bb:88:bf:15:89:24:c0:f9:de:6c:ea:34:
e2:1a:39:67:fe:fd:14:c6:01:f9:b2:fc:d7:1e:0c:
14:5d:3c:f7:df:54:7b:4e:bc:c0:fc:3f:f5:54:23:
93:8c:70:c1:e6:99:86:93:03:9b:08:15:20:c5:68:
5f:44:d3:ef:bb:e0:6f:01:a2:c9:bd:0c:8c:3f:6f:
bf:eb:4f:a5:f6:64:af:b9:20:43:f4:79:8e:91:e3:
bc:df:91:bb:c9:4c:ca:2b:d7:d9:e3:c1:fc:4b:59:
0c:fb:d0:80:78:d0:99:2c:86:bd:9e:a5:9b:4b:d0:
62:ea:7c:db:f0:10:46:e5:a6:c0:da:3e:76:30:2d:
18:7e:65:c3:8c:94:63:a5:4d:7e:c1:f4:20:6f:86:
02:ef:1a:c5:6a:af:61:6b:16:de:a1:ac:7a:26:82:
1f:db:71:ef:08:a8:fe:44:75:ae:97:b9:eb:bb:dd:
09:1d:44:24:55:55:8f:21:37:d1:24:f7:4b:7c:62:
64:dd:eb:07:6d:0a:54:31:35:93:8b:49:e5:9c:a7:
d8:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:B3:3D:15:D2:86:9D:89:04:B7:C2:2A:E9:45:B9:1B:B9:82:27:0B
X509v3 Authority Key Identifier:
keyid:1F:5A:55:1D:52:A1:5F:67:A5:86:E0:EF:B6:2A:0A:F2:89:69:09:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H1pVHVKhX2elhuDvtioK8olpCeg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/eeb67b-adb4-458a-93be-7e9d73304d7c/1/k7M9FdKGnYkEt8Iq6UW5G7mCJws.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/eeb67b-adb4-458a-93be-7e9d73304d7c/1/H1pVHVKhX2elhuDvtioK8olpCeg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.96.0/22
Signature Algorithm: sha256WithRSAEncryption
21:98:51:1e:6e:34:d5:f3:34:3e:0a:36:ea:01:41:19:47:88:
ae:95:3a:64:a1:95:62:41:01:7f:8c:c5:00:b3:11:66:3e:46:
ce:18:e9:56:3f:c5:d7:6e:09:9b:a8:a5:ea:84:c9:ff:c6:52:
98:18:1c:58:f0:d4:34:0c:b6:a9:d9:3b:05:71:11:45:f3:e7:
0a:56:9b:52:3c:40:39:34:5c:08:9d:ff:b9:64:58:97:29:8d:
d1:d3:1e:29:ff:58:5f:a9:e4:7a:c7:2e:17:37:ec:f8:54:82:
49:7e:11:4a:e0:f3:d2:96:12:6a:ad:01:88:29:c9:65:ad:85:
60:cc:8a:84:98:86:09:00:e5:06:09:2a:17:62:fd:c4:20:4b:
32:84:94:d4:7a:36:6d:a5:26:a7:18:23:ee:af:78:d1:18:2c:
0e:94:d5:73:92:b0:1b:83:75:1f:a0:c4:4e:c9:10:08:b7:c1:
58:25:d4:14:9d:6e:bf:4b:cd:e0:a2:1c:fd:f5:d2:a0:47:42:
42:d2:f1:ea:5a:77:9c:cd:24:9d:88:5d:eb:d4:80:91:69:50:
5d:f9:0a:55:e8:cb:aa:43:d0:94:af:8d:13:6b:aa:eb:c0:53:
c3:ce:2d:88:69:25:78:d1:61:83:e9:3b:7b:d6:64:de:d9:bf:
3c:79:b6:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:14 2024 by rpki-client on console-fra.rpki-client.org