Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/58669d-ee10-4d67-a92a-d255b2957f0b/1/P934H1Py1sgztmin6KRA_5D7m2s.roa
File: P934H1Py1sgztmin6KRA_5D7m2s.roa (raw, json)
Hash identifier: HzaiM4aZZRePZ8wTnHB8Ppz6yEw903HrJHoPi9apxa4=
Subject key identifier: 3F:DD:F8:1F:53:F2:D6:C8:33:B6:68:A7:E8:A4:40:FF:90:FB:9B:6B
Certificate issuer: /CN=96535afeee1cddf49a4a049cca68e3b3db00c0a8
Certificate serial: 08C24B8F
Authority key identifier: 96:53:5A:FE:EE:1C:DD:F4:9A:4A:04:9C:CA:68:E3:B3:DB:00:C0:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/llNa_u4c3fSaSgScymjjs9sAwKg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/58669d-ee10-4d67-a92a-d255b2957f0b/1/P934H1Py1sgztmin6KRA_5D7m2s.roa
Signing time: Sat 01 Jan 2022 03:56:01 +0000
ROA not before: Sat 01 Jan 2022 03:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57140
IP address blocks: 185.145.40.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146951055 (0x8c24b8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96535afeee1cddf49a4a049cca68e3b3db00c0a8
Validity
Not Before: Jan 1 03:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fddf81f53f2d6c833b668a7e8a440ff90fb9b6b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:9a:8e:b0:58:11:51:2f:cd:b1:3d:f9:6d:f0:
d6:ba:44:95:2a:64:53:eb:de:fd:e9:e0:0d:27:1e:
ef:7b:f3:bb:08:c3:d4:53:2b:9b:db:46:e5:fb:7c:
fe:99:c4:69:b3:d9:39:e8:b5:18:08:48:6a:e0:aa:
8e:78:9f:65:d5:46:46:e6:f2:0d:5a:3d:a2:87:99:
08:bc:5a:73:cf:db:20:47:42:1d:c8:a9:85:a0:ac:
f0:c9:d8:fb:e1:9e:68:c7:39:a9:a6:60:12:c7:27:
e1:6c:c9:bd:0f:27:12:7a:6e:36:bc:01:e6:97:5d:
c3:80:28:5b:cb:bb:60:67:7c:31:97:8e:c4:1d:a5:
6e:2a:d3:b3:98:8d:ec:0f:d9:0e:e4:52:15:fb:8c:
a5:81:03:e7:41:92:ed:5b:e9:27:58:a1:3c:56:76:
02:02:ae:e3:ce:95:fb:8a:3f:73:e8:69:b6:3d:3c:
b5:d9:f2:ea:33:41:cb:c4:36:a0:12:05:ab:5a:20:
43:55:55:05:cf:6e:82:f3:89:5c:61:8c:8e:0d:ae:
a2:bd:ab:6d:82:8a:6e:de:dd:1e:1b:64:6c:f9:1c:
e5:45:aa:99:b8:b7:54:77:1a:ba:d6:d6:48:6d:6f:
cc:dc:2c:85:02:f9:2a:1e:6f:e0:08:a8:dd:94:31:
89:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:DD:F8:1F:53:F2:D6:C8:33:B6:68:A7:E8:A4:40:FF:90:FB:9B:6B
X509v3 Authority Key Identifier:
keyid:96:53:5A:FE:EE:1C:DD:F4:9A:4A:04:9C:CA:68:E3:B3:DB:00:C0:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/llNa_u4c3fSaSgScymjjs9sAwKg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/58669d-ee10-4d67-a92a-d255b2957f0b/1/P934H1Py1sgztmin6KRA_5D7m2s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/58669d-ee10-4d67-a92a-d255b2957f0b/1/llNa_u4c3fSaSgScymjjs9sAwKg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.145.40.0/22
Signature Algorithm: sha256WithRSAEncryption
32:7c:0b:ec:65:ee:de:c6:0b:3e:00:fd:f0:a4:72:8e:c3:90:
24:18:c2:8e:23:25:53:55:be:43:91:ef:39:97:eb:f0:82:83:
3f:14:e7:f0:c5:b2:a1:27:d6:c6:b1:bf:98:e0:73:ac:58:92:
24:44:e5:16:4f:03:68:34:eb:0f:5f:33:34:a3:6b:5c:ce:4b:
f8:2f:ae:7d:9b:15:88:7d:7d:66:55:04:a7:7c:76:96:99:ae:
d5:ad:b6:cf:f2:5a:ad:2a:42:f6:99:b6:55:43:e2:1e:de:6c:
e5:36:7d:33:c4:ab:aa:e6:51:9d:19:f8:d9:f2:5e:41:62:d2:
6b:4b:1e:70:23:f6:33:79:58:55:9f:e1:7e:f1:70:f1:f7:75:
33:fa:3d:53:b1:c7:fc:23:38:62:09:f3:d7:d7:4d:0b:9a:db:
95:5a:c1:af:ba:86:2e:be:b5:1a:42:29:40:a3:77:4b:2a:f3:
62:ab:21:fe:4c:2c:43:f0:17:50:12:36:fd:ed:69:71:93:71:
22:62:9c:32:0d:c6:c9:4e:71:a7:e5:b8:d1:bd:d6:70:ce:93:
a8:9a:0b:e9:09:74:0c:f0:87:b2:2e:ec:d9:23:75:55:55:8f:
6a:fd:dd:bb:da:09:59:1f:34:99:07:5e:f9:d8:30:2e:1c:68:
5d:e2:8e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:25 2023 by rpki-client on console-ams.rpki-client.org