Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6b7daf-f02c-46d4-aae7-e4f2c0498f84/1/NzHjuAKnR5fbP1GzXFgTb4ShehU.roa
File: NzHjuAKnR5fbP1GzXFgTb4ShehU.roa (raw, json)
Hash identifier: X5DbOUM9Yx1qkYjDsNohloa3jZjB65m1cj9mp9ppG5k=
Subject key identifier: 37:31:E3:B8:02:A7:47:97:DB:3F:51:B3:5C:58:13:6F:84:A1:7A:15
Certificate issuer: /CN=266ae156688b87e26e0f40f126102cbc87e7fc7d
Certificate serial: 018B28A10DA6C8C95647FA1128B6A39FD3C0
Authority key identifier: 26:6A:E1:56:68:8B:87:E2:6E:0F:40:F1:26:10:2C:BC:87:E7:FC:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmrhVmiLh-JuD0DxJhAsvIfn_H0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6b7daf-f02c-46d4-aae7-e4f2c0498f84/1/NzHjuAKnR5fbP1GzXFgTb4ShehU.roa
Signing time: Fri 13 Oct 2023 10:42:05 +0000
ROA not before: Fri 13 Oct 2023 10:42:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 185.223.216.0/24 maxlen: 24
185.223.218.0/24 maxlen: 24
185.223.217.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:28:a1:0d:a6:c8:c9:56:47:fa:11:28:b6:a3:9f:d3:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=266ae156688b87e26e0f40f126102cbc87e7fc7d
Validity
Not Before: Oct 13 10:42:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3731e3b802a74797db3f51b35c58136f84a17a15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:75:e4:df:9c:66:6a:be:7f:a8:59:31:4e:da:
43:51:af:84:99:ad:cc:82:f9:ac:5e:04:a4:3e:ac:
f2:f6:ec:8a:8e:b2:c2:65:cc:12:47:87:d6:89:50:
9f:bb:06:9c:a5:f9:f3:8d:44:49:d8:84:6c:3e:b7:
1b:2b:66:83:5d:17:7b:2d:df:b2:3f:de:96:22:86:
39:7e:df:1c:72:5d:15:9d:56:f1:34:cd:36:4e:2a:
36:62:d1:7c:f1:10:6d:47:4a:9a:ce:53:b6:d7:54:
27:6e:ef:a1:fe:f3:e2:c1:99:c0:2d:cb:45:85:25:
86:91:7a:67:83:48:bc:c8:f9:31:69:ca:53:81:be:
b0:f2:3b:63:bd:64:3e:f1:f0:70:ba:2c:d0:c9:48:
0d:30:8e:4f:3a:24:38:2b:23:7a:f6:bc:9d:ce:b3:
67:07:eb:50:b7:3e:10:d7:f5:64:05:c6:8c:3f:e9:
e3:09:a0:5a:92:f3:be:b0:59:fa:65:78:1e:b4:44:
2c:53:5b:83:a1:59:3d:e9:0f:7a:da:71:12:00:80:
ea:1a:8c:82:27:90:55:31:87:b3:0c:53:1c:e2:7c:
0d:26:78:1e:7c:23:92:4a:2b:5d:5e:9a:f0:80:54:
80:27:00:9d:bd:4d:17:41:b4:47:a7:76:14:55:d1:
58:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:31:E3:B8:02:A7:47:97:DB:3F:51:B3:5C:58:13:6F:84:A1:7A:15
X509v3 Authority Key Identifier:
keyid:26:6A:E1:56:68:8B:87:E2:6E:0F:40:F1:26:10:2C:BC:87:E7:FC:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmrhVmiLh-JuD0DxJhAsvIfn_H0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6b7daf-f02c-46d4-aae7-e4f2c0498f84/1/NzHjuAKnR5fbP1GzXFgTb4ShehU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6b7daf-f02c-46d4-aae7-e4f2c0498f84/1/JmrhVmiLh-JuD0DxJhAsvIfn_H0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.216.0-185.223.218.255
Signature Algorithm: sha256WithRSAEncryption
a5:24:4d:26:62:85:17:36:0e:a3:d1:5b:57:10:7d:fa:65:db:
2f:33:5d:fc:68:42:c0:89:93:fd:f4:fa:ec:12:78:67:01:5c:
0a:3d:5d:1a:22:f7:92:16:44:eb:fd:00:71:28:f9:de:cc:24:
00:1c:2d:07:bb:31:52:a1:91:1e:4b:2e:c0:6d:41:cb:8d:a2:
f7:a4:c3:26:6a:d1:55:96:21:12:3f:d6:93:0c:f1:d5:ea:7f:
c0:2e:ed:c6:2c:75:fd:b9:b3:c8:4e:40:86:31:b3:e2:2c:d5:
7e:0b:86:c8:38:83:10:f8:e5:81:2c:5d:5f:2c:95:4d:c3:7b:
dd:51:c3:9f:6f:35:74:76:31:0d:96:c7:35:b5:54:13:fc:8c:
71:1d:9f:05:c5:0e:7d:af:67:2a:0f:82:3b:fb:84:56:76:bf:
a4:98:f5:71:30:83:f0:cb:0f:ea:51:9d:be:0f:83:c9:14:3f:
44:75:4e:63:40:94:27:f7:91:21:4e:b1:52:85:01:a5:bd:83:
35:5e:90:5d:7c:36:c3:3a:05:d5:d7:04:ad:5f:31:8b:70:1e:
59:f3:4f:75:18:cf:97:aa:e8:c6:63:d2:01:21:c0:e8:51:8a:
08:fb:e9:8f:ca:a7:df:92:8a:80:97:d7:09:59:71:d0:00:ed:
46:f8:b2:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:13 2024 by rpki-client on console-ams.rpki-client.org