Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/fd5b66-a44c-4f56-a35c-ab641c8db332/1/drl4ZFHa7i5kw5OccZQwHikA1SU.roa
File: drl4ZFHa7i5kw5OccZQwHikA1SU.roa (raw, json)
Hash identifier: Dz5vVwYzlCv4LtiviHC0uqbNUjZ1coKc3Kle9+gsfCA=
Subject key identifier: 76:B9:78:64:51:DA:EE:2E:64:C3:93:9C:71:94:30:1E:29:00:D5:25
Certificate issuer: /CN=27aaf3bf54aff86f1fa86b643301e915ce8a8acf
Certificate serial: 1CA4246B
Authority key identifier: 27:AA:F3:BF:54:AF:F8:6F:1F:A8:6B:64:33:01:E9:15:CE:8A:8A:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J6rzv1Sv-G8fqGtkMwHpFc6Kis8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/fd5b66-a44c-4f56-a35c-ab641c8db332/1/drl4ZFHa7i5kw5OccZQwHikA1SU.roa
Signing time: Sat 01 Jan 2022 04:03:34 +0000
ROA not before: Sat 01 Jan 2022 04:03:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34748
IP address blocks: 185.10.40.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 480519275 (0x1ca4246b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=27aaf3bf54aff86f1fa86b643301e915ce8a8acf
Validity
Not Before: Jan 1 04:03:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76b9786451daee2e64c3939c7194301e2900d525
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:14:08:39:69:75:9e:56:c7:6f:dd:4e:f8:1f:
bb:e1:a9:43:56:dd:67:02:b2:a0:4c:42:7a:da:2a:
3c:10:d0:f9:89:1e:7e:9a:7e:74:56:36:4f:f4:08:
2e:57:74:54:80:79:f7:67:11:48:6f:5f:ae:bc:4a:
ea:bd:76:43:b2:fd:23:b3:d9:c8:9c:87:af:fa:ec:
66:1e:c3:7b:a9:a3:cf:fe:1a:b1:38:a0:10:a8:95:
ce:0e:d6:7b:c7:1c:57:81:ab:9a:a1:0f:39:0f:a9:
a2:bb:dd:f0:12:bb:46:04:71:6d:9b:ff:a1:af:2c:
60:34:82:8f:09:84:6d:50:20:31:7d:1f:62:25:22:
62:8a:83:f0:74:2b:6c:c4:33:e8:d9:af:b0:c2:e1:
4d:93:25:a6:25:22:06:77:83:34:90:ea:47:e8:3a:
14:99:e4:69:00:29:45:23:db:69:1d:07:45:22:26:
44:41:d5:e8:75:a2:fb:d3:4e:83:eb:41:ed:f7:d5:
53:0c:57:97:56:c6:b5:1c:28:31:56:2e:a2:b2:33:
e6:b8:40:73:d3:f0:91:29:88:de:04:54:63:cb:74:
6f:8d:c5:76:31:9c:fb:34:a0:ad:2d:a8:0f:61:b6:
2d:a4:56:fc:e8:b4:17:63:09:fd:2e:cf:07:50:9a:
26:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B9:78:64:51:DA:EE:2E:64:C3:93:9C:71:94:30:1E:29:00:D5:25
X509v3 Authority Key Identifier:
keyid:27:AA:F3:BF:54:AF:F8:6F:1F:A8:6B:64:33:01:E9:15:CE:8A:8A:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J6rzv1Sv-G8fqGtkMwHpFc6Kis8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fd5b66-a44c-4f56-a35c-ab641c8db332/1/drl4ZFHa7i5kw5OccZQwHikA1SU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fd5b66-a44c-4f56-a35c-ab641c8db332/1/J6rzv1Sv-G8fqGtkMwHpFc6Kis8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.40.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:33:50:5d:db:f4:bc:ab:8c:41:63:ae:7f:03:1d:8f:bf:1e:
d2:89:c8:b2:3f:f7:ca:15:70:06:67:8e:ae:76:e4:0f:48:5e:
02:37:80:d1:fa:29:12:19:cd:30:61:ef:0e:98:79:b9:41:e0:
2c:ec:25:61:7c:8d:9b:d6:36:8c:34:43:bc:fe:0a:0f:ea:be:
ef:4f:47:08:13:e0:14:50:63:fd:7d:3a:7a:ab:68:42:df:c0:
ae:b5:c2:7a:16:d4:fb:65:d2:e7:c7:61:7f:eb:04:17:15:83:
6d:16:c0:ea:e7:0a:73:68:0f:ca:94:63:c4:d3:d2:93:e0:27:
86:51:07:91:1d:4c:3b:78:ff:1f:3c:ce:59:f1:34:79:cc:09:
bb:c8:16:34:72:f0:96:76:8c:7c:0f:15:eb:1e:33:68:59:80:
53:c1:a3:19:9b:f5:31:a0:30:bd:db:2f:2f:52:7a:80:3a:2e:
e8:0d:1c:8e:b2:9d:ed:3e:7f:51:27:3d:34:23:32:91:c3:d9:
0f:54:0e:7c:cc:89:b0:5a:d3:f9:69:fd:3b:f0:6c:48:98:57:
ac:5b:52:bf:e9:16:47:e5:da:c1:8c:d6:a3:46:7c:7f:3c:89:
c8:33:b5:f1:09:9b:a8:c3:99:e0:66:b5:9e:63:85:70:37:e1:
7b:e7:7d:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:31 2024 by rpki-client on console-ams.rpki-client.org