Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e0d0b2-9b9a-47f8-84ec-1460c78ea75d/1/hfKRC_uJPolg8MS6XETerTt-KrY.roa
File: hfKRC_uJPolg8MS6XETerTt-KrY.roa (raw, json)
Hash identifier: RlYjhEfE1MYN6HnxkiMkxbwBuyJ9p8VrIsCgBlT4WpM=
Subject key identifier: 85:F2:91:0B:FB:89:3E:89:60:F0:C4:BA:5C:44:DE:AD:3B:7E:2A:B6
Certificate issuer: /CN=24c64272b0b3aeb812549dee7ec58a3eaf6fa576
Certificate serial: 03B2D318
Authority key identifier: 24:C6:42:72:B0:B3:AE:B8:12:54:9D:EE:7E:C5:8A:3E:AF:6F:A5:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMZCcrCzrrgSVJ3ufsWKPq9vpXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e0d0b2-9b9a-47f8-84ec-1460c78ea75d/1/hfKRC_uJPolg8MS6XETerTt-KrY.roa
Signing time: Sat 01 Jan 2022 12:00:44 +0000
ROA not before: Sat 01 Jan 2022 12:00:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42006
IP address blocks: 185.210.184.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62051096 (0x3b2d318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24c64272b0b3aeb812549dee7ec58a3eaf6fa576
Validity
Not Before: Jan 1 12:00:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85f2910bfb893e8960f0c4ba5c44dead3b7e2ab6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8c:26:d3:e0:e0:47:c3:79:b5:55:79:b9:60:
ee:ea:1e:b9:8e:56:6c:8d:e0:ac:bd:dd:0a:65:72:
4c:0b:f5:f4:82:4b:92:ad:d8:fe:67:38:a4:0f:40:
d4:96:50:a5:6f:8d:40:a5:79:a5:2b:6d:f7:7e:7b:
a5:d5:cf:f9:c9:3d:29:60:44:d2:77:9d:b1:af:de:
34:fd:26:0b:f0:43:b4:0e:04:af:e8:4e:45:73:d4:
4c:db:7d:c1:ee:db:91:f0:3e:ba:bf:2b:96:c8:f7:
53:3e:c1:97:29:5d:ba:5c:7a:24:63:87:23:96:8a:
a0:14:07:2d:42:7c:19:6e:ec:a5:5c:2b:89:5e:04:
33:42:0d:81:e4:b2:65:b7:8e:04:81:e5:05:8a:d1:
b1:da:6b:28:cf:c9:13:0b:47:1e:59:23:ef:f6:6f:
bf:94:e3:7c:11:65:2d:00:32:6e:8a:82:0e:1e:0a:
77:2d:b2:27:70:f2:2d:46:12:e7:ff:95:a1:64:1d:
75:d7:05:86:01:00:fc:d1:7b:49:df:e6:03:d3:2f:
5c:15:03:70:6e:83:09:cb:f4:2d:9f:6e:b0:77:f9:
34:c4:05:12:90:5b:24:f2:b8:34:7b:ab:9a:62:8c:
e6:d7:45:ee:73:0c:65:46:d3:25:2b:4c:4b:e5:af:
ca:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:F2:91:0B:FB:89:3E:89:60:F0:C4:BA:5C:44:DE:AD:3B:7E:2A:B6
X509v3 Authority Key Identifier:
keyid:24:C6:42:72:B0:B3:AE:B8:12:54:9D:EE:7E:C5:8A:3E:AF:6F:A5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMZCcrCzrrgSVJ3ufsWKPq9vpXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e0d0b2-9b9a-47f8-84ec-1460c78ea75d/1/hfKRC_uJPolg8MS6XETerTt-KrY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e0d0b2-9b9a-47f8-84ec-1460c78ea75d/1/JMZCcrCzrrgSVJ3ufsWKPq9vpXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.210.184.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:a2:21:73:9d:fd:4d:3a:3b:40:f5:7f:34:78:b5:05:fd:f0:
6f:0c:84:35:8b:f1:a2:69:f0:40:75:50:62:2a:6d:37:90:19:
46:1f:25:8d:48:8e:a0:25:5f:84:ee:d8:24:03:34:47:14:98:
6e:b9:54:74:04:6f:0c:59:a9:70:5f:f8:54:27:5f:6f:5b:1c:
dc:d5:aa:2f:7b:9d:fb:b5:0f:2b:39:02:83:9d:00:a1:ba:5b:
3f:1f:b7:53:3d:de:10:16:8c:fd:ef:8c:60:03:f5:e4:51:98:
82:b2:91:ac:42:a0:d6:53:ff:8a:b8:0f:5a:a9:90:f9:27:63:
7a:8f:8d:88:ce:c2:e8:44:a6:29:0e:7a:20:ad:3c:02:59:08:
eb:1f:a2:9e:c4:a4:ca:b5:7d:32:01:8a:c5:bf:93:5b:30:5f:
fc:c5:8f:18:88:6d:b6:5e:22:3d:99:af:46:0c:e9:b8:4a:f9:
8b:71:58:b8:69:31:34:96:34:09:86:2b:c1:2a:da:15:a1:bc:
07:c4:65:f7:41:b7:20:ac:fe:a2:bb:bd:43:dc:d3:58:6d:e0:
a1:24:d8:70:af:79:5e:b8:62:44:fc:41:0f:38:14:67:a0:23:
7f:9b:99:00:5b:10:b4:58:a8:31:cb:e0:1a:37:92:7a:24:ec:
0e:0a:d1:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:58 2024 by rpki-client on console-fra.rpki-client.org