Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/067cf3-4e23-4c56-bd14-c9ffa095baba/1/1vRog-8-ayP3Efz2H57-2M78KX4.roa
File: 1vRog-8-ayP3Efz2H57-2M78KX4.roa (raw, json)
Hash identifier: Q9iatX/a6AxqckmfUe5IVnFuaTxwpApqpdUr9icD1nU=
Subject key identifier: D6:F4:68:83:EF:3E:6B:23:F7:11:FC:F6:1F:9E:FE:D8:CE:FC:29:7E
Certificate issuer: /CN=9d50eaae1731d233f74435709a7b1dbab8f861cd
Certificate serial: 0185708CC141DBCA21BE2E9410B83AD62F04
Authority key identifier: 9D:50:EA:AE:17:31:D2:33:F7:44:35:70:9A:7B:1D:BA:B8:F8:61:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nVDqrhcx0jP3RDVwmnsdurj4Yc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/067cf3-4e23-4c56-bd14-c9ffa095baba/1/1vRog-8-ayP3Efz2H57-2M78KX4.roa
Signing time: Mon 02 Jan 2023 03:35:50 +0000
ROA not before: Mon 02 Jan 2023 03:35:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44285
IP address blocks: 185.235.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:c1:41:db:ca:21:be:2e:94:10:b8:3a:d6:2f:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d50eaae1731d233f74435709a7b1dbab8f861cd
Validity
Not Before: Jan 2 03:35:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6f46883ef3e6b23f711fcf61f9efed8cefc297e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:36:0c:57:df:ac:65:46:e0:ff:10:b1:60:5c:
0a:b1:2e:38:94:75:90:67:50:94:bf:4f:2d:2b:9b:
6c:01:1c:dd:18:10:b9:68:38:47:58:72:c3:d8:bd:
db:00:75:8e:86:23:4f:88:20:47:79:6e:8b:7d:17:
e4:cd:cb:80:0f:1e:45:d1:3c:db:92:8a:68:0e:17:
ad:bd:2f:6c:86:ad:d2:d9:9a:36:94:11:7b:26:e7:
44:b6:01:0c:8e:87:e0:49:8f:63:c3:fa:ef:df:d7:
1b:71:fb:e6:c1:99:75:c0:62:0d:49:f2:95:3b:44:
a5:ba:40:0b:f3:90:95:d7:aa:76:d6:1d:f8:3d:83:
bc:e5:eb:01:10:d6:61:67:f7:b6:05:82:12:14:9a:
17:4a:0c:c8:45:1a:3e:40:fe:49:41:36:b2:db:97:
a4:4f:3a:f6:20:98:5e:49:b6:d8:d5:b5:ac:26:0d:
16:26:47:81:8e:69:a0:3f:d9:3a:75:b5:f0:0e:23:
f9:06:4a:5a:25:3b:e0:8e:5b:fe:1e:bd:fe:18:44:
45:59:a7:cf:fe:92:6c:33:55:d2:d0:6e:8d:cd:29:
94:95:c5:b8:f3:4b:a3:ff:6a:7b:74:76:6d:82:a0:
0e:10:26:ab:d6:62:03:cf:64:c8:81:c3:7d:34:a8:
cf:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:F4:68:83:EF:3E:6B:23:F7:11:FC:F6:1F:9E:FE:D8:CE:FC:29:7E
X509v3 Authority Key Identifier:
keyid:9D:50:EA:AE:17:31:D2:33:F7:44:35:70:9A:7B:1D:BA:B8:F8:61:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nVDqrhcx0jP3RDVwmnsdurj4Yc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/067cf3-4e23-4c56-bd14-c9ffa095baba/1/1vRog-8-ayP3Efz2H57-2M78KX4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/067cf3-4e23-4c56-bd14-c9ffa095baba/1/nVDqrhcx0jP3RDVwmnsdurj4Yc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.245.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:58:ca:02:0b:c8:ef:b2:5d:c7:6f:a8:2a:eb:80:d8:10:40:
1d:7e:3d:19:0d:d4:00:d7:1b:85:0a:b8:e0:4c:a7:87:ff:da:
8f:16:a7:ad:2c:08:32:f9:b6:ca:c7:80:64:b1:d2:b4:52:49:
bb:b1:ab:90:d2:43:e6:b7:f7:2a:3a:c1:81:24:5c:ad:96:ad:
4b:ef:1a:88:2d:05:05:81:93:9f:e4:62:42:f3:0a:43:73:c7:
4d:ef:36:b5:e7:4f:5d:dc:32:ac:6f:8d:0d:2c:ee:1d:19:f9:
81:c8:0f:c8:65:ed:ab:e1:01:c0:9b:0b:e3:2f:92:23:f5:6f:
35:3d:6d:21:a6:42:a7:4d:43:57:22:09:07:3c:7c:a8:ea:d5:
7e:e7:90:53:ab:4c:31:3e:9b:80:9d:4e:96:57:19:e1:09:17:
dd:c3:a1:90:95:89:81:58:57:1b:00:ff:ca:40:bc:12:73:5e:
f1:08:5c:eb:0e:40:ec:40:38:3a:c6:8c:4c:a1:53:79:d3:63:
36:74:77:f0:41:92:3a:46:f5:f4:f8:8d:37:d4:4e:fe:80:6b:
a1:8e:ce:fa:ed:ba:3c:0d:70:f3:79:8b:8e:af:4b:dc:b8:b6:
fc:e2:94:67:52:f7:ee:3d:ad:c9:0b:e7:46:90:ef:49:b6:07:
b4:fc:f6:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:21 2024 by rpki-client on console-ams.rpki-client.org