Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/067cf3-4e23-4c56-bd14-c9ffa095baba/1/YMDSyfHUDWrI0skm4burzRDd6yc.roa
File: YMDSyfHUDWrI0skm4burzRDd6yc.roa (raw, json)
Hash identifier: 4Kg74OshFy8PK+rqnEtZ30krtWbCsgo+v+AQBc+8mYo=
Subject key identifier: 60:C0:D2:C9:F1:D4:0D:6A:C8:D2:C9:26:E1:BB:AB:CD:10:DD:EB:27
Certificate issuer: /CN=9d50eaae1731d233f74435709a7b1dbab8f861cd
Certificate serial: 0187343F
Authority key identifier: 9D:50:EA:AE:17:31:D2:33:F7:44:35:70:9A:7B:1D:BA:B8:F8:61:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nVDqrhcx0jP3RDVwmnsdurj4Yc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/067cf3-4e23-4c56-bd14-c9ffa095baba/1/YMDSyfHUDWrI0skm4burzRDd6yc.roa
Signing time: Sat 01 Jan 2022 06:01:23 +0000
ROA not before: Sat 01 Jan 2022 06:01:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48715
IP address blocks: 185.235.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25637951 (0x187343f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d50eaae1731d233f74435709a7b1dbab8f861cd
Validity
Not Before: Jan 1 06:01:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60c0d2c9f1d40d6ac8d2c926e1bbabcd10ddeb27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:47:06:0f:7c:87:94:89:43:40:5c:8c:65:08:
74:36:00:69:7d:a4:0f:c3:34:a1:b1:7a:e6:da:e2:
a6:90:de:c2:22:1a:e7:22:4e:2c:80:a4:6d:1a:62:
ed:51:d5:63:0c:32:d1:4b:ba:61:c4:25:6b:11:e0:
ec:e6:5b:9d:65:38:a0:86:f1:6b:be:94:3e:1b:95:
d9:30:eb:93:35:8e:4a:9a:fa:e3:2f:48:ed:77:30:
67:5d:89:fc:9d:53:ce:2e:85:16:34:46:bf:74:a7:
35:a2:be:b6:92:cd:9f:5f:23:c0:11:9e:83:98:64:
06:1c:e7:04:f8:d1:2f:ec:d5:75:f8:42:46:ef:ee:
9b:c7:2a:e8:a9:dc:a1:a4:b7:c8:71:b0:bb:aa:8d:
76:1a:3f:cd:69:95:1a:6b:87:10:51:ef:70:f9:4c:
21:3d:54:11:d7:6e:99:06:71:09:75:94:f2:c4:5a:
5f:a5:d8:fd:1a:9a:36:99:53:22:7d:da:98:2d:79:
1f:c0:92:17:99:92:00:49:38:3d:eb:25:bb:48:47:
dc:8d:8b:c4:a6:27:7d:75:07:32:bb:63:b8:53:ff:
3a:95:a9:85:6e:6b:74:c8:58:ca:5c:d9:bd:27:1b:
23:59:42:99:2c:5e:9d:40:72:0f:0e:c8:93:66:13:
78:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:C0:D2:C9:F1:D4:0D:6A:C8:D2:C9:26:E1:BB:AB:CD:10:DD:EB:27
X509v3 Authority Key Identifier:
keyid:9D:50:EA:AE:17:31:D2:33:F7:44:35:70:9A:7B:1D:BA:B8:F8:61:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nVDqrhcx0jP3RDVwmnsdurj4Yc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/067cf3-4e23-4c56-bd14-c9ffa095baba/1/YMDSyfHUDWrI0skm4burzRDd6yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/067cf3-4e23-4c56-bd14-c9ffa095baba/1/nVDqrhcx0jP3RDVwmnsdurj4Yc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.245.0/24
Signature Algorithm: sha256WithRSAEncryption
af:fd:26:4b:1c:06:63:61:8f:35:40:c2:8b:8e:77:10:63:5f:
ac:d1:fd:52:bb:97:32:39:bd:77:30:a5:28:a5:d6:77:be:44:
6d:e8:ec:71:be:f5:0b:31:47:94:a3:03:8c:51:41:10:b0:77:
ab:94:58:60:81:88:e2:57:40:35:fd:29:60:56:f0:ea:d9:fa:
18:3c:d8:3f:0f:98:d4:90:dd:71:63:07:2e:7d:86:a3:6d:97:
5e:4c:04:ec:9c:1a:59:c5:cd:96:22:ea:68:b2:b5:bc:8c:77:
ca:a1:18:19:1f:6a:c8:ea:c6:d8:95:e7:be:c2:31:56:c1:9a:
1d:20:5d:4a:a4:4d:20:72:1c:0b:02:57:ed:f5:e3:ab:db:a7:
bc:65:6d:14:64:a0:5c:c4:25:ac:45:b0:c4:33:81:37:cd:06:
07:df:82:2e:83:df:69:20:99:35:77:89:f4:da:12:dd:64:ce:
90:f4:b8:ed:83:33:07:ea:f5:70:4d:83:c9:ed:49:c7:6d:11:
c3:75:e4:b4:c1:f6:9c:9d:fd:a6:2c:af:4b:ce:b6:20:3e:3a:
98:86:45:94:67:bb:6d:d5:73:ad:62:73:88:9b:3f:2a:78:e9:
41:d9:80:7f:e8:0a:7d:12:d6:24:73:96:aa:97:5f:04:66:4a:
48:3a:8b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:22 2024 by rpki-client on console-fra.rpki-client.org