Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/cfe94b-9448-4f82-b440-8bb2f26914a5/1/CM0ljaQy5URsZ65W0DlJIN1qI_Y.roa
File: CM0ljaQy5URsZ65W0DlJIN1qI_Y.roa (raw, json)
Hash identifier: BJUdu3r0nmOaqSCCT52IiCIP04K2rdFYz4oTpUa99KY=
Subject key identifier: 08:CD:25:8D:A4:32:E5:44:6C:67:AE:56:D0:39:49:20:DD:6A:23:F6
Certificate issuer: /CN=09ed2bca014c2c44e90b844de89426223c390cf6
Certificate serial: 01AED5CF
Authority key identifier: 09:ED:2B:CA:01:4C:2C:44:E9:0B:84:4D:E8:94:26:22:3C:39:0C:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ce0rygFMLETpC4RN6JQmIjw5DPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/cfe94b-9448-4f82-b440-8bb2f26914a5/1/CM0ljaQy5URsZ65W0DlJIN1qI_Y.roa
Signing time: Fri 01 Jul 2022 09:52:25 +0000
ROA not before: Fri 01 Jul 2022 09:52:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211373
IP address blocks: 185.161.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28235215 (0x1aed5cf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09ed2bca014c2c44e90b844de89426223c390cf6
Validity
Not Before: Jul 1 09:52:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08cd258da432e5446c67ae56d0394920dd6a23f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ea:a3:6e:f9:ff:ea:94:53:a1:b4:17:29:dd:
d1:7b:2f:ef:36:74:df:a6:97:96:9e:e2:55:1c:ef:
c0:eb:dd:6c:c3:84:8d:03:3e:3b:0a:39:a8:77:b6:
48:dd:09:36:18:43:6a:81:02:f8:57:4d:dc:0e:7e:
71:42:c4:32:27:26:05:1e:19:c5:e6:c3:46:ab:7c:
c7:a9:cf:7b:d8:5f:db:4d:ca:3a:d6:b9:84:33:1e:
16:ab:0f:f9:0c:c8:ca:e8:1b:aa:b1:5b:1e:9f:b0:
02:72:b5:db:80:66:03:4b:35:2d:8c:f9:fa:03:fd:
c8:b7:a6:10:47:2d:af:24:5b:31:70:b6:b8:5a:47:
ee:d8:7d:6b:2e:cd:61:1d:88:79:4e:6a:69:8c:8c:
3a:7b:e5:71:d9:c0:13:66:f3:d3:f7:41:c3:89:06:
a5:9e:9f:b6:7c:37:18:53:59:09:ac:35:6b:fa:b7:
50:38:59:30:83:5b:b5:58:26:05:39:35:d0:2a:b9:
44:2d:9b:b5:77:3a:e6:c0:f6:51:10:3c:19:92:73:
8b:d8:ef:b8:ca:a7:bb:19:69:ba:27:5d:2e:72:1b:
e5:2a:20:d8:86:b1:5c:05:26:e0:f1:1b:82:74:a6:
b3:d1:5d:13:98:cd:08:dd:b9:df:ea:00:c1:ba:b7:
47:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:CD:25:8D:A4:32:E5:44:6C:67:AE:56:D0:39:49:20:DD:6A:23:F6
X509v3 Authority Key Identifier:
keyid:09:ED:2B:CA:01:4C:2C:44:E9:0B:84:4D:E8:94:26:22:3C:39:0C:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ce0rygFMLETpC4RN6JQmIjw5DPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/cfe94b-9448-4f82-b440-8bb2f26914a5/1/CM0ljaQy5URsZ65W0DlJIN1qI_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/cfe94b-9448-4f82-b440-8bb2f26914a5/1/Ce0rygFMLETpC4RN6JQmIjw5DPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.76.0/24
Signature Algorithm: sha256WithRSAEncryption
67:15:d1:6a:ff:38:9b:60:f0:fa:42:26:99:64:22:6f:2a:8b:
8e:5f:a5:af:ba:ec:12:fd:38:02:4b:69:42:69:44:af:d4:0c:
40:f9:45:f7:37:92:4b:e5:ce:b9:df:9d:ce:a7:cd:28:d7:9b:
be:35:c6:18:7a:97:0b:60:59:6a:af:03:51:f0:1d:44:89:09:
0d:6d:21:c8:2b:39:dd:ff:e9:2f:cc:ce:82:1f:58:d1:a1:af:
1a:c4:ca:56:94:b8:35:d8:30:fb:46:9c:fb:f8:96:89:60:3e:
9b:cd:ad:da:cd:d1:a6:ef:47:a8:b1:97:1c:71:e8:b6:e5:95:
63:fb:fe:b1:08:92:d0:03:d5:3b:3f:92:30:91:f1:81:a7:3f:
1b:c5:f8:cb:a0:4a:9b:14:9c:67:47:da:6d:24:25:9f:50:8e:
d5:4b:66:eb:cf:7e:b3:6d:9a:20:c2:5e:3a:27:c8:8a:f6:14:
03:85:74:46:8b:e3:54:48:77:26:47:bc:6b:70:e6:f6:9a:af:
63:57:70:98:6f:53:84:fa:63:3f:5a:f6:01:25:39:8e:09:81:
d8:a0:6d:a0:98:63:08:d6:a8:34:91:14:92:30:c5:35:2e:c8:
e1:fb:89:ae:b1:9a:04:73:51:b6:e2:54:47:71:7f:6d:bf:f6:
b3:e6:e7:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:02 2024 by rpki-client on console-fra.rpki-client.org