Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/cfe94b-9448-4f82-b440-8bb2f26914a5/1/mskBO2pc0dVohJPQBlZ_F4jWucw.roa
File: mskBO2pc0dVohJPQBlZ_F4jWucw.roa (raw, json)
Hash identifier: 97JxQ9OreP7P2/ID2RGBtr9lDrLNk11fIlmSNJJoEN0=
Subject key identifier: 9A:C9:01:3B:6A:5C:D1:D5:68:84:93:D0:06:56:7F:17:88:D6:B9:CC
Certificate issuer: /CN=09ed2bca014c2c44e90b844de89426223c390cf6
Certificate serial: B085D0
Authority key identifier: 09:ED:2B:CA:01:4C:2C:44:E9:0B:84:4D:E8:94:26:22:3C:39:0C:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ce0rygFMLETpC4RN6JQmIjw5DPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/cfe94b-9448-4f82-b440-8bb2f26914a5/1/mskBO2pc0dVohJPQBlZ_F4jWucw.roa
Signing time: Wed 16 Mar 2022 18:25:43 +0000
ROA not before: Wed 16 Mar 2022 18:25:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 185.161.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11568592 (0xb085d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09ed2bca014c2c44e90b844de89426223c390cf6
Validity
Not Before: Mar 16 18:25:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ac9013b6a5cd1d5688493d006567f1788d6b9cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:55:12:c9:8e:bd:4e:32:c7:cc:5d:46:79:9e:
e4:16:07:07:66:19:06:44:5e:78:26:0d:82:eb:96:
65:63:3f:46:89:36:92:f0:57:0c:02:a9:50:6f:56:
9a:c4:cd:0d:2d:cf:71:27:61:88:7f:ce:c3:eb:0e:
1d:4e:7b:c6:22:66:9a:24:ba:b4:5a:74:57:93:5c:
98:9c:29:31:4f:1d:1c:57:0a:1f:35:ae:e8:2c:40:
55:37:47:1b:af:aa:aa:83:f4:5b:8c:89:9b:9d:dd:
e6:f1:88:85:5c:bc:55:ce:1b:27:0c:be:cf:61:6c:
44:a9:9c:d8:53:08:16:3d:1b:f8:16:9c:8c:f6:5d:
0b:88:17:20:c1:63:43:24:1e:2f:c3:f2:7a:48:19:
b0:6e:0a:b0:3b:b8:1c:67:c1:36:b9:30:e5:8b:62:
66:4d:4c:1f:da:c2:9a:fe:17:5f:9f:01:94:49:2f:
21:ac:d9:06:75:80:51:fa:cb:7d:26:79:6b:8c:15:
b2:dd:99:a6:a7:b5:4a:de:23:7b:88:9c:9a:3c:db:
85:34:6a:fb:9e:74:f1:db:e5:44:3a:b3:ab:ff:29:
a2:04:37:ff:a8:a8:d9:31:34:7c:4d:ab:65:db:3d:
a0:7b:d1:f4:65:8d:af:c1:f1:97:9b:c8:1a:ab:53:
0f:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:C9:01:3B:6A:5C:D1:D5:68:84:93:D0:06:56:7F:17:88:D6:B9:CC
X509v3 Authority Key Identifier:
keyid:09:ED:2B:CA:01:4C:2C:44:E9:0B:84:4D:E8:94:26:22:3C:39:0C:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ce0rygFMLETpC4RN6JQmIjw5DPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/cfe94b-9448-4f82-b440-8bb2f26914a5/1/mskBO2pc0dVohJPQBlZ_F4jWucw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/cfe94b-9448-4f82-b440-8bb2f26914a5/1/Ce0rygFMLETpC4RN6JQmIjw5DPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.76.0/24
Signature Algorithm: sha256WithRSAEncryption
30:a4:3a:f4:26:79:56:97:ac:69:b7:d9:fe:ec:7a:11:f3:ef:
37:b3:62:40:8e:98:3c:5f:28:2a:5b:5a:8e:30:89:a8:aa:3b:
5d:e1:72:f8:ca:bc:6d:21:4d:b6:0d:a3:f1:75:24:b4:58:0f:
59:6d:70:a7:8e:c1:bb:31:7a:37:15:25:a6:ce:07:65:18:cd:
95:30:75:e0:4e:b3:84:28:4c:60:78:b6:cf:e6:55:cf:d4:7e:
a7:7e:7b:f9:12:8d:38:d0:46:65:08:98:d5:b0:b6:b7:ea:a6:
c5:41:4f:bc:20:d5:c3:b9:3e:22:e9:91:d6:b4:f2:fc:df:75:
8d:ea:90:aa:7b:43:59:3a:57:d3:7d:3d:05:54:21:33:78:e4:
0e:c2:a5:dd:97:a5:6c:bc:ec:03:ad:b2:b9:d3:64:6b:99:56:
06:b5:4d:0f:76:80:31:b4:cc:63:6b:88:3c:da:e8:ac:06:03:
96:7d:de:59:cf:0e:6c:03:60:f1:d8:ce:ee:f9:2b:05:58:30:
ff:93:e8:44:2d:2e:df:ec:13:c1:b6:0c:ab:1e:59:44:b5:99:
8c:ca:6e:61:9d:3c:b4:e3:95:c9:d1:30:02:84:26:09:9c:35:
75:3d:91:c9:7a:d8:f9:9a:59:bd:11:1e:2c:37:3a:21:60:cb:
a0:c4:79:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:23 2024 by rpki-client on console-ams.rpki-client.org