Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/faf163-0983-48ed-a3bd-ae7d31fb05e5/1/dDMVuTfzMA5GrQ66IkLbUkNCz9M.roa
File: dDMVuTfzMA5GrQ66IkLbUkNCz9M.roa (raw, json)
Hash identifier: L1KciRyySOylutX6mMGyvIvjU5rpCdwpftDZSIiGzd4=
Subject key identifier: 74:33:15:B9:37:F3:30:0E:46:AD:0E:BA:22:42:DB:52:43:42:CF:D3
Certificate issuer: /CN=a7bf29d886b3fdf093b992258ad158996f184b2b
Certificate serial: 018CC8DF7AE6A0C3A184155D1E0608511558
Authority key identifier: A7:BF:29:D8:86:B3:FD:F0:93:B9:92:25:8A:D1:58:99:6F:18:4B:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p78p2Iaz_fCTuZIlitFYmW8YSys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/faf163-0983-48ed-a3bd-ae7d31fb05e5/1/dDMVuTfzMA5GrQ66IkLbUkNCz9M.roa
Signing time: Tue 02 Jan 2024 06:32:18 +0000
ROA not before: Tue 02 Jan 2024 06:32:18 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203485
IP address blocks: 185.133.92.0/22 maxlen: 24
2a05:40::/29 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:df:7a:e6:a0:c3:a1:84:15:5d:1e:06:08:51:15:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a7bf29d886b3fdf093b992258ad158996f184b2b
Validity
Not Before: Jan 2 06:32:18 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=743315b937f3300e46ad0eba2242db524342cfd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:d6:f2:3e:8f:c9:70:6b:e5:54:a5:64:75:0a:
fc:2c:f9:ae:6e:e3:86:c4:b4:3c:34:a5:f9:6f:ac:
40:cf:c1:35:00:50:c5:16:a0:42:01:ea:fc:88:d1:
55:69:cd:eb:55:94:8b:31:60:40:34:9b:8c:23:64:
9b:f3:59:ac:d1:53:c5:8f:6c:80:56:f7:47:4e:5c:
d3:7e:0b:97:bd:1f:f9:4c:63:83:4f:2d:46:66:b5:
4f:4d:5a:c5:9a:6d:11:72:b2:37:4c:5a:7c:ef:52:
4e:87:11:8c:b3:ef:d8:a7:15:e1:ce:45:7e:82:9a:
5c:2b:f7:25:1c:9f:c5:d5:13:03:76:f9:2e:9c:07:
50:1d:49:92:0c:52:32:e5:27:be:28:30:9a:24:b3:
5f:c0:30:18:82:13:5a:82:48:d8:01:bd:f4:81:9c:
70:54:2e:d8:58:55:25:a3:f7:95:6f:61:26:1a:3d:
98:28:dd:06:f9:3e:4e:37:d6:b0:61:70:a8:65:e2:
16:4b:a4:6d:ef:4e:99:09:c3:08:25:71:a3:3b:06:
ef:d2:50:fd:95:00:70:00:c5:49:e0:47:b7:95:32:
6c:2b:a7:e7:f1:0a:ce:a7:a3:c3:53:98:1d:ca:bb:
29:db:f8:b9:43:2e:71:b9:75:d3:f8:e0:1e:f8:d8:
fc:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:33:15:B9:37:F3:30:0E:46:AD:0E:BA:22:42:DB:52:43:42:CF:D3
X509v3 Authority Key Identifier:
keyid:A7:BF:29:D8:86:B3:FD:F0:93:B9:92:25:8A:D1:58:99:6F:18:4B:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p78p2Iaz_fCTuZIlitFYmW8YSys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/faf163-0983-48ed-a3bd-ae7d31fb05e5/1/dDMVuTfzMA5GrQ66IkLbUkNCz9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/faf163-0983-48ed-a3bd-ae7d31fb05e5/1/p78p2Iaz_fCTuZIlitFYmW8YSys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.133.92.0/22
IPv6:
2a05:40::/29
Signature Algorithm: sha256WithRSAEncryption
92:5e:6f:fe:79:2b:8b:37:0e:d8:a6:48:36:5d:1d:ac:5b:e9:
b5:fc:a1:88:42:c7:40:ea:0b:55:56:c1:76:31:5c:9c:13:21:
76:dd:b0:3c:a5:8c:17:07:ba:6c:93:39:36:6b:13:2e:83:ef:
d6:cc:2a:18:99:14:32:85:dc:5e:8c:49:39:22:f2:d0:41:a2:
3d:ce:e5:9a:00:31:20:0e:04:2c:f5:39:10:ea:b0:41:ea:c6:
11:19:21:14:61:03:39:2b:f0:fb:5d:f8:5f:a0:b7:75:96:3f:
e6:ce:f6:61:90:93:36:29:c4:e1:f4:98:20:48:3e:06:f9:14:
2d:6c:3c:ce:2a:d1:68:f9:8b:b8:df:5d:a1:2a:a3:db:1d:47:
3e:97:56:c9:f0:e1:16:d0:4a:78:07:32:7a:e6:16:a0:ea:be:
2c:99:81:32:04:28:a8:5e:c6:71:be:68:d9:8d:ad:86:b1:24:
52:ed:df:7c:b0:81:fe:a1:f1:72:9b:3a:86:ca:fb:24:21:ea:
a4:79:1d:66:2e:50:03:07:65:55:f1:a2:33:ac:cb:ef:c1:ce:
ed:02:a5:0b:2c:6a:90:ea:16:e1:aa:5c:8c:70:0b:32:70:43:
a0:37:1e:d1:15:04:1e:d6:1c:bd:26:75:7e:de:c3:aa:7e:54:
cb:a0:b4:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:02:27 2024 by rpki-client on console-ams.rpki-client.org