Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/61b3ef-d140-4ab6-9c60-ac3c77b677a6/1/r04QkfCCqQXYM57bKWOxhaCfSjA.roa
File: r04QkfCCqQXYM57bKWOxhaCfSjA.roa (raw, json)
Hash identifier: jLnbYyr2xpyD3dNo0xRzwm9r9MYuXj9rFgF1tmw1rR0=
Subject key identifier: AF:4E:10:91:F0:82:A9:05:D8:33:9E:DB:29:63:B1:85:A0:9F:4A:30
Certificate issuer: /CN=ac80ebd19a626e816e18d13eeb3bc21ae86916c5
Certificate serial: 01856FA7157A2A7194CFA3771E9CBD8DEE2D
Authority key identifier: AC:80:EB:D1:9A:62:6E:81:6E:18:D1:3E:EB:3B:C2:1A:E8:69:16:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rIDr0ZpiboFuGNE-6zvCGuhpFsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/61b3ef-d140-4ab6-9c60-ac3c77b677a6/1/r04QkfCCqQXYM57bKWOxhaCfSjA.roa
Signing time: Sun 01 Jan 2023 23:24:58 +0000
ROA not before: Sun 01 Jan 2023 23:24:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 42865
IP address blocks: 185.10.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:a7:15:7a:2a:71:94:cf:a3:77:1e:9c:bd:8d:ee:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac80ebd19a626e816e18d13eeb3bc21ae86916c5
Validity
Not Before: Jan 1 23:24:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=af4e1091f082a905d8339edb2963b185a09f4a30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3f:42:25:40:21:3f:76:0e:67:5d:d7:b3:9f:
95:67:7a:1b:30:27:db:63:33:03:eb:84:33:ab:dc:
0c:9b:c4:99:76:b0:b4:94:0a:7e:c1:5d:fe:8b:26:
47:5b:a4:e9:a1:6a:30:77:4e:78:80:58:df:df:c3:
4e:1c:1b:a2:03:df:c9:d5:b2:5f:8c:9e:3e:e4:ba:
06:22:80:95:e0:42:28:08:ea:7d:2c:ad:91:6a:51:
fc:57:0b:75:b8:6c:61:9b:bd:35:01:8d:a8:98:cc:
27:67:d5:4c:25:39:17:94:9a:72:7f:9f:84:5d:5a:
04:a4:08:8f:c9:1b:8a:11:73:e3:a4:75:ce:34:f7:
4d:fb:f2:a8:e1:05:07:88:fc:67:27:8d:f4:5a:44:
92:80:ed:e2:3d:6e:63:48:42:8e:dd:6f:a1:32:03:
cf:ab:81:35:70:cd:05:40:7a:9f:0f:a1:2f:80:35:
1a:ac:3e:92:98:b1:34:7e:11:cd:00:19:88:f5:d0:
de:08:da:69:85:8f:1a:47:82:d6:0d:fc:17:3e:a9:
65:03:b7:1b:20:b5:6f:16:d6:0f:99:be:5a:f9:f3:
33:1f:f1:7e:2c:ef:6a:8b:6d:8e:24:30:e3:36:7d:
e6:25:1b:f7:d6:4e:50:10:fb:8d:bd:f8:4d:f8:ad:
7a:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:4E:10:91:F0:82:A9:05:D8:33:9E:DB:29:63:B1:85:A0:9F:4A:30
X509v3 Authority Key Identifier:
keyid:AC:80:EB:D1:9A:62:6E:81:6E:18:D1:3E:EB:3B:C2:1A:E8:69:16:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rIDr0ZpiboFuGNE-6zvCGuhpFsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/61b3ef-d140-4ab6-9c60-ac3c77b677a6/1/r04QkfCCqQXYM57bKWOxhaCfSjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/61b3ef-d140-4ab6-9c60-ac3c77b677a6/1/rIDr0ZpiboFuGNE-6zvCGuhpFsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.10.209.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:b2:70:66:a8:e3:a6:06:15:b6:e2:8a:b4:63:ec:8f:1a:70:
74:6c:ab:de:f2:99:9a:c1:b0:a2:e6:6b:04:75:5b:58:82:a1:
43:f3:de:40:f2:92:1b:25:b4:23:1f:f6:c8:03:27:17:b5:86:
5a:88:ea:c5:e6:85:e8:02:c3:db:25:56:a2:65:fb:01:b0:f4:
e2:e5:5f:2f:6c:e8:10:15:63:e5:4f:8f:e1:84:ee:eb:c7:91:
ef:53:ee:d7:70:6a:88:7e:26:ed:70:41:d0:85:d9:32:fd:b9:
c8:c4:f7:6a:12:d4:d2:b7:c7:ce:ba:70:81:56:4f:59:26:82:
dd:ad:3e:a9:a8:27:83:24:7b:63:8a:f8:1d:61:e0:25:94:a1:
dd:77:61:25:ad:43:48:80:ab:9d:9b:ac:a3:3b:18:fa:3c:64:
96:42:eb:1e:99:85:d1:c5:88:06:ab:cd:67:55:4f:c7:89:5d:
1c:28:d8:37:56:2b:8c:ea:f9:9c:10:d6:ca:dd:fb:2c:ef:73:
96:43:a1:f9:32:33:1b:19:06:03:f3:47:48:a6:56:8c:71:df:
fe:9a:4f:b2:9f:84:aa:41:89:a3:69:fc:a2:aa:74:5d:57:04:
c1:f6:dd:88:4f:e6:a4:92:8b:40:72:9e:1b:30:65:8f:a9:20:
d6:a0:e4:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 3 11:09:28 2023 by rpki-client on console-fra.rpki-client.org