Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/b8b557-1c44-45cc-97b8-dd872c6204ac/1/Y0-Bn-ncCWrjhmVYQ_6tSHtv9cY.roa
File: Y0-Bn-ncCWrjhmVYQ_6tSHtv9cY.roa (raw, json)
Hash identifier: FrAA9hx+WNBvtwJltDH3oXRZCFIBCUXyPgoiS5Wq+9s=
Subject key identifier: 63:4F:81:9F:E9:DC:09:6A:E3:86:65:58:43:FE:AD:48:7B:6F:F5:C6
Certificate issuer: /CN=ddff067294eaaa45051beab56c6ff31d4a3c8b4d
Certificate serial: 01856D6621857BB9A8682BD6C24333FCC858
Authority key identifier: DD:FF:06:72:94:EA:AA:45:05:1B:EA:B5:6C:6F:F3:1D:4A:3C:8B:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3f8GcpTqqkUFG-q1bG_zHUo8i00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/b8b557-1c44-45cc-97b8-dd872c6204ac/1/Y0-Bn-ncCWrjhmVYQ_6tSHtv9cY.roa
Signing time: Sun 01 Jan 2023 12:54:47 +0000
ROA not before: Sun 01 Jan 2023 12:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 185.252.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:66:21:85:7b:b9:a8:68:2b:d6:c2:43:33:fc:c8:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ddff067294eaaa45051beab56c6ff31d4a3c8b4d
Validity
Not Before: Jan 1 12:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=634f819fe9dc096ae386655843fead487b6ff5c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:dd:bd:6d:46:f1:f9:ea:34:f3:46:98:92:37:
b3:ee:45:50:70:af:cc:59:7f:e0:c3:3a:1b:33:20:
5d:82:26:5e:9c:60:7f:f2:bb:94:ad:94:22:56:13:
55:e8:77:89:7d:7d:49:6c:46:d9:76:5b:15:20:7d:
62:20:6e:f2:49:01:ae:5c:c9:fa:42:db:e4:af:9a:
eb:49:f7:10:08:02:9c:93:ab:a8:fc:70:a2:eb:bc:
33:be:db:2c:9e:c7:56:9e:ab:38:0f:a9:21:c6:51:
09:98:ac:87:96:07:18:de:b6:44:20:d1:1e:73:16:
1d:a1:4d:2d:e3:cb:8c:83:d3:d8:b1:f6:3e:42:67:
b0:68:25:e2:70:54:4f:6e:ed:ca:08:77:aa:cb:cf:
a9:ef:e5:bf:b7:04:8c:38:cb:38:51:08:a4:57:a8:
7c:c3:e8:78:00:ae:26:ea:3e:64:c8:43:6b:a6:0d:
20:3b:71:4d:d6:88:f8:f9:c8:4e:ab:12:f3:19:cd:
63:01:f7:e3:6f:03:ae:06:4a:c6:5c:2e:27:71:75:
31:8a:ed:8a:64:88:7c:69:db:0d:02:d7:d4:25:d5:
92:c4:fb:cd:a4:68:dd:fd:92:b7:52:f4:2b:c7:6a:
fa:19:94:7a:06:5d:14:e4:39:2a:f5:b3:93:89:03:
a4:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:4F:81:9F:E9:DC:09:6A:E3:86:65:58:43:FE:AD:48:7B:6F:F5:C6
X509v3 Authority Key Identifier:
keyid:DD:FF:06:72:94:EA:AA:45:05:1B:EA:B5:6C:6F:F3:1D:4A:3C:8B:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3f8GcpTqqkUFG-q1bG_zHUo8i00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b8b557-1c44-45cc-97b8-dd872c6204ac/1/Y0-Bn-ncCWrjhmVYQ_6tSHtv9cY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/b8b557-1c44-45cc-97b8-dd872c6204ac/1/3f8GcpTqqkUFG-q1bG_zHUo8i00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.208.0/24
Signature Algorithm: sha256WithRSAEncryption
58:d2:47:58:10:12:e4:7f:ee:24:c2:28:16:dd:25:8f:b5:20:
53:5d:44:63:13:92:0e:42:b9:c1:95:ee:cc:0a:d2:0b:ff:88:
14:24:9a:e1:b6:48:2c:12:cb:51:af:a1:79:56:a5:0b:78:ab:
de:13:9f:df:f2:f6:79:a0:ed:89:f1:9b:6e:df:b6:02:32:09:
9d:6d:2c:38:cb:25:06:2b:7a:26:df:bd:6f:41:36:4d:95:ff:
0b:33:37:af:bd:95:ac:f5:72:1e:4a:67:a5:af:16:91:99:33:
fb:68:8a:f7:86:b2:66:9b:11:9e:6c:a3:b6:bb:15:9b:30:1f:
96:3a:e5:bb:8a:00:4a:22:91:65:5b:25:da:5b:26:0b:9e:9a:
0a:10:9f:41:4f:74:91:0a:66:29:4d:9d:af:63:66:24:49:a6:
17:62:2e:50:df:31:5b:d4:8f:6f:c4:4d:8f:48:82:0d:f6:6d:
d5:17:e5:59:53:e2:44:54:73:f6:39:18:38:09:89:a1:b3:2b:
a8:97:0c:d1:52:72:38:85:7f:65:44:06:1c:37:85:9d:99:53:
c8:58:9d:52:7e:e3:9a:ec:22:8d:22:c9:c7:e9:d0:e9:93:bf:
45:32:f9:1a:ea:b9:08:49:02:0d:56:40:c5:d7:54:ba:19:31:
b1:f6:61:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 25 13:11:59 2023 by rpki-client on console-ams.rpki-client.org