Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/60b458-131d-4581-a840-6c03fdbd8d17/1/t2D-n5r6IW-JbQ9gxs2cZ12_cwM.roa
File: t2D-n5r6IW-JbQ9gxs2cZ12_cwM.roa (raw, json)
Hash identifier: AJc6oDctdbH9DWZQHdT43mPlaKUShbUO+Ab1MVBhTuY=
Subject key identifier: B7:60:FE:9F:9A:FA:21:6F:89:6D:0F:60:C6:CD:9C:67:5D:BF:73:03
Certificate issuer: /CN=bcfc12c499ceb1c61204625326f00eda7b5257d0
Certificate serial: 0185737A969302B56F9615C32B260B97E7E2
Authority key identifier: BC:FC:12:C4:99:CE:B1:C6:12:04:62:53:26:F0:0E:DA:7B:52:57:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vPwSxJnOscYSBGJTJvAO2ntSV9A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/60b458-131d-4581-a840-6c03fdbd8d17/1/t2D-n5r6IW-JbQ9gxs2cZ12_cwM.roa
Signing time: Mon 02 Jan 2023 17:14:51 +0000
ROA not before: Mon 02 Jan 2023 17:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.161.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:7a:96:93:02:b5:6f:96:15:c3:2b:26:0b:97:e7:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcfc12c499ceb1c61204625326f00eda7b5257d0
Validity
Not Before: Jan 2 17:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b760fe9f9afa216f896d0f60c6cd9c675dbf7303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:71:97:be:40:00:09:54:d9:51:34:a1:53:e7:
2e:8f:70:4b:44:c6:05:2a:12:0b:64:38:b5:f0:bc:
44:8e:36:91:3a:9d:a8:0b:d0:ba:5e:84:46:86:0d:
5e:d5:b3:b3:5a:db:33:ad:21:96:72:03:83:88:35:
a6:5e:76:83:81:c0:62:be:f6:2e:20:a2:ee:67:5b:
73:a0:e3:ad:e5:08:cc:f4:88:02:f9:43:a6:cf:7b:
f5:80:ff:d0:9d:06:3e:e9:63:75:f1:37:6f:f7:8a:
1a:0a:c9:e5:7f:39:fc:15:36:01:c7:d6:a6:92:81:
12:6d:28:6c:d5:4d:14:4a:11:ed:d0:91:80:84:76:
b1:a1:c8:3d:00:44:e5:3b:f4:c5:a6:11:e4:e5:7d:
5f:53:58:5c:51:23:83:02:ae:b6:7d:f9:00:bf:59:
4d:b0:a4:cd:c5:59:26:34:97:a3:38:d3:75:36:70:
dd:d8:d2:90:d8:1a:cf:72:a0:45:2f:08:c3:6b:58:
38:67:91:35:e0:8f:20:b7:ab:8f:b6:1f:c7:1a:2e:
16:07:d3:11:95:00:e6:23:3d:29:e5:5a:18:88:8c:
ea:79:6e:49:c1:61:89:3c:39:d3:2b:a1:f5:54:e8:
30:85:c4:de:0d:4c:4d:1b:e7:46:39:78:8d:cf:bc:
b7:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:60:FE:9F:9A:FA:21:6F:89:6D:0F:60:C6:CD:9C:67:5D:BF:73:03
X509v3 Authority Key Identifier:
keyid:BC:FC:12:C4:99:CE:B1:C6:12:04:62:53:26:F0:0E:DA:7B:52:57:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vPwSxJnOscYSBGJTJvAO2ntSV9A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/60b458-131d-4581-a840-6c03fdbd8d17/1/t2D-n5r6IW-JbQ9gxs2cZ12_cwM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/60b458-131d-4581-a840-6c03fdbd8d17/1/vPwSxJnOscYSBGJTJvAO2ntSV9A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.123.0/24
Signature Algorithm: sha256WithRSAEncryption
96:e4:7e:fc:62:3a:55:dc:20:29:c3:7b:94:10:9b:8b:c6:1d:
72:43:86:91:75:85:30:c9:3b:09:1a:e6:8e:16:07:50:a9:83:
b1:89:c8:08:33:24:7e:0e:e8:8f:f8:08:a5:e9:4a:eb:d7:a6:
7d:1a:81:06:aa:bd:f5:e9:92:1a:6c:92:9c:bf:ba:60:4a:29:
ec:28:e0:5c:c6:b8:f5:cb:5b:94:f7:bd:23:df:69:aa:ce:fc:
d5:64:fe:86:b7:24:e4:6d:38:c6:02:95:66:31:ac:b1:9d:72:
52:c0:dc:b7:36:73:0f:1f:7c:ef:f0:c6:ad:d6:5e:2b:a0:ee:
b7:a2:21:1f:91:80:38:73:81:c2:72:51:58:8c:b3:75:1e:fc:
46:07:cc:b5:4a:61:1c:b6:da:20:94:15:71:42:98:d6:c9:62:
9b:36:5c:e0:9a:85:51:b5:21:95:c9:1d:10:ac:4c:a7:ea:75:
cd:41:e8:69:ee:01:4f:aa:40:71:5e:41:e1:ed:09:53:5b:7d:
fa:f3:50:48:58:14:47:bd:81:59:51:c3:1f:ba:11:56:b1:c2:
9e:69:07:71:c2:37:f4:8c:e8:3a:bf:d5:19:76:1d:94:14:58:
19:3c:d1:ae:20:40:25:f5:11:80:46:8d:5b:72:4e:22:88:9d:
ad:5f:64:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:35 2023 by rpki-client on console-ams.rpki-client.org