Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/b487ab-5e31-4117-ada8-a5d3cb918206/1/oKzx_TYTaqqyuSSrRoKD7FArBPM.roa
File: oKzx_TYTaqqyuSSrRoKD7FArBPM.roa (raw, json)
Hash identifier: wsSVFigC1EF/bg69RXQtayzBZU455RCF/Zk04aq88GM=
Subject key identifier: A0:AC:F1:FD:36:13:6A:AA:B2:B9:24:AB:46:82:83:EC:50:2B:04:F3
Certificate issuer: /CN=a2893a4b284acb5d8a4164289045492109511688
Certificate serial: 01856CE631F29B2B6A4F056D25542F474F5C
Authority key identifier: A2:89:3A:4B:28:4A:CB:5D:8A:41:64:28:90:45:49:21:09:51:16:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ook6SyhKy12KQWQokEVJIQlRFog.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/b487ab-5e31-4117-ada8-a5d3cb918206/1/oKzx_TYTaqqyuSSrRoKD7FArBPM.roa
Signing time: Sun 01 Jan 2023 10:35:03 +0000
ROA not before: Sun 01 Jan 2023 10:35:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44459
IP address blocks: 185.182.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:e6:31:f2:9b:2b:6a:4f:05:6d:25:54:2f:47:4f:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2893a4b284acb5d8a4164289045492109511688
Validity
Not Before: Jan 1 10:35:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a0acf1fd36136aaab2b924ab468283ec502b04f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8c:b0:2b:73:d2:4b:95:91:a6:f4:9e:03:9b:
ff:31:69:39:8e:89:7d:84:88:94:f9:74:af:f7:69:
58:b6:15:92:8f:5e:c1:3b:6b:b7:d3:f6:2b:73:dd:
0b:15:35:7e:60:d0:ca:43:50:06:58:a9:82:37:6a:
74:5f:36:8b:30:ae:ab:67:f6:26:7e:c6:bb:f7:51:
a3:c3:06:43:ee:3d:f2:d5:ab:a7:b3:4c:b1:d8:8c:
1d:55:f0:35:3d:7e:62:00:c9:90:a4:df:51:20:c3:
83:99:da:69:3a:5b:e2:b7:2a:2f:f2:17:bd:26:17:
ee:4c:0f:5a:ae:28:03:a0:4f:ed:8f:82:8b:c6:24:
06:43:a1:06:b1:16:73:f2:30:0c:9d:c9:b4:9b:fa:
4c:af:69:75:25:63:c6:b8:98:bf:a6:ea:99:29:8e:
a3:4a:27:d5:51:71:a1:a5:a0:99:5d:31:b1:c2:d2:
90:25:f9:55:d8:5c:c7:0d:fa:2f:28:49:1d:06:1b:
a0:f1:7f:da:1d:ba:27:70:81:f4:7e:b0:e6:f0:ce:
8d:40:ac:c2:0a:8f:5c:5e:fb:49:a3:42:20:55:2d:
2f:7a:24:ea:6b:98:83:c4:78:b4:50:7e:8b:30:51:
00:bd:f5:5f:f0:75:c8:14:ca:dc:31:8b:07:2f:85:
7f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:AC:F1:FD:36:13:6A:AA:B2:B9:24:AB:46:82:83:EC:50:2B:04:F3
X509v3 Authority Key Identifier:
keyid:A2:89:3A:4B:28:4A:CB:5D:8A:41:64:28:90:45:49:21:09:51:16:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ook6SyhKy12KQWQokEVJIQlRFog.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/b487ab-5e31-4117-ada8-a5d3cb918206/1/oKzx_TYTaqqyuSSrRoKD7FArBPM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/b487ab-5e31-4117-ada8-a5d3cb918206/1/ook6SyhKy12KQWQokEVJIQlRFog.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.182.240.0/22
Signature Algorithm: sha256WithRSAEncryption
37:6f:6f:73:42:27:49:d1:ca:47:f3:89:7d:43:b2:0b:a2:33:
2b:3f:e9:c7:54:e2:e3:ad:2e:c1:1c:b4:87:54:1d:8e:dd:9e:
ec:65:53:b9:0a:31:6e:c8:5d:49:ad:4b:1d:26:39:35:12:c4:
4d:80:43:22:41:79:06:2c:f5:6c:96:2a:94:72:83:8a:4b:af:
f5:1e:92:72:78:68:3e:2c:c3:76:45:98:a7:f3:48:7f:b4:b6:
2c:32:22:e8:3d:5d:7a:e1:8d:ed:4d:a2:dd:1a:a8:dd:30:62:
6d:5e:9a:96:10:28:d0:48:a7:a5:42:15:0f:7d:9c:ea:2f:6f:
99:42:4b:94:0e:ae:da:13:3d:c7:b9:32:af:5e:b9:10:3e:36:
f3:32:04:54:c9:8f:2f:fe:84:02:30:a2:d2:3c:e5:5e:d2:69:
83:77:a4:fe:64:82:75:6a:a6:4c:2b:71:74:58:68:a4:34:0d:
72:33:14:55:c5:04:de:06:0a:c4:f2:c4:bc:48:47:81:ee:80:
15:8c:4b:d3:ca:6c:74:c6:cd:05:1f:05:62:23:6e:a2:75:7e:
66:c4:8a:45:3f:45:6f:b3:e7:4e:89:99:5c:1f:fd:21:bd:ff:
f1:50:e5:90:85:f8:3c:4c:90:ff:81:e0:33:f3:6a:aa:ba:b4:
70:90:c2:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:11 2025 by rpki-client