Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/059b97-5912-42a8-9c2a-6c5930ced73d/1/H-GnS79aXpE5kXYs0gAm2bUbJvo.roa
File: H-GnS79aXpE5kXYs0gAm2bUbJvo.roa (raw, json)
Hash identifier: WBmN0rZKWEzbsSSQMPI4OehVNJo2pbqxxy6cfSwpSAk=
Subject key identifier: 1F:E1:A7:4B:BF:5A:5E:91:39:91:76:2C:D2:00:26:D9:B5:1B:26:FA
Certificate issuer: /CN=62aa933281198fd2d19bc97a0258c001ffc9ed9d
Certificate serial: 018C1E0D5DAFA0770CB8A99CE831E0CE8FE9
Authority key identifier: 62:AA:93:32:81:19:8F:D2:D1:9B:C9:7A:02:58:C0:01:FF:C9:ED:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqqTMoEZj9LRm8l6AljAAf_J7Z0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/059b97-5912-42a8-9c2a-6c5930ced73d/1/H-GnS79aXpE5kXYs0gAm2bUbJvo.roa
Signing time: Thu 30 Nov 2023 02:27:21 +0000
ROA not before: Thu 30 Nov 2023 02:27:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136038
IP address blocks: 185.202.103.0/24 maxlen: 24
185.202.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:1e:0d:5d:af:a0:77:0c:b8:a9:9c:e8:31:e0:ce:8f:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62aa933281198fd2d19bc97a0258c001ffc9ed9d
Validity
Not Before: Nov 30 02:27:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1fe1a74bbf5a5e913991762cd20026d9b51b26fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b9:ca:4d:51:08:44:35:9a:f5:72:af:17:94:
a4:b8:82:a8:65:8f:21:26:67:e1:d1:85:43:4e:86:
a3:27:91:e5:c1:bc:59:91:94:80:9d:bb:f5:67:c3:
04:60:7d:25:bd:f7:25:8e:f8:e4:9b:ae:7e:48:5b:
b7:e5:b7:d2:81:4f:82:ff:21:1e:6c:73:dc:24:5f:
c0:f4:2f:d6:3c:96:d4:dd:4e:06:dd:e5:4c:5f:8d:
cb:b7:b1:00:be:7b:13:06:6b:05:be:2f:54:64:d3:
5b:83:24:8f:ee:be:24:76:74:3c:6e:5d:8d:8f:53:
6d:c0:d6:13:2c:ac:b6:9d:46:9a:c2:77:af:3c:78:
7f:1e:79:18:8c:fb:7b:ac:dc:0c:c3:9a:48:00:19:
98:65:42:c7:2f:7f:c3:48:2e:08:5f:4c:a1:b3:dc:
ca:86:3a:79:1d:4d:62:48:e1:28:46:a4:a8:c7:72:
9e:8c:a4:50:f1:e4:1b:45:ac:3c:28:a8:77:43:40:
76:06:ca:c0:33:80:bd:ad:39:fc:e4:ee:7b:f8:40:
44:35:9c:11:8e:9e:f2:a3:bf:ad:23:73:d3:36:72:
75:dc:87:2d:53:b3:2c:8f:6d:f8:40:9c:75:d2:8b:
3d:42:f6:dd:34:0e:97:04:78:f0:53:a3:95:6a:67:
46:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:E1:A7:4B:BF:5A:5E:91:39:91:76:2C:D2:00:26:D9:B5:1B:26:FA
X509v3 Authority Key Identifier:
keyid:62:AA:93:32:81:19:8F:D2:D1:9B:C9:7A:02:58:C0:01:FF:C9:ED:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqqTMoEZj9LRm8l6AljAAf_J7Z0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/059b97-5912-42a8-9c2a-6c5930ced73d/1/H-GnS79aXpE5kXYs0gAm2bUbJvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/059b97-5912-42a8-9c2a-6c5930ced73d/1/YqqTMoEZj9LRm8l6AljAAf_J7Z0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.202.101.0/24
185.202.103.0/24
Signature Algorithm: sha256WithRSAEncryption
44:53:93:bf:0f:0b:23:a3:92:f8:8c:c0:d3:32:6a:03:0e:d5:
2e:62:f3:8a:da:2c:99:7d:a2:97:fc:70:e9:7e:6f:9d:b5:d0:
c7:c0:28:60:6a:6c:66:96:de:19:64:80:3a:98:10:02:ae:ce:
2b:1c:99:bc:e0:12:d5:1b:a0:0d:d0:4c:3c:0f:47:be:1e:12:
77:83:46:08:15:74:19:df:f6:41:fe:ef:55:f9:df:d2:8d:8e:
75:03:d1:3a:fc:8d:e3:7f:6d:ee:5c:0e:9f:e6:d6:71:35:d1:
54:c9:09:7b:41:e4:85:83:31:e6:86:44:b4:a7:47:7c:e3:de:
14:72:84:57:58:4a:3d:b6:bd:37:b8:55:fe:d9:83:46:d7:17:
10:77:d3:48:9a:04:4f:86:64:f1:f9:83:71:0c:ef:f9:9e:05:
80:79:c8:f9:40:26:4c:52:89:ca:a3:0f:95:c4:dc:d0:76:04:
8e:bb:21:50:a5:c8:a7:ed:0f:ec:dc:01:66:30:db:dc:34:d1:
98:1f:6e:b7:c5:f0:76:9d:d6:0b:fa:fa:2f:de:3b:35:00:0c:
9f:c6:01:be:c1:be:c2:9e:d3:d8:86:e8:2b:47:38:56:ae:e4:
76:eb:76:22:29:08:31:31:95:1e:cc:55:b7:e3:79:60:a6:2d:
bf:c5:04:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:51:02 2025 by rpki-client