Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/9c035f-8bf9-46ab-a2c9-9fd9bd7b28bb/1/Oy-7lbcYeTS48UPD1DePL44ZR_w.roa
File: Oy-7lbcYeTS48UPD1DePL44ZR_w.roa (raw, json)
Hash identifier: 7nsy7HAWMc0hdfDg0djr1tMQercEqxJbQjQ1UBU5ysQ=
Subject key identifier: 3B:2F:BB:95:B7:18:79:34:B8:F1:43:C3:D4:37:8F:2F:8E:19:47:FC
Certificate issuer: /CN=d0dbe1087818aadf3424acd8b998c68d97f90796
Certificate serial: 018CC50121B5326B24DAE76408071311D1EF
Authority key identifier: D0:DB:E1:08:78:18:AA:DF:34:24:AC:D8:B9:98:C6:8D:97:F9:07:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0NvhCHgYqt80JKzYuZjGjZf5B5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/9c035f-8bf9-46ab-a2c9-9fd9bd7b28bb/1/Oy-7lbcYeTS48UPD1DePL44ZR_w.roa
Signing time: Mon 01 Jan 2024 12:30:34 +0000
ROA not before: Mon 01 Jan 2024 12:30:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59633
IP address blocks: 185.149.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:01:21:b5:32:6b:24:da:e7:64:08:07:13:11:d1:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0dbe1087818aadf3424acd8b998c68d97f90796
Validity
Not Before: Jan 1 12:30:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3b2fbb95b7187934b8f143c3d4378f2f8e1947fc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d9:bc:ba:ab:10:b2:5b:5f:89:01:07:d2:d1:
50:26:4e:49:01:90:2d:8a:88:55:66:be:56:bf:fa:
0f:68:a7:3c:a6:fc:26:78:15:2e:e9:2e:f2:d0:e3:
bf:d0:07:7c:bb:21:8f:59:4b:1e:c7:5f:04:42:d8:
a4:b7:d8:d8:11:16:6d:3f:bf:8c:3b:42:e3:af:b3:
a6:6f:25:95:5d:91:2d:48:8f:1b:44:58:ba:74:62:
37:2f:31:bb:59:39:2d:8e:7d:3c:71:58:03:10:90:
91:bd:7c:97:81:e8:c8:07:18:15:e3:74:05:6f:8b:
b1:03:53:87:62:4e:23:d0:bf:95:91:01:a2:3e:5a:
37:a7:a4:57:28:de:d3:e6:67:54:69:78:5d:a8:67:
6a:fe:20:fb:22:cb:74:38:01:fb:a6:85:b7:66:df:
04:c8:9d:ee:e7:b6:be:16:00:f1:98:9c:6c:44:2b:
da:bb:2f:24:85:e9:9c:06:fa:aa:dd:9b:3e:8b:2f:
a4:ec:c3:7b:6b:51:91:da:db:2e:b4:ac:36:14:a1:
95:73:6e:53:cb:ba:ff:1f:98:ec:0d:90:c7:72:74:
35:f0:a8:fe:e7:f9:19:b4:e6:f3:0e:5c:15:ce:5c:
6b:df:4d:74:0e:21:29:a9:cb:60:c7:45:3a:2c:a3:
5a:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:2F:BB:95:B7:18:79:34:B8:F1:43:C3:D4:37:8F:2F:8E:19:47:FC
X509v3 Authority Key Identifier:
keyid:D0:DB:E1:08:78:18:AA:DF:34:24:AC:D8:B9:98:C6:8D:97:F9:07:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0NvhCHgYqt80JKzYuZjGjZf5B5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c035f-8bf9-46ab-a2c9-9fd9bd7b28bb/1/Oy-7lbcYeTS48UPD1DePL44ZR_w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/9c035f-8bf9-46ab-a2c9-9fd9bd7b28bb/1/0NvhCHgYqt80JKzYuZjGjZf5B5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.122.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:4f:98:5e:cb:10:34:0e:f3:a2:c6:f4:7d:7a:39:41:c8:0b:
e5:c1:42:5c:0f:83:af:43:3f:f9:e6:13:d1:44:89:a7:f1:69:
67:57:11:16:5b:a1:89:99:49:f8:aa:b7:06:1f:8f:87:e6:99:
98:3f:18:a9:dc:d3:76:55:59:d0:3d:8c:87:b8:84:32:8c:98:
19:81:62:19:9f:15:19:b4:2b:0b:bd:3a:79:0d:48:35:b9:ae:
81:19:c7:0a:34:9c:d1:c3:08:69:1b:46:61:e3:92:f5:9f:39:
c5:48:fc:07:c4:78:66:24:88:a8:aa:46:83:59:4a:b1:fb:58:
c4:7a:e1:f1:bb:ec:ec:b2:9a:bc:fb:d1:7a:f3:e1:ba:d8:4d:
b1:e0:c0:59:44:4a:25:bd:32:d3:11:4f:7b:23:a2:31:4b:ca:
b3:d9:b8:2c:d3:06:bf:83:6e:5a:30:55:b9:d9:33:26:53:3d:
43:73:6c:5a:dc:7d:8e:90:78:13:df:12:d4:91:0a:3e:33:1d:
6c:fe:89:ea:06:77:ed:02:73:c2:bb:ee:81:32:b1:72:bb:de:
e6:5b:12:56:7e:65:7c:2a:e8:f3:8d:ac:ae:60:8e:9f:6e:4d:
53:44:cd:1a:77:54:68:88:29:5a:73:d4:b8:90:db:91:3d:a3:
6c:9e:23:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:04 2024 by rpki-client on console-ams.rpki-client.org