Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/b1e1fc-3fe2-4799-8eef-e022dd0fa3e1/1/hOTnQxJ9dEBUxvg-_Mge5skcRiM.roa
File: hOTnQxJ9dEBUxvg-_Mge5skcRiM.roa (raw, json)
Hash identifier: lLkPGWSl21VNpA5aaEzYl92W90YuMJ2/8sH82Ug4xVQ=
Subject key identifier: 84:E4:E7:43:12:7D:74:40:54:C6:F8:3E:FC:C8:1E:E6:C9:1C:46:23
Certificate issuer: /CN=7f94b73b4172fb31b76bb9f1467b36e5ab9a2edd
Certificate serial: 01856D5D26153E0D5935BEB7A4BA56382608
Authority key identifier: 7F:94:B7:3B:41:72:FB:31:B7:6B:B9:F1:46:7B:36:E5:AB:9A:2E:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f5S3O0Fy-zG3a7nxRns25auaLt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/b1e1fc-3fe2-4799-8eef-e022dd0fa3e1/1/hOTnQxJ9dEBUxvg-_Mge5skcRiM.roa
Signing time: Sun 01 Jan 2023 12:44:59 +0000
ROA not before: Sun 01 Jan 2023 12:44:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3356
IP address blocks: 85.8.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:5d:26:15:3e:0d:59:35:be:b7:a4:ba:56:38:26:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f94b73b4172fb31b76bb9f1467b36e5ab9a2edd
Validity
Not Before: Jan 1 12:44:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=84e4e743127d744054c6f83efcc81ee6c91c4623
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:df:75:3e:d7:3e:6e:00:11:bf:d5:d3:1d:4b:
1f:7a:72:66:9e:62:fc:53:99:2f:4d:b1:4f:f1:dd:
4c:9c:10:e2:65:44:ff:4c:4c:17:bc:6f:0a:d7:a2:
eb:f5:62:46:a1:51:e3:bf:81:04:e8:8f:87:e0:19:
fb:7a:8e:79:e0:11:8e:97:0b:e0:87:3f:f4:02:43:
1f:5e:f0:53:d3:ab:76:3c:48:c2:dd:06:73:d1:c8:
d0:aa:a6:61:f3:bd:c0:cc:e7:1b:92:0c:6d:c3:b8:
20:84:85:62:3d:a9:9c:e6:43:ca:24:21:95:82:01:
cf:df:5b:8f:8b:2c:24:9d:b6:98:78:e5:ea:c3:dc:
63:65:db:be:4c:44:99:54:ea:ef:82:32:9d:d5:bb:
fd:16:00:e3:db:f3:00:61:d6:5e:fe:63:a7:53:81:
42:80:87:c5:2d:08:e9:f5:d6:78:21:2a:2b:a6:ac:
01:d6:70:18:57:ea:3e:e5:68:99:ed:26:19:aa:b8:
a4:88:43:77:fd:57:9d:a1:77:c4:76:c4:cc:1f:81:
86:03:75:cc:91:5f:77:56:79:a0:fb:a1:af:1a:c7:
e6:c5:f8:0c:c7:d3:57:d9:83:9b:05:99:85:4e:fd:
09:c0:bf:02:f1:9c:c6:66:28:d2:01:c6:3b:c2:0e:
79:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:E4:E7:43:12:7D:74:40:54:C6:F8:3E:FC:C8:1E:E6:C9:1C:46:23
X509v3 Authority Key Identifier:
keyid:7F:94:B7:3B:41:72:FB:31:B7:6B:B9:F1:46:7B:36:E5:AB:9A:2E:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5S3O0Fy-zG3a7nxRns25auaLt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b1e1fc-3fe2-4799-8eef-e022dd0fa3e1/1/hOTnQxJ9dEBUxvg-_Mge5skcRiM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/b1e1fc-3fe2-4799-8eef-e022dd0fa3e1/1/f5S3O0Fy-zG3a7nxRns25auaLt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.8.130.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:fb:79:74:23:c4:0e:3f:dd:71:f4:01:6d:9c:6e:c4:05:c2:
17:c2:59:90:f5:d1:36:2b:ca:cb:26:c8:15:2e:94:76:a0:df:
12:33:22:a3:cf:0c:50:f5:1d:8e:ec:82:5f:a4:dd:f2:89:88:
2e:dd:cf:7f:c1:d2:0d:22:2e:77:04:46:d3:c8:e2:87:40:e5:
76:9e:a3:90:9c:37:d4:91:21:96:6f:9d:03:70:d0:fb:a5:86:
89:4e:69:88:6d:28:24:42:c6:af:ba:c2:1f:3f:50:09:f1:8b:
69:92:9c:30:76:d2:18:31:1f:69:90:0d:c6:85:42:b8:1a:8d:
c9:72:ca:81:e4:47:3c:03:be:f8:24:97:5d:82:16:e2:88:0f:
8e:00:fd:7f:09:08:07:7e:7a:a2:0d:4a:b2:15:37:79:8e:a2:
e8:a6:13:ab:5e:bd:f1:cb:d1:c5:67:a4:c0:9b:86:59:24:80:
f0:2c:05:79:26:12:02:8c:bd:17:19:0c:19:66:eb:50:c0:67:
eb:e4:ee:64:45:28:ef:42:ce:1f:df:9c:51:98:08:9b:eb:53:
38:95:8e:a8:1b:7e:6d:d8:d7:87:ca:0b:54:e8:84:4c:96:3a:
7c:c5:48:ca:60:a7:18:e6:d1:e2:8e:81:02:5f:9a:bd:3b:f4:
06:4f:a4:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:51 2024 by rpki-client on console-fra.rpki-client.org