Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/0beccb-24f7-4a3c-be1c-c32ac5ef18ad/1/NFKvV3nMLtlS-1vokalFgEyqOcA.roa
File: NFKvV3nMLtlS-1vokalFgEyqOcA.roa (raw, json)
Hash identifier: PA5KqEf0T82TvcdMjYh8f6Jp2mJe7Kfrb7wDQ/kUgw4=
Subject key identifier: 34:52:AF:57:79:CC:2E:D9:52:FB:5B:E8:91:A9:45:80:4C:AA:39:C0
Certificate issuer: /CN=4093304040eb54303e49b20451ef84456ccb4acb
Certificate serial: 05775BF3
Authority key identifier: 40:93:30:40:40:EB:54:30:3E:49:B2:04:51:EF:84:45:6C:CB:4A:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QJMwQEDrVDA-SbIEUe-ERWzLSss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/0beccb-24f7-4a3c-be1c-c32ac5ef18ad/1/NFKvV3nMLtlS-1vokalFgEyqOcA.roa
Signing time: Sat 01 Jan 2022 16:05:45 +0000
ROA not before: Sat 01 Jan 2022 16:05:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207614
IP address blocks: 185.238.84.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91708403 (0x5775bf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4093304040eb54303e49b20451ef84456ccb4acb
Validity
Not Before: Jan 1 16:05:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3452af5779cc2ed952fb5be891a945804caa39c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:7a:e2:a4:4e:33:93:27:ad:ac:64:5f:54:e6:
c5:ac:25:bb:fb:84:fb:e9:c8:04:69:22:e0:66:22:
f6:37:c3:94:1d:30:fa:e8:d4:b6:43:21:52:5f:41:
6a:ac:5b:04:c6:3d:d7:b4:42:ac:fe:4f:87:c0:33:
83:1b:f3:ee:61:ca:c6:ca:9a:42:21:fd:ff:88:fd:
49:19:ee:e4:c7:07:b3:e0:f5:cc:6e:a5:ff:0b:1a:
4f:38:3a:d6:5e:1d:74:1d:14:23:7b:76:db:6f:8c:
d5:cf:98:eb:bc:11:57:df:bf:89:db:62:e8:db:2d:
4f:91:14:58:39:e2:54:52:2f:96:d3:93:3f:83:a6:
4a:36:3f:73:a6:ff:35:e3:f0:6b:d0:3c:01:ca:88:
2e:48:5d:35:73:20:23:2b:09:da:e5:1c:97:a2:11:
9a:54:b5:2b:80:fb:fc:b3:76:2d:59:b4:82:ab:a1:
cb:40:c3:cb:df:4d:7a:da:bc:7e:b7:54:17:f7:01:
24:f2:64:67:5d:68:9a:98:6b:59:9c:e6:6a:df:f0:
ba:03:f9:d3:84:ee:15:11:d1:17:65:13:ab:1a:e9:
39:51:4f:6f:71:1d:3f:0d:45:32:c4:d7:40:c3:b4:
07:04:c2:7f:39:d6:75:93:7d:f3:de:65:1c:b7:a8:
8e:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:52:AF:57:79:CC:2E:D9:52:FB:5B:E8:91:A9:45:80:4C:AA:39:C0
X509v3 Authority Key Identifier:
keyid:40:93:30:40:40:EB:54:30:3E:49:B2:04:51:EF:84:45:6C:CB:4A:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QJMwQEDrVDA-SbIEUe-ERWzLSss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0beccb-24f7-4a3c-be1c-c32ac5ef18ad/1/NFKvV3nMLtlS-1vokalFgEyqOcA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0beccb-24f7-4a3c-be1c-c32ac5ef18ad/1/QJMwQEDrVDA-SbIEUe-ERWzLSss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.238.84.0/22
Signature Algorithm: sha256WithRSAEncryption
68:cd:31:07:90:fd:06:17:d0:35:8d:d2:5b:0e:9d:08:4e:cb:
95:35:66:69:e0:e5:38:9c:40:2c:a5:4f:5d:16:1e:67:ed:1f:
5d:85:6e:d6:e0:8d:32:fc:29:14:91:0d:0e:ce:e3:45:4f:6c:
15:51:5d:6f:de:3a:65:ae:d4:ca:9e:9c:a8:67:cf:a2:91:84:
32:ca:0f:c4:19:e2:c3:f5:e6:cc:a0:5a:2c:c7:cc:76:28:71:
69:75:c1:42:e4:e6:bd:92:ac:07:60:36:15:a2:76:4a:b7:54:
83:cc:2c:1c:2c:e7:98:14:8d:08:95:57:90:03:79:c5:21:19:
0c:ac:6d:f0:f5:d4:f3:3b:4a:8c:8d:f5:a4:fd:74:f1:25:51:
a7:78:a1:70:02:4b:e2:49:e8:86:6f:c5:db:bb:f5:96:ab:d0:
21:16:8f:80:0e:99:ba:1b:62:e2:17:07:7e:99:35:9b:1a:37:
ed:d2:fb:f8:4e:8c:96:a9:b1:da:14:69:61:ab:68:39:f5:49:
7e:2d:8b:b7:90:56:ee:11:06:02:e0:53:3a:2f:8e:fb:d3:c0:
69:de:e8:6b:27:34:24:e3:00:49:c0:3c:bd:33:61:0a:52:59:
71:bb:9e:cf:6a:a7:3e:b6:8c:7a:0d:47:25:f5:8d:ce:56:bc:
10:38:b6:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:10 2024 by rpki-client on console-ams.rpki-client.org