Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/e64400-09c9-4135-8a80-187e99dcd66b/1/uJOFR4Z3q3_DFzG0T3NBy2X9RVo.roa
File: uJOFR4Z3q3_DFzG0T3NBy2X9RVo.roa (raw, json)
Hash identifier: urhXiGBK8FXT19h6byx5QcFgJ5XrnRuOQkDh8BvfVCI=
Subject key identifier: B8:93:85:47:86:77:AB:7F:C3:17:31:B4:4F:73:41:CB:65:FD:45:5A
Certificate issuer: /CN=4929c20d7ab48b60f3d8fe1275ec80cb01289404
Certificate serial: 0185710C26FC1071B60C5297D72B48F5EFAA
Authority key identifier: 49:29:C2:0D:7A:B4:8B:60:F3:D8:FE:12:75:EC:80:CB:01:28:94:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SSnCDXq0i2Dz2P4SdeyAywEolAQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/e64400-09c9-4135-8a80-187e99dcd66b/1/uJOFR4Z3q3_DFzG0T3NBy2X9RVo.roa
Signing time: Mon 02 Jan 2023 05:54:59 +0000
ROA not before: Mon 02 Jan 2023 05:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35913
IP address blocks: 185.240.24.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:0c:26:fc:10:71:b6:0c:52:97:d7:2b:48:f5:ef:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4929c20d7ab48b60f3d8fe1275ec80cb01289404
Validity
Not Before: Jan 2 05:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b89385478677ab7fc31731b44f7341cb65fd455a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:44:cb:0f:74:f0:16:d5:43:d8:1f:e4:77:51:
7a:6a:de:c3:0c:20:4f:59:78:9c:34:88:01:cf:7d:
7d:10:e7:56:e9:db:22:e9:b6:69:a5:c7:04:1c:a6:
da:7f:97:51:f2:ba:cf:53:77:c7:68:1b:b3:65:ef:
9a:0a:38:8f:1a:8c:2a:02:ac:18:d0:69:6e:18:1f:
ff:3c:64:bd:61:6b:f2:58:b8:37:aa:a4:01:74:47:
34:54:e8:24:3b:03:18:c3:3c:bd:8c:85:06:cc:33:
fc:9d:15:cd:84:a4:bb:ba:a4:81:22:21:ff:6d:01:
5d:e4:ae:3b:f7:e6:0e:d9:fc:2e:7e:63:42:0f:91:
b3:a1:c6:ff:24:0c:d3:49:25:28:91:8e:e0:7e:9d:
64:d4:70:52:2d:42:e6:79:b8:fd:6d:ff:fc:51:1a:
c1:87:71:38:6f:87:36:24:a5:ce:09:f7:ff:55:2c:
84:85:5e:43:1c:e7:b3:4d:48:3c:af:3d:92:33:99:
a3:89:f6:d8:ab:2a:7d:a8:53:4f:f5:2b:5a:16:93:
7e:28:04:94:ea:ca:ea:ab:66:9a:71:b9:c2:bb:e4:
8b:55:64:3a:7a:d9:1d:8c:11:ad:23:5b:dc:a4:ed:
12:ac:8a:8d:68:13:56:7f:70:fd:b9:cd:40:16:5d:
04:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:93:85:47:86:77:AB:7F:C3:17:31:B4:4F:73:41:CB:65:FD:45:5A
X509v3 Authority Key Identifier:
keyid:49:29:C2:0D:7A:B4:8B:60:F3:D8:FE:12:75:EC:80:CB:01:28:94:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SSnCDXq0i2Dz2P4SdeyAywEolAQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/e64400-09c9-4135-8a80-187e99dcd66b/1/uJOFR4Z3q3_DFzG0T3NBy2X9RVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/e64400-09c9-4135-8a80-187e99dcd66b/1/SSnCDXq0i2Dz2P4SdeyAywEolAQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.24.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:db:2c:cd:23:6a:2a:ab:89:f7:ec:68:06:d6:1a:f0:87:c4:
f7:88:a3:34:dc:dc:86:c7:78:d1:b2:da:f0:c0:6e:b9:99:68:
dd:f5:2e:ee:3a:73:a1:0f:82:b7:57:f3:3f:76:5e:79:f8:6d:
0c:2d:63:63:6e:28:d7:d4:00:95:4d:69:b3:f6:bd:cc:77:81:
c3:85:76:bd:66:18:29:98:56:44:2f:aa:6f:f4:60:26:80:49:
68:30:bf:ef:77:b0:99:1b:c4:2d:db:6f:68:3a:76:c8:32:95:
8b:30:84:f7:a5:7f:aa:47:df:14:5c:b3:15:e1:bd:3a:79:41:
aa:ce:a2:5b:ea:28:88:77:69:06:ea:89:33:66:f4:76:24:24:
bf:e4:f1:cc:a4:1d:79:33:e3:a7:ab:a8:8f:9a:ec:04:76:b6:
be:e7:e3:be:59:9a:53:7d:ec:7a:6f:6f:f8:3e:80:c4:56:13:
25:21:bb:14:18:90:1b:d3:9e:c1:48:53:c6:c5:10:d7:85:cf:
cd:1b:6d:fe:e3:54:4a:8f:e5:3b:42:d9:f4:c7:c0:ed:d2:20:
8c:00:32:d2:ec:4e:ed:04:ac:55:44:84:c9:49:76:53:67:7c:
16:0a:86:c9:38:2a:cd:03:d2:a4:44:91:9a:a3:90:ab:21:c2:
42:73:d5:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:02 2023 by rpki-client on console-ams.rpki-client.org