Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a48d54-9996-406d-b81b-d9cc3fd6ff60/1/a3UysNw3IKMoR-Rys9mxLGp9y_g.roa
File: a3UysNw3IKMoR-Rys9mxLGp9y_g.roa (raw, json)
Hash identifier: FreA2cZA8nawmXO1lxjRUV9p2qTgPz6ymEWhK3UCKE0=
Subject key identifier: 6B:75:32:B0:DC:37:20:A3:28:47:E4:72:B3:D9:B1:2C:6A:7D:CB:F8
Certificate issuer: /CN=9cb9ce3e85eba7753b36e0d24510ccae8aa2b377
Certificate serial: 01856C8A5EC946F7BA330B5C60A628260D96
Authority key identifier: 9C:B9:CE:3E:85:EB:A7:75:3B:36:E0:D2:45:10:CC:AE:8A:A2:B3:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLnOPoXrp3U7NuDSRRDMroqis3c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a48d54-9996-406d-b81b-d9cc3fd6ff60/1/a3UysNw3IKMoR-Rys9mxLGp9y_g.roa
Signing time: Sun 01 Jan 2023 08:54:45 +0000
ROA not before: Sun 01 Jan 2023 08:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60428
IP address blocks: 185.130.89.0/24 maxlen: 24
2a0e:a5c0::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:8a:5e:c9:46:f7:ba:33:0b:5c:60:a6:28:26:0d:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9cb9ce3e85eba7753b36e0d24510ccae8aa2b377
Validity
Not Before: Jan 1 08:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6b7532b0dc3720a32847e472b3d9b12c6a7dcbf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6f:f7:83:f5:9b:ec:9f:48:43:46:08:94:0b:
d0:3e:39:c3:8e:e8:1f:4d:71:0c:b0:99:a3:ad:7a:
da:7f:07:1d:3a:94:0c:b2:87:cc:c7:5f:e1:49:f9:
64:72:a4:f9:26:4d:30:3b:21:cc:14:6f:f3:35:a2:
b5:c8:52:a5:62:50:55:22:21:e7:0d:1e:d4:1b:0e:
7b:a5:ad:c2:32:be:13:de:7c:a2:be:9f:9a:45:90:
44:67:91:fd:3a:25:70:1f:f2:f7:53:f5:95:85:f0:
ad:47:0d:19:1b:a7:16:f1:ff:ee:84:49:4b:21:3d:
0d:ec:14:3b:1c:63:ee:ec:92:96:09:89:a8:e1:22:
80:ff:d4:d6:55:cf:bf:23:6c:24:83:3e:3b:14:69:
75:fa:c7:38:a4:9a:2f:62:db:62:41:ec:c1:a5:48:
f5:e1:f8:31:9f:6d:64:d4:13:5e:f6:92:24:7f:b7:
0a:d1:46:9f:fc:93:f7:bf:46:fc:23:41:f4:6a:96:
79:26:67:ad:a4:b9:85:10:d3:55:cb:e5:76:43:69:
ef:22:e2:eb:5a:60:52:b4:22:ad:61:bb:5c:76:66:
b8:65:2a:ed:b2:db:0d:2a:18:f5:c0:b8:a2:24:f4:
5f:77:f1:82:f1:db:e2:41:60:00:1c:7b:49:b5:41:
e8:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:75:32:B0:DC:37:20:A3:28:47:E4:72:B3:D9:B1:2C:6A:7D:CB:F8
X509v3 Authority Key Identifier:
keyid:9C:B9:CE:3E:85:EB:A7:75:3B:36:E0:D2:45:10:CC:AE:8A:A2:B3:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLnOPoXrp3U7NuDSRRDMroqis3c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a48d54-9996-406d-b81b-d9cc3fd6ff60/1/a3UysNw3IKMoR-Rys9mxLGp9y_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a48d54-9996-406d-b81b-d9cc3fd6ff60/1/nLnOPoXrp3U7NuDSRRDMroqis3c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.130.89.0/24
IPv6:
2a0e:a5c0::/48
Signature Algorithm: sha256WithRSAEncryption
10:f3:f0:f7:42:b4:b3:89:b4:a6:43:99:c5:a5:48:68:49:df:
f2:51:02:4c:d2:cf:d5:e6:27:48:a0:e3:36:08:f6:04:e6:2b:
7e:77:79:c7:15:61:3d:57:ee:16:f6:34:fe:df:36:ca:76:c8:
5a:05:75:72:30:2f:9d:f9:7e:63:ba:e1:3a:c8:21:02:71:b3:
21:58:19:08:e8:b6:d8:84:50:7d:03:d0:97:0e:49:14:17:9d:
db:d0:b0:c5:1c:dd:d6:ad:0a:24:4f:42:d1:d1:a0:ee:e5:8f:
46:97:84:e4:22:b8:77:ca:ab:5e:a5:0f:c8:dc:be:d7:33:63:
5e:3a:63:d7:51:9b:fd:85:39:27:01:5f:45:69:c4:94:99:69:
0d:63:4d:4e:e4:a4:b9:62:bd:a3:4d:d1:08:69:95:c8:11:31:
5f:ae:78:cf:1f:e7:9d:47:15:c3:eb:d0:39:78:6e:ab:fc:6b:
3a:de:b2:5d:31:bb:13:43:42:c6:14:54:60:e3:d5:80:03:e3:
ff:e4:03:9f:01:5a:fe:f2:18:ed:0d:bd:c7:bf:16:fe:14:07:
32:e3:6d:d1:2b:24:ca:71:7a:fe:14:e1:f0:90:17:85:29:22:
44:65:bf:0f:6d:8c:dc:bb:ff:73:1c:ab:25:ae:f2:c3:4f:7b:
34:b5:68:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:48 2024 by rpki-client on console-fra.rpki-client.org