Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/968e74-8315-4056-a81d-04fd81c1080a/1/Hl9LE_aLl1nWjamelkbMuOlBDNc.roa
File: Hl9LE_aLl1nWjamelkbMuOlBDNc.roa (raw, json)
Hash identifier: f+38coOv/hUNXQlnR63I4qUWQPnti3EXtuOzgDobpv8=
Subject key identifier: 1E:5F:4B:13:F6:8B:97:59:D6:8D:A9:9E:96:46:CC:B8:E9:41:0C:D7
Certificate issuer: /CN=4b5d88e548ceeaa627c00d718da04fd667d2c5d1
Certificate serial: 01857230FF84D29F08F1E7DC044C8C13093F
Authority key identifier: 4B:5D:88:E5:48:CE:EA:A6:27:C0:0D:71:8D:A0:4F:D6:67:D2:C5:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S12I5UjO6qYnwA1xjaBP1mfSxdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/968e74-8315-4056-a81d-04fd81c1080a/1/Hl9LE_aLl1nWjamelkbMuOlBDNc.roa
Signing time: Mon 02 Jan 2023 11:14:51 +0000
ROA not before: Mon 02 Jan 2023 11:14:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211064
IP address blocks: 185.236.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:30:ff:84:d2:9f:08:f1:e7:dc:04:4c:8c:13:09:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b5d88e548ceeaa627c00d718da04fd667d2c5d1
Validity
Not Before: Jan 2 11:14:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1e5f4b13f68b9759d68da99e9646ccb8e9410cd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ad:a1:04:6f:74:d1:40:cb:09:74:79:2c:f4:
bb:6e:86:16:06:be:51:6a:7e:5f:b6:18:8d:f6:33:
81:4c:17:4b:d2:9f:f3:b2:36:3b:6e:fe:5c:d4:9e:
b5:51:7f:9b:92:91:0f:9b:4a:1b:2a:d9:d7:51:12:
ab:84:74:7a:d3:ec:1b:11:2d:6b:52:8d:06:a4:00:
12:d9:87:0f:ef:83:70:86:8a:6e:03:96:a6:b5:0a:
bc:5c:b6:0f:44:9e:ee:15:62:61:da:6a:31:bf:30:
e3:31:af:67:7e:21:c7:b6:50:4d:ab:47:0f:ac:af:
57:05:3f:b9:3e:99:6f:ea:f8:33:5e:56:54:f2:57:
0d:0f:e8:d5:2b:42:cc:c3:5a:5f:ff:41:d5:82:80:
55:3a:12:1f:83:29:5b:12:1a:20:55:d1:2a:91:01:
fb:4e:a5:53:f7:92:ca:00:a3:65:d0:15:31:4a:f5:
df:99:89:07:b3:d6:1e:e6:23:b6:f5:e0:a6:d7:de:
3c:51:d0:0c:1c:4d:74:1b:9f:95:0a:f5:ba:cb:f7:
4b:08:bf:a2:e6:d6:ee:ca:a3:18:95:24:22:93:cb:
a3:c0:f2:44:2f:77:38:79:0f:11:e8:dc:bc:61:ee:
a2:4c:4b:59:8a:88:33:81:db:05:36:ca:dd:89:98:
39:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:5F:4B:13:F6:8B:97:59:D6:8D:A9:9E:96:46:CC:B8:E9:41:0C:D7
X509v3 Authority Key Identifier:
keyid:4B:5D:88:E5:48:CE:EA:A6:27:C0:0D:71:8D:A0:4F:D6:67:D2:C5:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S12I5UjO6qYnwA1xjaBP1mfSxdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/968e74-8315-4056-a81d-04fd81c1080a/1/Hl9LE_aLl1nWjamelkbMuOlBDNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/968e74-8315-4056-a81d-04fd81c1080a/1/S12I5UjO6qYnwA1xjaBP1mfSxdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.236.140.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:da:15:2e:80:d1:fd:9a:1a:09:c7:14:d4:df:17:d5:58:f0:
41:cb:5f:c4:a4:af:c3:d8:a8:bd:7e:4c:33:94:be:23:23:64:
f9:a8:d5:b5:2a:79:7b:e3:82:b8:8b:33:a0:66:1b:05:f0:6a:
3a:84:2a:44:a9:b2:b7:3b:06:0e:ab:23:0b:e1:e3:9c:cf:9a:
dd:8e:01:27:d0:dc:5d:f3:f6:7b:44:6f:85:98:b5:a7:0b:c5:
f4:b0:d1:a1:70:96:b6:1b:cc:dd:69:24:f7:1a:3b:62:a8:33:
cd:41:47:c5:3c:c1:db:59:0a:7a:28:1d:7d:af:a5:d0:a2:b3:
40:55:f6:3f:05:bc:f4:5f:fa:ac:9f:69:2b:83:8f:bb:a8:d3:
47:93:90:d2:fd:6b:9e:24:19:80:21:d0:de:c6:31:30:e9:93:
c1:9e:8a:3f:3b:db:3b:fd:2d:3e:8c:f7:b4:b9:55:7a:0e:0c:
73:c3:72:c7:0b:8e:71:de:00:57:55:51:d6:6b:54:0b:92:68:
da:18:b9:67:e3:e9:be:12:a8:85:b4:37:2c:ce:ee:15:b3:b8:
b9:b8:7e:e1:f7:22:46:47:64:28:9a:7b:54:21:f4:b4:2a:ec:
cd:0a:f3:51:3d:d9:26:22:2c:3a:c0:35:00:b4:9e:45:9e:b1:
f3:55:dc:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:12 2023 by rpki-client on console-ams.rpki-client.org