Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/iuGwG8aesIEIKqb_pXg4jWe5HuQ.roa
File: iuGwG8aesIEIKqb_pXg4jWe5HuQ.roa (raw, json)
Hash identifier: VGMOBvldH4RnpzfU0a17XIY20BJJXt/Z5VAeGzXau1o=
Subject key identifier: 8A:E1:B0:1B:C6:9E:B0:81:08:2A:A6:FF:A5:78:38:8D:67:B9:1E:E4
Certificate issuer: /CN=54914541fd1b95e7c0afc875fbef78794f55386b
Certificate serial: 15BC0F4C
Authority key identifier: 54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/iuGwG8aesIEIKqb_pXg4jWe5HuQ.roa
Signing time: Sat 01 Jan 2022 05:59:07 +0000
ROA not before: Sat 01 Jan 2022 05:59:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204136
IP address blocks: 185.121.163.0/24 maxlen: 24
185.121.177.0/24 maxlen: 24
2a05:dfc7:5::/48 maxlen: 48
2a06:1280:ce05::/48 maxlen: 48
2a05:dfc7:beef::/48 maxlen: 48
2a05:dfc7:dfc7::/48 maxlen: 48
2a06:9f40::/30 maxlen: 30
2a05:dfc7:5353::/48 maxlen: 48
2a06:1280:ce04::/48 maxlen: 48
2a05:dfc7:dfc8::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 364646220 (0x15bc0f4c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54914541fd1b95e7c0afc875fbef78794f55386b
Validity
Not Before: Jan 1 05:59:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8ae1b01bc69eb081082aa6ffa578388d67b91ee4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:cf:98:86:fc:8f:6d:8e:16:45:cd:f1:d1:6e:
02:d0:bb:69:cb:d8:a8:2b:7b:71:3a:9b:b1:ad:78:
b9:de:39:4b:3e:8d:a6:9f:dd:3a:e1:44:00:79:9a:
b4:cf:9f:9d:94:11:2c:bb:77:67:f8:a0:e1:96:5d:
31:8f:2a:24:13:de:3f:2f:62:34:9d:71:07:e0:07:
d9:db:fd:d8:b1:a6:e5:ec:70:f2:f2:ff:77:e2:79:
65:3f:2e:d8:cf:71:79:1a:72:ee:84:e1:79:64:4c:
16:4e:3f:1b:61:5d:fa:f9:3f:da:b1:a7:ee:44:5a:
e4:f3:68:d3:1c:22:2c:43:36:a7:d1:10:1c:fc:ef:
74:45:94:a9:cf:0b:07:d3:c8:16:aa:2b:1f:37:2f:
59:c1:0e:12:8e:c1:d4:9e:68:e3:9b:70:6e:b0:ff:
7c:fc:2b:88:39:33:86:1a:2d:e3:ff:4f:b2:92:f2:
84:07:e1:2f:4a:0d:de:66:75:c1:b5:6e:f1:5a:72:
76:49:1f:1a:ab:0b:65:af:d0:7b:06:05:87:c6:86:
42:b4:d7:f9:bc:43:0c:c9:af:6b:c3:e0:aa:ab:8b:
fc:08:d0:cd:ab:62:5d:57:28:0f:fa:08:d1:ae:d2:
da:3c:0d:ae:1e:5c:f4:fb:ac:44:e5:04:7e:3a:1f:
05:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:E1:B0:1B:C6:9E:B0:81:08:2A:A6:FF:A5:78:38:8D:67:B9:1E:E4
X509v3 Authority Key Identifier:
keyid:54:91:45:41:FD:1B:95:E7:C0:AF:C8:75:FB:EF:78:79:4F:55:38:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VJFFQf0blefAr8h1--94eU9VOGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/iuGwG8aesIEIKqb_pXg4jWe5HuQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/464631-ca8e-4c6a-b091-d9f6d9642537/1/VJFFQf0blefAr8h1--94eU9VOGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.121.163.0/24
185.121.177.0/24
IPv6:
2a05:dfc7:5::/48
2a05:dfc7:5353::/48
2a05:dfc7:beef::/48
2a05:dfc7:dfc7::-2a05:dfc7:dfc8:ffff:ffff:ffff:ffff:ffff
2a06:1280:ce04::/47
2a06:9f40::/30
Signature Algorithm: sha256WithRSAEncryption
70:fe:f9:27:ae:2e:5f:82:c8:d4:ff:1a:df:d1:1a:70:e7:7b:
ea:d5:75:50:60:26:02:8d:e6:4b:af:77:19:7f:cd:4c:3d:cd:
cb:59:d7:b6:e4:77:8a:66:56:bb:9f:b9:04:f7:b3:c0:13:89:
ec:d6:e8:17:c7:d6:08:db:46:be:b3:b8:50:de:56:ee:85:eb:
a4:ee:fb:47:fe:51:d1:a3:30:da:68:15:66:76:3f:a4:e8:39:
52:65:0d:ab:26:49:f2:6c:30:7e:5e:d8:d9:16:41:0a:d6:94:
64:af:33:b8:99:8c:2c:92:bc:98:ea:30:fa:2f:d4:34:28:f4:
4e:ae:49:98:84:57:18:4c:2d:59:88:9d:90:4e:3b:47:3b:7b:
a5:db:ac:5a:96:d3:0d:b4:d3:21:43:9c:bc:b8:b9:5c:79:d0:
f1:4e:f0:7b:dc:51:7a:54:f4:cc:a2:42:9b:34:b9:fe:e0:51:
dc:c7:dc:f8:32:28:85:58:5c:fb:b8:62:f2:c4:26:70:04:19:
be:75:34:df:32:4d:b9:96:f1:fa:37:b4:78:b8:37:fd:56:25:
90:41:a3:e6:61:38:b0:e7:63:f0:ff:e8:79:41:a9:98:4c:09:
78:6b:f6:86:62:fa:5b:3e:97:0d:e0:3b:97:bc:c1:7f:f7:3c:
30:3e:15:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:18 2023 by rpki-client on console-ams.rpki-client.org