Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/41d4ce-9fd1-49ef-866c-375c8b7f88c7/1/LaD9ZXiLJhJDjzg3WIXs6FCeQnk.roa
File: LaD9ZXiLJhJDjzg3WIXs6FCeQnk.roa (raw, json)
Hash identifier: IDy3Bsp+WxKXrvVO95ULZT9Q1AIHyShfi353UecIvwk=
Subject key identifier: 2D:A0:FD:65:78:8B:26:12:43:8F:38:37:58:85:EC:E8:50:9E:42:79
Certificate issuer: /CN=25235bec8f78418a88e7b79c2113940fa4bc2dba
Certificate serial: 018CC3B66EBA9213BA20FE60040B78203C0E
Authority key identifier: 25:23:5B:EC:8F:78:41:8A:88:E7:B7:9C:21:13:94:0F:A4:BC:2D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JSNb7I94QYqI57ecIROUD6S8Lbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/41d4ce-9fd1-49ef-866c-375c8b7f88c7/1/LaD9ZXiLJhJDjzg3WIXs6FCeQnk.roa
Signing time: Mon 01 Jan 2024 06:29:22 +0000
ROA not before: Mon 01 Jan 2024 06:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 203020
IP address blocks: 185.5.145.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:6e:ba:92:13:ba:20:fe:60:04:0b:78:20:3c:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25235bec8f78418a88e7b79c2113940fa4bc2dba
Validity
Not Before: Jan 1 06:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2da0fd65788b2612438f38375885ece8509e4279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7a:72:0f:52:34:5a:62:43:78:f0:fb:a0:34:
a5:7e:dc:ee:d0:1e:c8:f7:62:9f:80:6a:a8:cc:bf:
68:90:db:7d:02:38:be:0e:0b:45:73:71:69:7a:3f:
5a:c7:02:55:58:d9:fc:a9:ad:b8:9f:84:12:0a:47:
29:57:56:e4:39:11:a4:81:50:95:c0:e5:4e:a0:ec:
cd:35:a1:30:04:25:bf:fc:ba:6e:9f:b7:9b:ed:15:
41:ab:b5:78:ca:aa:37:8f:00:27:b4:a8:66:72:6c:
aa:12:07:2d:1b:8a:dd:11:e2:a2:e4:33:29:9c:e3:
56:7c:74:44:cc:10:65:bf:df:cd:89:58:b8:96:ae:
21:56:09:d1:ce:7d:17:42:f8:8a:77:4f:94:01:5f:
c7:42:0b:10:1a:09:1f:90:58:b4:e8:61:4e:89:a1:
c0:3c:50:89:2d:1d:c6:4c:e2:72:e5:94:04:99:38:
06:0e:78:74:a3:6f:a9:8b:ff:e1:99:af:33:6d:26:
40:6c:5e:32:b5:57:3c:04:5e:7a:b5:28:8f:dc:e8:
be:53:91:20:ed:cf:0d:75:75:e4:93:7d:b9:6b:e8:
aa:19:cf:ba:e0:6f:a8:96:32:59:51:fe:f2:34:f7:
0d:31:93:40:4a:91:14:e9:07:a2:0b:3e:c9:1a:2e:
d1:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A0:FD:65:78:8B:26:12:43:8F:38:37:58:85:EC:E8:50:9E:42:79
X509v3 Authority Key Identifier:
keyid:25:23:5B:EC:8F:78:41:8A:88:E7:B7:9C:21:13:94:0F:A4:BC:2D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JSNb7I94QYqI57ecIROUD6S8Lbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/41d4ce-9fd1-49ef-866c-375c8b7f88c7/1/LaD9ZXiLJhJDjzg3WIXs6FCeQnk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/41d4ce-9fd1-49ef-866c-375c8b7f88c7/1/JSNb7I94QYqI57ecIROUD6S8Lbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.145.0/24
Signature Algorithm: sha256WithRSAEncryption
25:e7:90:8c:ca:2b:13:13:16:d2:06:8a:41:01:f7:70:2c:95:
7e:d5:03:88:22:81:a3:e4:a7:81:4b:28:ed:4f:55:f3:e4:97:
a0:60:7f:11:cf:e9:e8:6e:f2:c1:5b:dd:5d:66:33:5a:eb:13:
b5:50:33:5e:72:01:e3:68:e8:53:85:a9:67:08:c9:90:7c:a3:
3d:09:6f:72:e0:d5:1c:43:07:bb:31:ac:69:fd:17:d1:f4:29:
0f:bb:4d:73:ec:f3:b0:f8:aa:ce:c2:da:51:34:0c:e5:48:2d:
fb:7d:98:6f:ed:92:2e:2d:a3:e5:94:c2:54:f4:af:16:67:2a:
1d:87:75:a0:75:09:8e:e3:2b:00:c0:26:b2:78:4c:02:0e:c0:
cc:ee:82:6a:2c:c0:cf:5a:61:18:df:13:aa:af:09:79:58:5f:
14:4e:3a:56:e9:f5:2b:05:67:d4:2d:ce:50:0a:1d:4f:e7:74:
8d:b6:dd:86:45:2e:27:37:49:47:6b:2b:8c:db:0e:1f:f5:60:
55:45:4e:31:b3:1c:da:a5:c0:81:00:88:93:11:54:ee:ff:6c:
e1:06:79:a1:97:e9:e0:a8:88:68:16:65:5f:8a:83:86:12:a6:
1c:2b:73:2b:d3:39:52:79:37:9e:c1:44:26:8d:68:f4:a5:05:
c4:ab:10:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:53 2024 by rpki-client on console-fra.rpki-client.org