Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/41d4ce-9fd1-49ef-866c-375c8b7f88c7/1/xMmTPB2e6aZFznCH9LM-_44RiqA.roa
File: xMmTPB2e6aZFznCH9LM-_44RiqA.roa (raw, json)
Hash identifier: hnf57H/XeRJsUOBZubtIfKC9qx4k+ZbZEwtSRHzRxRc=
Subject key identifier: C4:C9:93:3C:1D:9E:E9:A6:45:CE:70:87:F4:B3:3E:FF:8E:11:8A:A0
Certificate issuer: /CN=25235bec8f78418a88e7b79c2113940fa4bc2dba
Certificate serial: 018CC3B66EF593E519C8DA353670B40C9207
Authority key identifier: 25:23:5B:EC:8F:78:41:8A:88:E7:B7:9C:21:13:94:0F:A4:BC:2D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JSNb7I94QYqI57ecIROUD6S8Lbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/41d4ce-9fd1-49ef-866c-375c8b7f88c7/1/xMmTPB2e6aZFznCH9LM-_44RiqA.roa
Signing time: Mon 01 Jan 2024 06:29:22 +0000
ROA not before: Mon 01 Jan 2024 06:29:22 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207990
IP address blocks: 185.5.145.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:6e:f5:93:e5:19:c8:da:35:36:70:b4:0c:92:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=25235bec8f78418a88e7b79c2113940fa4bc2dba
Validity
Not Before: Jan 1 06:29:22 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c4c9933c1d9ee9a645ce7087f4b33eff8e118aa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bd:d6:07:2c:fe:d3:f5:2f:c1:b4:5b:56:dd:
1e:1b:4f:79:9e:f7:83:24:fc:fa:b1:c5:d6:67:ae:
36:59:eb:fa:71:57:4a:a6:07:31:55:60:eb:10:20:
58:c5:53:46:0a:74:f2:7e:c2:ba:8b:1c:99:ac:80:
bf:bf:c5:5e:4f:39:48:09:65:b1:1c:b7:36:a8:4a:
14:d0:d0:c4:58:15:ed:14:fd:5a:91:b1:42:6b:7b:
4e:d9:14:20:af:df:b6:e7:73:85:f8:8a:77:72:7f:
61:71:ab:77:d3:61:84:86:8a:92:28:3a:e8:0f:c9:
fb:71:11:09:bd:c3:8a:84:a7:77:1e:c3:04:b9:8d:
ee:a1:9f:91:da:4b:1b:fe:17:1b:03:74:f5:22:6e:
68:ed:a9:05:d7:73:2d:8e:b5:b4:c6:26:27:ea:ec:
cd:f5:1b:ed:72:4b:58:e8:ef:81:4d:97:3c:05:49:
ca:57:ca:f5:67:9f:45:8a:30:4c:90:3e:9c:db:b0:
a3:9e:68:a3:67:8b:43:83:b2:ff:f0:6e:38:b8:70:
2c:f6:db:8a:4e:8e:70:c1:40:46:93:6c:14:ab:7b:
b4:3a:9c:0f:20:8a:e3:a2:ac:85:06:63:3e:0a:20:
fa:06:be:b2:47:63:b9:85:e6:69:c8:8d:68:69:99:
cd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C9:93:3C:1D:9E:E9:A6:45:CE:70:87:F4:B3:3E:FF:8E:11:8A:A0
X509v3 Authority Key Identifier:
keyid:25:23:5B:EC:8F:78:41:8A:88:E7:B7:9C:21:13:94:0F:A4:BC:2D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JSNb7I94QYqI57ecIROUD6S8Lbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/41d4ce-9fd1-49ef-866c-375c8b7f88c7/1/xMmTPB2e6aZFznCH9LM-_44RiqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/41d4ce-9fd1-49ef-866c-375c8b7f88c7/1/JSNb7I94QYqI57ecIROUD6S8Lbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.5.145.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:4d:b1:d8:8c:39:c0:e1:b2:8f:e7:6e:ef:8f:16:8d:71:57:
2e:c4:2c:48:79:16:1c:3a:d0:46:91:b6:04:2a:7e:b1:68:86:
ff:3f:71:87:55:75:ed:10:65:b3:17:69:6c:e0:00:c4:47:b7:
e2:5e:f1:7a:fd:d3:30:44:7f:ca:45:f7:5c:a4:9e:7a:1b:ef:
39:27:71:94:22:79:79:41:fe:97:37:ad:0c:db:d4:54:97:82:
dd:ae:5f:16:ff:be:25:7c:a1:1f:f6:3d:83:44:71:59:46:d0:
e0:07:af:37:39:a6:5d:e6:57:1f:2a:cb:c5:8e:7c:df:28:cc:
b2:e2:13:c9:09:ff:d0:4d:1b:0a:86:85:8b:ec:0b:d0:43:df:
97:ad:06:4b:38:9f:0a:ee:42:42:92:8f:1b:d7:fc:5a:fa:5f:
5e:1d:0b:12:58:f8:d6:ff:91:f6:a7:38:f8:2e:81:2d:83:eb:
14:28:fb:e6:10:67:46:b0:5e:9a:2f:a8:59:3c:a1:dd:90:15:
7e:69:5f:55:16:e2:e9:19:62:16:d6:24:29:6c:5f:6d:1a:59:
f5:56:27:48:44:d6:82:ed:f0:ef:c1:f0:91:98:79:68:2f:8b:
0f:30:bc:3e:1e:f7:69:32:af:bb:d4:a2:26:3c:74:75:c6:39:
9c:4d:71:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:12 2024 by rpki-client on console-ams.rpki-client.org