Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/768112-8bc2-49a0-9ebc-67dd78c70d96/1/f-4L2DcpRJ2JZzp11rpRIvmjY2w.roa
File: f-4L2DcpRJ2JZzp11rpRIvmjY2w.roa (raw, json)
Hash identifier: qY8Z2kuHGirTnYIUx7A2p/rwwoev+4psaPDgYI8b+2M=
Subject key identifier: 7F:EE:0B:D8:37:29:44:9D:89:67:3A:75:D6:BA:51:22:F9:A3:63:6C
Certificate issuer: /CN=afc3a4192a980054603f66bddceed69eafc43970
Certificate serial: 01856DD42616F7C4E15547617C48BD318DA4
Authority key identifier: AF:C3:A4:19:2A:98:00:54:60:3F:66:BD:DC:EE:D6:9E:AF:C4:39:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r8OkGSqYAFRgP2a93O7Wnq_EOXA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/768112-8bc2-49a0-9ebc-67dd78c70d96/1/f-4L2DcpRJ2JZzp11rpRIvmjY2w.roa
Signing time: Sun 01 Jan 2023 14:54:57 +0000
ROA not before: Sun 01 Jan 2023 14:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8849
IP address blocks: 185.147.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:26:16:f7:c4:e1:55:47:61:7c:48:bd:31:8d:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=afc3a4192a980054603f66bddceed69eafc43970
Validity
Not Before: Jan 1 14:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7fee0bd83729449d89673a75d6ba5122f9a3636c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:be:23:11:6e:f1:b9:50:80:e2:f2:2a:84:7b:
49:b6:b8:a2:4a:7a:64:53:d6:59:c9:65:5f:06:54:
ca:63:37:49:5f:68:81:fa:29:a1:f7:bb:a9:15:36:
00:96:e0:f7:aa:00:71:72:fc:ac:6e:b1:b4:fe:5a:
6e:6e:cb:67:e9:09:33:79:64:a8:ff:3b:04:37:32:
50:5f:d7:df:f4:62:64:63:4e:85:60:91:f5:e3:9f:
34:6a:dd:c2:8c:0d:05:d4:d8:af:56:83:26:17:da:
71:df:4d:0e:97:ef:40:73:56:45:f1:fb:32:af:e6:
c5:63:3e:28:2f:ae:4f:a8:3c:10:ad:14:9e:8c:25:
f5:3a:08:bf:3a:12:8d:a1:48:5a:bf:be:39:30:ad:
98:71:20:64:84:c1:4f:ec:50:95:95:5d:a1:26:0a:
4d:44:a5:b3:c0:29:b1:72:af:95:62:93:74:a4:7b:
10:c8:31:d3:84:87:89:f2:16:b8:7e:22:61:95:6e:
82:b5:76:9c:a8:12:ce:4a:8e:a8:bc:77:ec:2b:7e:
d0:19:ba:4e:cf:05:d8:1b:23:cf:c3:3f:4c:df:64:
51:92:e1:0e:a2:b2:1d:97:1e:08:a0:d8:be:87:9c:
18:d2:45:7c:80:f1:d4:a2:05:9d:55:b9:39:aa:e5:
48:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:EE:0B:D8:37:29:44:9D:89:67:3A:75:D6:BA:51:22:F9:A3:63:6C
X509v3 Authority Key Identifier:
keyid:AF:C3:A4:19:2A:98:00:54:60:3F:66:BD:DC:EE:D6:9E:AF:C4:39:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r8OkGSqYAFRgP2a93O7Wnq_EOXA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/768112-8bc2-49a0-9ebc-67dd78c70d96/1/f-4L2DcpRJ2JZzp11rpRIvmjY2w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/768112-8bc2-49a0-9ebc-67dd78c70d96/1/r8OkGSqYAFRgP2a93O7Wnq_EOXA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.147.53.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:41:97:9b:0f:22:f0:89:96:3f:af:72:d0:5a:d1:f8:8b:c8:
d6:7a:62:a5:fb:61:c0:fd:fa:f2:d8:e7:99:bb:70:5b:fc:de:
e7:f9:20:1c:ac:27:a4:e6:7e:37:a3:25:99:ae:f6:b2:16:77:
5e:e6:f2:2b:84:86:33:80:be:df:26:22:5c:19:fa:f0:a5:76:
6d:18:39:6c:af:14:a1:15:d9:28:b3:72:dc:b4:6e:aa:7d:40:
c1:c0:2b:e7:0c:65:83:ef:5c:5d:46:f9:82:af:52:aa:46:07:
ef:9d:43:4b:d1:b1:0f:40:24:e5:ce:2e:16:87:dd:a7:5a:7a:
05:25:a8:63:7a:fb:12:de:db:c2:2d:fc:40:36:83:08:e4:1d:
06:99:96:cb:2d:c1:9e:87:f1:9a:c5:69:42:19:75:62:fd:e4:
e6:7a:49:05:99:a3:27:31:78:b3:d4:73:f8:94:20:9f:4e:c6:
cd:7d:d4:e4:d3:b1:97:91:93:fd:57:b1:d7:ed:1b:4e:ff:87:
40:37:8a:40:de:1c:cb:cc:44:57:f0:d3:a2:6a:73:88:37:f5:
aa:a3:64:00:f0:4b:0a:dd:79:b3:99:08:1a:15:d2:0d:29:bb:
da:42:c0:08:3e:c7:85:44:5e:0e:e1:d1:e9:55:60:aa:bc:c2:
17:70:17:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:54 2024 by rpki-client on console-fra.rpki-client.org