Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/769c04-f00b-44df-8342-80eeee2156a5/1/gU2rGLuf2Z56HO45irGaX91haZs.roa
File: gU2rGLuf2Z56HO45irGaX91haZs.roa (raw, json)
Hash identifier: Wlq6WJSp73QJOQsbTQEOW8o7b54bmghpjC6/kyeAMiY=
Subject key identifier: 81:4D:AB:18:BB:9F:D9:9E:7A:1C:EE:39:8A:B1:9A:5F:DD:61:69:9B
Certificate issuer: /CN=b29d4475244008adafa0bd11531543e4d01e5ac6
Certificate serial: 025E644D
Authority key identifier: B2:9D:44:75:24:40:08:AD:AF:A0:BD:11:53:15:43:E4:D0:1E:5A:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sp1EdSRACK2voL0RUxVD5NAeWsY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/769c04-f00b-44df-8342-80eeee2156a5/1/gU2rGLuf2Z56HO45irGaX91haZs.roa
Signing time: Sat 01 Jan 2022 08:53:48 +0000
ROA not before: Sat 01 Jan 2022 08:53:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210965
IP address blocks: 185.216.13.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39740493 (0x25e644d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b29d4475244008adafa0bd11531543e4d01e5ac6
Validity
Not Before: Jan 1 08:53:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=814dab18bb9fd99e7a1cee398ab19a5fdd61699b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:71:f6:07:d3:be:12:78:14:6b:9c:e6:df:68:
0e:67:59:c5:62:ff:44:74:07:4e:7b:da:5e:55:c9:
05:3a:a9:2f:cb:b5:8f:7b:35:d9:ab:42:a2:31:1b:
e2:70:f0:ee:7c:39:03:91:78:5a:39:65:51:f3:10:
1b:41:32:fa:64:33:da:c5:33:db:fa:af:01:90:d1:
7c:49:44:1c:b1:a5:9f:50:fb:35:fc:b8:30:b5:d4:
2a:1b:02:1f:17:c7:55:d5:e1:53:05:27:dc:24:56:
f4:1a:01:99:4f:e5:09:6b:ae:5f:2b:6a:57:c4:31:
36:fe:3e:90:80:0d:66:52:da:d7:6b:8a:2c:b1:b6:
f4:58:8d:51:e3:62:a3:6d:78:a5:50:57:bf:d6:97:
ac:42:9d:62:85:ae:82:35:ae:23:9e:67:a4:4e:b0:
61:ce:62:fb:87:34:aa:a7:f6:c8:b3:6e:94:f1:b0:
fc:a9:41:f4:03:94:42:7f:fd:d8:06:57:da:fc:fb:
ae:a7:21:09:4f:91:b4:a1:9c:bb:78:a1:2f:1f:62:
76:6c:64:d1:1f:d5:f7:82:b4:d6:9b:3e:bf:0b:a2:
bc:f3:fb:58:40:f3:65:4a:47:89:56:40:18:55:9e:
2b:b9:ad:16:e4:40:82:5c:de:04:7c:9c:52:a5:ea:
c4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:4D:AB:18:BB:9F:D9:9E:7A:1C:EE:39:8A:B1:9A:5F:DD:61:69:9B
X509v3 Authority Key Identifier:
keyid:B2:9D:44:75:24:40:08:AD:AF:A0:BD:11:53:15:43:E4:D0:1E:5A:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sp1EdSRACK2voL0RUxVD5NAeWsY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/769c04-f00b-44df-8342-80eeee2156a5/1/gU2rGLuf2Z56HO45irGaX91haZs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/769c04-f00b-44df-8342-80eeee2156a5/1/sp1EdSRACK2voL0RUxVD5NAeWsY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.13.0/24
Signature Algorithm: sha256WithRSAEncryption
53:07:cf:6e:99:08:cc:ba:0c:a3:f7:85:a3:bc:85:14:9c:63:
58:c0:cf:55:98:a8:70:34:4a:84:93:63:ad:eb:60:67:f9:69:
30:92:5c:d3:49:ec:06:86:84:d1:92:f6:a6:98:30:37:96:ae:
ae:06:fb:81:4a:08:40:3c:15:c3:eb:f7:64:5a:89:54:cf:dc:
81:39:3f:19:52:73:d0:6c:3e:f7:2d:0f:c4:3c:10:d0:b9:2c:
8b:0d:57:e6:f9:49:38:cf:8c:9e:14:79:0e:ec:4b:90:19:68:
d3:08:e6:bc:b7:56:ff:e3:12:c4:4b:a5:e4:f6:52:ad:cd:1e:
e7:ad:e7:b0:10:dd:7c:4c:fc:ed:62:94:24:4f:1e:cf:72:ef:
53:d6:0e:c8:e1:aa:7e:a5:8b:a5:94:25:a7:8e:39:bd:f2:b8:
d9:c2:84:51:94:49:ca:9c:4a:ff:4c:12:c1:d9:33:fb:f1:7d:
55:35:da:92:32:f0:cc:3a:68:e5:30:b2:f6:95:9a:d9:20:d8:
9f:f5:1e:aa:77:a9:53:ed:47:8d:a2:89:fd:2c:b9:91:e5:9d:
aa:62:03:94:e9:bf:ce:05:dd:4f:47:e8:a0:f7:58:14:98:01:
4e:14:82:2d:95:b6:f1:8a:74:7e:9a:56:74:ef:d6:60:da:71:
f1:bd:00:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:13 2024 by rpki-client on console-ams.rpki-client.org