Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/f59aa0-1fb3-4dda-9e5e-43202c7a5001/1/YRJ5dXEs8Z_jIfEwmTZvFSZNnVE.roa
File: YRJ5dXEs8Z_jIfEwmTZvFSZNnVE.roa (raw, json)
Hash identifier: k16VyAomv6xNJEX/2EKr22agGw4apjXtYL4/Yh7lNyE=
Subject key identifier: 61:12:79:75:71:2C:F1:9F:E3:21:F1:30:99:36:6F:15:26:4D:9D:51
Certificate issuer: /CN=8e7a92cc4b9bd8de378f7e2218a62517d9ac56bc
Certificate serial: 01856FE7027C4E929A4A55B1F2A63117B8F5
Authority key identifier: 8E:7A:92:CC:4B:9B:D8:DE:37:8F:7E:22:18:A6:25:17:D9:AC:56:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jnqSzEub2N43j34iGKYlF9msVrw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/f59aa0-1fb3-4dda-9e5e-43202c7a5001/1/YRJ5dXEs8Z_jIfEwmTZvFSZNnVE.roa
Signing time: Mon 02 Jan 2023 00:34:48 +0000
ROA not before: Mon 02 Jan 2023 00:34:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49603
IP address blocks: 185.65.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:02:7c:4e:92:9a:4a:55:b1:f2:a6:31:17:b8:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e7a92cc4b9bd8de378f7e2218a62517d9ac56bc
Validity
Not Before: Jan 2 00:34:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=61127975712cf19fe321f13099366f15264d9d51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:32:44:a8:71:32:43:37:32:1c:09:7d:50:9b:
32:50:45:da:18:ea:85:31:2d:b4:11:70:e6:86:2d:
d8:df:52:34:14:c3:47:1e:87:fb:e5:61:22:d0:14:
9e:b5:83:60:69:fc:e2:33:33:ed:13:aa:80:6c:93:
b7:0d:73:9b:32:bb:d7:f1:df:24:f7:92:c6:2a:56:
92:83:3e:92:dd:7d:d3:38:08:2f:6a:65:6c:a4:7d:
65:1f:34:0e:73:14:2d:75:a0:a2:04:4a:7c:22:bd:
53:65:86:5f:a4:22:99:f2:07:ce:ed:19:cc:49:85:
a1:4a:e8:c7:c2:9b:13:5f:66:25:1b:49:fe:1b:a4:
90:07:cd:da:00:a5:fd:ff:ec:7b:70:73:cf:6d:b2:
84:f1:45:82:5a:3d:6b:c3:62:e0:1f:d3:a5:a4:38:
91:83:30:ea:cf:9b:df:3f:f3:6f:a4:15:52:25:e8:
c5:7f:1c:d5:8a:cd:6b:61:6c:be:56:d6:01:17:7e:
93:e9:20:a2:3f:b8:aa:97:0c:2a:86:81:04:7a:78:
f5:ee:1e:f2:f9:2d:1d:7c:b3:f9:f8:04:30:8f:57:
fe:cb:56:60:ca:2e:b5:ed:b2:70:af:31:0c:b1:73:
0b:6a:93:ee:7c:5c:d4:87:51:9b:c3:0a:de:da:a1:
b7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:12:79:75:71:2C:F1:9F:E3:21:F1:30:99:36:6F:15:26:4D:9D:51
X509v3 Authority Key Identifier:
keyid:8E:7A:92:CC:4B:9B:D8:DE:37:8F:7E:22:18:A6:25:17:D9:AC:56:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jnqSzEub2N43j34iGKYlF9msVrw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f59aa0-1fb3-4dda-9e5e-43202c7a5001/1/YRJ5dXEs8Z_jIfEwmTZvFSZNnVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f59aa0-1fb3-4dda-9e5e-43202c7a5001/1/jnqSzEub2N43j34iGKYlF9msVrw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.65.140.0/24
Signature Algorithm: sha256WithRSAEncryption
34:ff:2a:59:35:08:5c:17:61:c9:e2:9c:c2:97:c4:f9:18:a9:
87:3a:7b:a3:15:10:0b:da:d4:d8:a8:09:21:7c:5a:76:98:64:
49:c0:16:5a:e4:58:ca:45:a1:95:7e:54:32:1d:d5:2e:1f:f4:
89:4b:8e:ce:fb:d6:31:30:2c:76:4a:cc:96:a9:0b:b3:08:a3:
5b:a3:e1:d2:26:ff:60:1b:f6:21:91:89:f8:03:90:8c:d5:ce:
d3:af:6e:39:f5:69:6a:9b:fc:9c:44:74:75:a9:75:8f:02:ae:
85:b7:4e:e4:ae:ad:41:3e:26:ce:ab:2f:a0:ae:7b:db:9b:f5:
98:33:9d:fa:69:44:6b:30:e4:2a:ca:09:38:a5:14:5a:97:59:
a2:08:74:44:64:a4:cf:4e:bb:a2:cd:3b:e7:30:b0:41:d6:ac:
6c:83:32:26:b5:ae:f3:42:3b:a1:6c:cf:f0:24:bd:46:ac:c8:
8f:6d:14:0c:40:e4:ed:d9:6d:26:5b:bb:cf:98:43:29:c3:06:
68:eb:39:70:64:b2:70:9f:36:f1:2f:cd:5a:06:a2:3b:12:40:
a1:0b:b0:b8:99:02:fa:8f:9c:4b:ec:ba:f1:90:7a:fa:09:d2:
a5:15:93:e4:93:76:9f:97:08:d3:97:20:05:28:ef:e8:8d:c2:
f0:a7:c2:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:42 2025 by rpki-client