Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/462f92-808c-4440-a905-e7484e2f9aa2/1/8wRawOj75UZZbLorngaRstB_rmM.roa
File: 8wRawOj75UZZbLorngaRstB_rmM.roa (raw, json)
Hash identifier: pv55BaDrOOE0v0088cCr6a4/UHpxQ2kq8v5skCi2Vh4=
Subject key identifier: F3:04:5A:C0:E8:FB:E5:46:59:6C:BA:2B:9E:06:91:B2:D0:7F:AE:63
Certificate issuer: /CN=286f9a9bbb868ce6d43a154e2a7e298b6b2365b2
Certificate serial: 01873BC637853C12239AE53FCDB868735EF4
Authority key identifier: 28:6F:9A:9B:BB:86:8C:E6:D4:3A:15:4E:2A:7E:29:8B:6B:23:65:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KG-am7uGjObUOhVOKn4pi2sjZbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/462f92-808c-4440-a905-e7484e2f9aa2/1/8wRawOj75UZZbLorngaRstB_rmM.roa
Signing time: Sat 01 Apr 2023 07:44:18 +0000
ROA not before: Sat 01 Apr 2023 07:44:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.252.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:3b:c6:37:85:3c:12:23:9a:e5:3f:cd:b8:68:73:5e:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=286f9a9bbb868ce6d43a154e2a7e298b6b2365b2
Validity
Not Before: Apr 1 07:44:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f3045ac0e8fbe546596cba2b9e0691b2d07fae63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:fa:01:1e:50:65:b9:7a:bb:0b:a5:b6:4f:33:
4c:ee:8f:38:e2:12:ba:22:cb:b3:4d:c6:e0:65:19:
67:39:3c:7b:c6:45:e5:5c:aa:f2:5a:0b:29:39:45:
56:8f:6f:c8:76:67:15:b2:60:33:71:b6:2e:28:e0:
d8:8c:d0:ae:90:25:43:aa:d7:48:3e:a9:66:c3:49:
f5:06:89:0e:60:11:25:6a:4a:fc:27:5f:4e:66:3a:
18:22:cc:43:af:66:8e:7d:ba:e4:b4:64:56:87:7e:
1b:31:1b:aa:d3:c6:98:67:c6:17:75:cb:e2:e0:16:
8f:c7:93:61:e4:e9:17:4b:4a:50:76:d8:13:7b:8a:
5d:d4:cd:ed:3e:8a:01:fb:23:cc:f4:26:7b:7a:7b:
6e:49:41:92:db:80:16:09:de:0d:f1:5d:cf:2f:66:
6d:b8:27:36:e7:ee:93:ac:a7:07:91:9c:9e:cf:60:
73:18:6c:40:b5:41:99:aa:a3:0e:39:1e:8e:06:fa:
0b:af:81:22:d3:6f:fd:9d:8d:8b:ba:87:3b:1e:46:
92:e1:06:20:5a:55:8e:3d:35:58:97:40:84:76:72:
7a:61:b1:c0:ae:4d:db:1d:75:04:f5:d3:06:b2:0c:
24:32:ac:72:fe:73:bc:28:8c:4b:5a:14:eb:ef:79:
2c:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:04:5A:C0:E8:FB:E5:46:59:6C:BA:2B:9E:06:91:B2:D0:7F:AE:63
X509v3 Authority Key Identifier:
keyid:28:6F:9A:9B:BB:86:8C:E6:D4:3A:15:4E:2A:7E:29:8B:6B:23:65:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KG-am7uGjObUOhVOKn4pi2sjZbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/462f92-808c-4440-a905-e7484e2f9aa2/1/8wRawOj75UZZbLorngaRstB_rmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/462f92-808c-4440-a905-e7484e2f9aa2/1/KG-am7uGjObUOhVOKn4pi2sjZbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.211.0/24
Signature Algorithm: sha256WithRSAEncryption
0f:ac:39:6f:60:a4:79:8c:75:21:3e:23:97:f2:2f:e2:8d:ff:
3b:a8:67:7d:2f:7b:46:4d:a7:50:88:a2:e1:26:8a:4d:7e:76:
a9:f0:d9:8e:b6:cb:b1:a3:6b:4c:9f:b4:cd:ea:e0:a6:c2:10:
d6:58:5b:67:0d:fe:2b:60:18:03:cf:8a:7b:56:7c:2d:ae:2d:
8a:1e:25:56:92:7a:bc:69:c0:ba:02:1c:dd:df:04:70:bb:a8:
25:c1:bf:d9:60:2c:1e:91:38:10:91:e5:43:a8:a4:70:e5:0f:
61:9f:d7:30:34:8c:f4:ff:ef:48:75:a0:5f:0c:55:9a:dc:63:
2d:cb:cb:5c:1a:88:35:ed:59:5d:02:6a:dc:ac:fe:90:81:3c:
4c:c5:99:77:b3:69:07:0f:c5:51:8e:03:18:c2:6a:82:43:31:
9d:f5:7d:60:e9:7e:40:4f:46:03:be:90:30:65:d1:04:09:c5:
fb:b9:f8:a0:df:2d:18:03:36:63:3b:63:28:ff:d4:00:29:31:
23:78:ca:b1:2f:7d:62:d5:df:9d:a4:37:a4:34:b6:ef:4d:bc:
7c:c9:db:ee:3c:5b:c5:55:d2:60:f7:66:a0:4e:17:ae:cc:1c:
51:b8:7c:35:bf:8d:05:99:cb:d4:86:4f:8c:f3:83:6a:87:de:
7b:45:07:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:11:18 2024 by rpki-client on console-ams.rpki-client.org