Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/66431f-6e9b-4bf2-a471-85374c3345d3/1/cLJWO1SRCfYqLHlFDSs4HgyyPTE.roa
File: cLJWO1SRCfYqLHlFDSs4HgyyPTE.roa (raw, json)
Hash identifier: 7fU9O4Cw+KB3AEhEKvnFFTjlMF+3ypueLEHfymoSJTE=
Subject key identifier: 70:B2:56:3B:54:91:09:F6:2A:2C:79:45:0D:2B:38:1E:0C:B2:3D:31
Certificate issuer: /CN=320ec720c0e963a0336fce326b1798dbfae28935
Certificate serial: 0183CDDB2CADDA1C5C2D6DDF61F1970B850F
Authority key identifier: 32:0E:C7:20:C0:E9:63:A0:33:6F:CE:32:6B:17:98:DB:FA:E2:89:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Mg7HIMDpY6Azb84yaxeY2_riiTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/66431f-6e9b-4bf2-a471-85374c3345d3/1/cLJWO1SRCfYqLHlFDSs4HgyyPTE.roa
Signing time: Wed 12 Oct 2022 20:20:36 +0000
ROA not before: Wed 12 Oct 2022 20:20:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210876
IP address blocks: 185.204.102.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cd:db:2c:ad:da:1c:5c:2d:6d:df:61:f1:97:0b:85:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=320ec720c0e963a0336fce326b1798dbfae28935
Validity
Not Before: Oct 12 20:20:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70b2563b549109f62a2c79450d2b381e0cb23d31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:2a:a2:1a:16:bc:e2:1a:eb:09:2c:f3:b0:4b:
3b:f4:6c:4c:bd:31:b0:b3:b0:e3:6f:0e:27:6a:67:
93:ca:f1:e1:c2:b2:38:29:a9:42:f1:c1:44:8d:4b:
70:83:36:38:57:c6:f2:42:73:88:d8:54:d0:3d:cb:
3a:30:9d:17:c8:bf:5f:7a:0d:82:57:97:01:62:55:
21:85:ec:4b:64:98:49:dd:45:1a:a6:3f:1c:cc:fa:
fc:4b:85:1d:d5:b0:72:63:3b:01:d2:84:50:e2:b3:
ed:aa:1c:6a:9d:c5:ed:91:42:b6:76:10:5f:27:87:
43:8b:ab:7d:fc:8e:eb:cd:c1:71:e4:87:a0:b2:80:
08:59:0f:76:70:f7:5a:be:5c:42:93:24:99:4b:77:
60:a4:a6:cd:e6:dc:bd:aa:78:f6:f7:dc:4a:de:af:
76:a4:32:92:08:56:57:6e:23:3a:e2:14:a0:3a:f3:
0d:93:31:e1:07:75:0e:44:cc:28:77:3d:f9:20:e5:
65:59:f1:4b:00:f7:2d:c7:f0:7e:09:86:f1:6a:83:
e6:5f:f2:00:53:78:8b:eb:18:86:40:0c:1d:3b:ac:
00:fe:ae:e3:d3:57:4b:dc:48:d2:61:2a:12:71:b3:
60:66:8c:c4:b3:f2:7f:a2:dd:bb:46:58:41:27:cb:
e1:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B2:56:3B:54:91:09:F6:2A:2C:79:45:0D:2B:38:1E:0C:B2:3D:31
X509v3 Authority Key Identifier:
keyid:32:0E:C7:20:C0:E9:63:A0:33:6F:CE:32:6B:17:98:DB:FA:E2:89:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Mg7HIMDpY6Azb84yaxeY2_riiTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/66431f-6e9b-4bf2-a471-85374c3345d3/1/cLJWO1SRCfYqLHlFDSs4HgyyPTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/66431f-6e9b-4bf2-a471-85374c3345d3/1/Mg7HIMDpY6Azb84yaxeY2_riiTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.204.102.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:70:91:f7:ef:33:c4:bd:12:e2:00:8f:4f:02:3e:bb:e2:0a:
db:6b:02:e2:78:2d:4c:5c:7c:a3:1d:da:54:63:e5:6d:2f:0a:
50:50:0c:8c:43:e0:07:34:63:1a:a0:da:c2:7c:13:3b:28:db:
2b:e7:bf:1b:e2:48:d8:ce:7d:78:b9:ce:08:e2:ef:8a:1b:52:
5f:39:bb:13:2d:1d:d5:9e:2a:41:10:ce:17:8c:85:50:4b:2a:
20:b3:8a:d2:7f:7d:31:e0:46:d4:6d:1e:9b:c5:de:9a:40:1a:
57:3a:31:5c:af:59:ea:d3:ac:1a:31:b6:9d:ae:7b:1d:0d:0e:
14:05:b9:00:05:17:f6:07:85:5c:2e:c3:ac:78:9b:58:02:35:
ed:ef:64:f2:87:33:df:8a:dd:49:62:51:5a:87:36:79:b6:3c:
51:36:c4:b9:72:5a:d5:14:46:66:15:fb:a9:5e:29:ea:fb:53:
23:25:41:01:da:8d:6c:b8:ed:a9:11:05:7f:96:80:f2:de:6a:
25:64:53:f7:2b:1c:78:75:aa:80:e7:1f:d8:15:f8:3c:2b:fe:
52:57:ad:a4:bc:b8:3e:82:7c:d0:7a:c3:dc:f5:49:26:50:a4:
61:34:04:9b:b5:7f:57:09:61:0e:7a:8d:e9:1f:10:c9:80:b2:
ee:3a:47:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:02 2024 by rpki-client on console-ams.rpki-client.org