Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/4c8dd0-af96-44e3-b0fe-4d89397d9898/1/IWKhYDjLUVgvo2WcIJ49PgcpYIQ.roa
File: IWKhYDjLUVgvo2WcIJ49PgcpYIQ.roa (raw, json)
Hash identifier: kaJ0qGF2v0Lbw7KWgIl+pqH/Y9nGE4pCAn68XX+WJxg=
Subject key identifier: 21:62:A1:60:38:CB:51:58:2F:A3:65:9C:20:9E:3D:3E:07:29:60:84
Certificate issuer: /CN=a385c3cba312a078c4d0a712af5316dd1e41c466
Certificate serial: 01857102C326AF5BA84B1C73E0A0FE9D848A
Authority key identifier: A3:85:C3:CB:A3:12:A0:78:C4:D0:A7:12:AF:53:16:DD:1E:41:C4:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/o4XDy6MSoHjE0KcSr1MW3R5BxGY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/4c8dd0-af96-44e3-b0fe-4d89397d9898/1/IWKhYDjLUVgvo2WcIJ49PgcpYIQ.roa
Signing time: Mon 02 Jan 2023 05:44:44 +0000
ROA not before: Mon 02 Jan 2023 05:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 185.252.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:02:c3:26:af:5b:a8:4b:1c:73:e0:a0:fe:9d:84:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a385c3cba312a078c4d0a712af5316dd1e41c466
Validity
Not Before: Jan 2 05:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2162a16038cb51582fa3659c209e3d3e07296084
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c3:62:2a:71:66:0d:74:e3:83:29:82:e1:d9:
4d:9e:a9:ce:32:54:2d:55:c4:55:a8:5c:06:f2:6d:
13:2f:a8:c1:f0:81:21:cc:ab:52:17:a9:e3:0c:f7:
23:cc:4a:c5:0e:26:a5:0c:38:c9:9e:11:d1:30:3c:
45:35:e2:40:1f:5c:92:09:bb:cc:ad:b9:90:21:2b:
2d:b6:90:68:c1:a4:f9:ed:54:58:e6:86:a9:fa:3e:
3b:95:0d:c1:37:e8:fc:3a:2e:e2:1b:5a:99:f0:2e:
29:86:70:99:02:cf:76:59:bc:93:32:37:5c:e8:74:
94:74:5a:33:b6:d4:33:a4:c5:5d:8e:75:94:1c:3f:
3b:15:10:8a:f9:b4:5d:c0:b1:8d:af:f6:67:46:84:
84:dd:2d:bf:06:18:14:58:d3:a9:9b:69:a4:ff:8e:
38:f4:ce:ca:6a:ca:13:2d:33:67:4e:10:90:3f:c6:
14:58:d9:58:3e:3a:97:df:17:8a:da:6e:76:43:8c:
77:b9:66:30:78:7d:60:2d:66:a8:47:ce:ae:c7:2a:
39:34:d4:13:41:1a:74:a5:c2:98:b6:3c:78:fa:6f:
99:7e:8e:6d:a4:90:53:40:a1:46:c0:c9:c4:7d:ce:
a7:73:65:23:99:48:f7:3a:c8:87:7d:01:10:15:93:
7f:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:62:A1:60:38:CB:51:58:2F:A3:65:9C:20:9E:3D:3E:07:29:60:84
X509v3 Authority Key Identifier:
keyid:A3:85:C3:CB:A3:12:A0:78:C4:D0:A7:12:AF:53:16:DD:1E:41:C4:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/o4XDy6MSoHjE0KcSr1MW3R5BxGY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4c8dd0-af96-44e3-b0fe-4d89397d9898/1/IWKhYDjLUVgvo2WcIJ49PgcpYIQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/4c8dd0-af96-44e3-b0fe-4d89397d9898/1/o4XDy6MSoHjE0KcSr1MW3R5BxGY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.212.0/24
Signature Algorithm: sha256WithRSAEncryption
3e:50:df:9c:1f:7c:30:05:a8:22:db:a1:b5:b3:75:7e:b9:f7:
ac:e9:1a:f5:47:25:3e:07:81:f8:80:be:9a:76:b4:02:59:16:
53:09:5b:32:4a:7e:5c:ed:d7:c3:e8:d0:5a:c7:39:40:4d:2f:
fe:7e:57:e2:02:53:fa:dd:f8:74:5e:2a:5a:bb:0f:01:34:e1:
5e:f7:46:4c:ff:46:87:32:4f:a3:2e:0b:e7:9f:bb:a1:c1:f2:
61:e9:05:d1:1f:cf:ca:0f:78:44:6b:38:c9:bf:9b:ae:af:0a:
90:a1:96:51:88:b7:5a:40:72:13:90:b9:51:e4:fc:e9:50:da:
eb:af:22:d2:d5:8d:c6:3a:16:5d:d9:a6:62:00:57:49:86:6b:
5d:5e:b4:0c:a9:f5:65:7e:7c:95:e4:30:5a:7b:fb:f3:b1:f7:
f0:d3:01:b4:4e:8f:d9:f3:af:ce:9f:76:0c:86:fa:ef:de:15:
9b:3e:0d:ee:45:5e:00:78:34:bf:58:f6:92:f3:00:59:32:20:
7f:24:69:b5:3d:47:4e:55:10:6b:0e:1a:8c:be:f1:2c:56:8c:
73:6c:25:84:43:4e:43:91:49:03:67:26:49:d5:4a:58:a3:bb:
d5:a8:2e:17:ba:9c:1a:ef:81:c3:44:5f:da:db:e3:f6:a0:2f:
a0:c0:0e:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:12:12 2024 by rpki-client on console-ams.rpki-client.org