Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/82558d-8e36-48db-b5cc-bd918df2deb6/1/r1OITWORE3M9fD01O6l8W9MrtJI.roa
File: r1OITWORE3M9fD01O6l8W9MrtJI.roa (raw, json)
Hash identifier: c82LqhdeCwwkWaWyBjkq3+hKCkxKUFyMzA+qjQhA0u8=
Subject key identifier: AF:53:88:4D:63:91:13:73:3D:7C:3D:35:3B:A9:7C:5B:D3:2B:B4:92
Certificate issuer: /CN=6046cdd10a7489f3aef12199d24f01a9d9a9d533
Certificate serial: 09F22AA1
Authority key identifier: 60:46:CD:D1:0A:74:89:F3:AE:F1:21:99:D2:4F:01:A9:D9:A9:D5:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YEbN0Qp0ifOu8SGZ0k8Bqdmp1TM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/82558d-8e36-48db-b5cc-bd918df2deb6/1/r1OITWORE3M9fD01O6l8W9MrtJI.roa
Signing time: Sat 01 Jan 2022 08:03:55 +0000
ROA not before: Sat 01 Jan 2022 08:03:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212953
IP address blocks: 185.141.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166865569 (0x9f22aa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6046cdd10a7489f3aef12199d24f01a9d9a9d533
Validity
Not Before: Jan 1 08:03:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af53884d639113733d7c3d353ba97c5bd32bb492
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:fb:cf:34:f7:d1:41:b0:9c:50:e1:8f:0d:5a:
26:e0:4d:10:18:6c:fa:23:b4:97:12:f0:66:bf:8f:
51:5b:3e:52:e6:04:8c:21:7c:86:e1:39:8f:c1:f5:
0d:ce:55:67:c2:11:a3:eb:b5:85:06:36:eb:b5:54:
99:1d:7f:11:0c:01:72:00:04:70:38:d8:36:57:6e:
5d:e1:ac:0e:f8:d8:0d:18:6d:a9:72:a8:52:56:b8:
3f:1f:79:b6:b3:21:92:5d:08:cc:01:a3:ba:cd:36:
22:ce:33:1a:bc:50:37:45:8f:c5:14:41:2e:cd:42:
7d:e2:ce:f4:15:33:66:91:e2:ad:c3:d1:76:e2:aa:
b6:d2:65:6c:dc:47:58:76:d0:81:92:05:c1:75:07:
db:de:81:28:a3:cb:37:f8:fc:ac:34:81:74:84:af:
5c:24:77:56:86:91:60:36:a6:81:09:aa:7c:15:34:
cd:99:7a:63:c8:0c:7a:d9:86:ab:c3:ef:f6:8b:ee:
cd:b4:a4:8b:8a:6f:5e:a4:c5:3f:2d:64:19:d1:58:
02:13:08:9c:71:d7:8d:2f:be:4d:8e:0a:29:78:8d:
da:ae:9f:f2:f0:e7:75:47:b2:d1:93:7a:03:72:ad:
a4:cf:aa:60:9a:34:3d:08:07:1a:97:9a:80:5e:36:
e0:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:53:88:4D:63:91:13:73:3D:7C:3D:35:3B:A9:7C:5B:D3:2B:B4:92
X509v3 Authority Key Identifier:
keyid:60:46:CD:D1:0A:74:89:F3:AE:F1:21:99:D2:4F:01:A9:D9:A9:D5:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YEbN0Qp0ifOu8SGZ0k8Bqdmp1TM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/82558d-8e36-48db-b5cc-bd918df2deb6/1/r1OITWORE3M9fD01O6l8W9MrtJI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/82558d-8e36-48db-b5cc-bd918df2deb6/1/YEbN0Qp0ifOu8SGZ0k8Bqdmp1TM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.141.34.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:58:0f:eb:cf:eb:f9:6c:46:2e:a7:0d:e6:8f:4a:0d:b1:2a:
95:38:56:33:95:41:20:f3:43:9c:b9:29:39:3a:e9:66:4b:4d:
f2:ae:57:e6:ef:5f:94:02:b4:3c:b6:a6:77:74:89:17:3b:b2:
d7:ec:db:a9:37:c2:04:97:95:d2:6f:fb:96:e9:50:35:0f:a9:
6f:cd:df:29:0f:30:4f:0b:a5:af:55:0c:c7:20:f4:75:31:b2:
5c:69:df:9d:68:1d:90:68:be:51:85:39:85:61:56:65:45:31:
88:de:f5:87:3a:0f:d3:46:ac:09:59:39:af:0f:25:69:42:e9:
dd:9f:f3:cc:b6:0e:78:39:40:1a:ae:4b:a6:40:40:90:d8:81:
ec:14:b5:69:5c:c8:c7:73:dd:20:27:53:b9:d3:3d:3b:48:6d:
c0:11:d2:04:5c:d0:f3:3f:e3:76:89:77:d8:03:4f:22:46:d8:
2f:e9:6c:d5:94:23:e0:15:00:b7:36:74:2c:7a:3e:2e:74:40:
36:e8:7b:cd:79:b3:eb:ed:4b:9b:fc:7c:70:5e:64:4d:53:50:
09:bf:82:d2:00:a7:d9:60:bc:eb:87:2d:ae:be:63:4b:ba:73:
96:92:7e:e1:dc:61:e6:4b:fd:58:f5:dc:07:54:9f:31:2a:e6:
6e:c9:97:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:02 2023 by rpki-client on console-fra.rpki-client.org