Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/228f35-73e9-4685-8c0a-6478fc1c4d60/1/hdPXF1jinog8Tr_3-VZlnf3doyM.roa
File: hdPXF1jinog8Tr_3-VZlnf3doyM.roa (raw, json)
Hash identifier: kuDjao14dEBVe85GIKv5xQtriH7HKwkkDJgG2NxSzTo=
Subject key identifier: 85:D3:D7:17:58:E2:9E:88:3C:4E:BF:F7:F9:56:65:9D:FD:DD:A3:23
Certificate issuer: /CN=0fd51869c078e64a0aa84c9ea0b4a0051e8c986b
Certificate serial: 01841D2677614C6A9F52DEC7C147CE54B6A4
Authority key identifier: 0F:D5:18:69:C0:78:E6:4A:0A:A8:4C:9E:A0:B4:A0:05:1E:8C:98:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D9UYacB45koKqEyeoLSgBR6MmGs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/228f35-73e9-4685-8c0a-6478fc1c4d60/1/hdPXF1jinog8Tr_3-VZlnf3doyM.roa
Signing time: Fri 28 Oct 2022 05:52:50 +0000
ROA not before: Fri 28 Oct 2022 05:52:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 185.249.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1d:26:77:61:4c:6a:9f:52:de:c7:c1:47:ce:54:b6:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fd51869c078e64a0aa84c9ea0b4a0051e8c986b
Validity
Not Before: Oct 28 05:52:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85d3d71758e29e883c4ebff7f956659dfddda323
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cb:8f:e5:43:80:b3:e7:7b:71:34:41:f6:83:
ca:18:fe:b5:e6:27:25:d1:75:ee:28:39:4b:7b:55:
c7:18:b5:4b:63:d3:25:fa:fb:6d:3f:d1:be:ac:15:
ef:fe:ea:1a:c8:08:e0:bf:14:9b:ae:f9:04:83:9a:
1f:e2:d7:d7:21:e9:bf:67:06:0e:2f:ff:42:4c:f8:
b0:3b:9e:ce:ef:37:77:7c:79:7c:73:ff:52:c3:52:
f4:db:45:22:9b:97:25:67:33:66:1c:87:85:03:06:
1d:26:e0:f6:e2:c4:4d:ce:3b:04:22:62:69:d6:72:
1a:86:b4:a8:a2:ca:d1:b9:e3:53:0d:db:3e:dc:08:
75:46:a1:06:60:95:57:7c:4f:56:87:08:70:02:2b:
cd:8d:1c:35:00:32:60:3f:32:6e:d5:c9:39:ce:c5:
2d:de:73:23:04:ba:b8:33:6c:af:53:9c:0f:f2:d1:
f8:7a:28:19:15:4c:b1:99:e1:5d:4d:af:a6:5a:03:
df:24:d3:ae:01:f1:e5:5a:e7:c7:15:6f:ee:11:ab:
c1:7d:83:bd:a2:1e:ea:56:df:53:a5:07:b7:b2:61:
fc:6c:3f:89:20:29:d2:e4:7f:04:d3:54:c8:6a:ff:
29:36:c1:a1:91:01:a7:e8:a7:db:d8:6a:cb:5e:47:
43:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D3:D7:17:58:E2:9E:88:3C:4E:BF:F7:F9:56:65:9D:FD:DD:A3:23
X509v3 Authority Key Identifier:
keyid:0F:D5:18:69:C0:78:E6:4A:0A:A8:4C:9E:A0:B4:A0:05:1E:8C:98:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D9UYacB45koKqEyeoLSgBR6MmGs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/228f35-73e9-4685-8c0a-6478fc1c4d60/1/hdPXF1jinog8Tr_3-VZlnf3doyM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/228f35-73e9-4685-8c0a-6478fc1c4d60/1/D9UYacB45koKqEyeoLSgBR6MmGs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.252.0/24
Signature Algorithm: sha256WithRSAEncryption
75:30:52:62:9b:87:8b:cf:f0:08:5c:7e:38:63:01:e8:e7:3c:
ed:4f:5f:63:3d:b0:12:fd:0e:33:26:38:d3:30:fd:fb:8e:71:
97:d9:d8:6f:f6:8a:a2:ed:e3:b1:5a:dd:6c:e3:37:ad:1a:3a:
e3:c7:40:71:56:aa:d5:bb:74:f3:7d:65:c2:f5:7f:4c:b8:3e:
18:ff:be:1f:9e:59:b2:f1:ed:1a:ed:c5:29:08:55:26:83:ee:
23:02:09:ca:e0:cd:12:1d:57:45:64:70:e5:18:e8:51:85:dc:
7b:65:67:3b:15:83:dd:e3:b5:c8:75:c1:7e:2f:34:dd:72:66:
a1:08:88:85:64:76:3b:1c:c3:fb:81:c3:89:cd:75:3a:bc:b1:
af:01:df:51:20:95:1f:48:8a:88:31:26:f7:b6:cf:ee:06:c2:
0c:ef:5f:07:88:04:a7:de:81:b1:eb:11:9c:b8:8e:57:ae:52:
38:a8:38:43:7c:56:ca:3a:17:26:c3:20:f2:b2:47:c4:20:92:
fc:c1:c8:3c:f7:2b:21:f0:b4:9f:85:12:03:5a:09:4f:0b:ae:
15:51:17:f7:d1:0b:cc:20:65:d7:c6:30:dc:73:02:45:a6:56:
da:cf:1b:92:02:32:9f:cf:5b:60:52:49:57:bf:12:d4:b2:d2:
d7:e8:1b:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:38 2024 by rpki-client on console-fra.rpki-client.org