Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/gQmvmv9Kwc5H_Iogxry8uvupAnU.roa
File: gQmvmv9Kwc5H_Iogxry8uvupAnU.roa (raw, json)
Hash identifier: XlT/PdoJUq5sqnHMA1htLqIV9RZRKcBIG3njcBAZ0j4=
Subject key identifier: 81:09:AF:9A:FF:4A:C1:CE:47:FC:8A:20:C6:BC:BC:BA:FB:A9:02:75
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 146A237A
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/gQmvmv9Kwc5H_Iogxry8uvupAnU.roa
Signing time: Sat 01 Jan 2022 03:58:55 +0000
ROA not before: Sat 01 Jan 2022 03:58:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12859
IP address blocks: 185.4.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342500218 (0x146a237a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 03:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8109af9aff4ac1ce47fc8a20c6bcbcbafba90275
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8f:79:96:d7:8b:a3:6f:2a:b6:4e:7c:4c:9e:
42:76:d5:97:b4:f1:da:c5:fc:0c:d0:e4:e8:b6:ab:
59:f8:f4:0e:5e:fb:94:11:6c:cc:32:ea:ca:f2:49:
7f:18:58:4d:52:8c:fd:2a:44:b1:a4:c3:a2:aa:86:
15:70:8c:09:6a:48:7d:4b:85:01:46:f9:65:ad:e5:
56:94:ce:6b:87:81:c9:79:82:d3:59:fc:c2:46:a6:
bc:54:50:30:9a:10:0b:0e:14:7c:7a:a9:d3:e5:65:
ee:50:5b:19:9e:f6:46:30:7a:1f:1d:77:dc:a7:28:
29:61:e9:70:b9:4e:5e:b0:3c:28:58:5b:c5:35:f5:
80:b6:83:9f:64:c6:8f:96:cc:cb:6b:21:80:4b:18:
28:e7:0a:4b:50:ee:ad:4a:3f:01:37:4d:f8:fa:07:
ee:2c:d7:8a:10:13:03:14:85:41:5f:82:73:73:40:
1b:ee:a6:d6:78:9f:7a:a3:3a:b6:9d:78:b0:a2:0d:
36:24:c4:ae:ad:33:b5:2e:69:f3:2b:03:c2:e8:2f:
89:d6:e0:83:ab:47:60:7e:55:2c:d1:df:6a:25:4e:
b5:b4:ac:ae:97:d5:e6:78:19:a0:9a:88:7c:b6:de:
1f:ad:20:90:c0:de:5b:a8:88:53:1f:26:48:75:a7:
b3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:09:AF:9A:FF:4A:C1:CE:47:FC:8A:20:C6:BC:BC:BA:FB:A9:02:75
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/gQmvmv9Kwc5H_Iogxry8uvupAnU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.114.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:77:ff:05:6e:7b:ec:3a:12:9f:eb:bf:6e:19:c4:e0:bf:3d:
ef:39:1d:5c:d3:fa:09:19:b0:16:0e:8b:27:e1:9f:9e:ad:a4:
91:fa:54:f7:13:52:d8:71:52:6b:04:c2:e7:34:e5:4a:69:e7:
fc:84:fd:05:ac:53:7a:dd:6a:a9:62:f9:d6:0c:67:c9:a9:28:
49:3a:87:cc:d2:5d:80:d0:b9:a6:81:a2:5d:d4:f2:97:7c:53:
95:11:d2:a2:84:0b:53:28:10:09:a9:67:f3:b9:a4:c6:e1:6d:
a0:99:4d:cc:06:47:3b:e9:75:61:28:f4:a1:3c:c6:bb:48:ce:
06:f0:44:f9:21:71:4f:0e:35:6b:43:c3:24:f1:e5:b5:1a:e0:
32:8b:9b:68:06:e5:11:9e:f1:9c:55:96:ef:6e:53:80:17:84:
60:35:a6:75:77:63:4c:c1:02:86:d7:8b:96:66:3c:96:73:97:
7c:26:ac:2f:db:52:9d:66:43:31:62:59:7a:d7:78:63:2d:45:
c5:f0:70:3b:b7:a3:33:75:19:bc:a7:09:49:a2:09:a5:7a:10:
f3:a6:09:8d:84:8c:d7:1f:d8:4a:0c:77:23:5e:c7:34:9b:cb:
dd:a7:9e:28:e8:ce:1e:6e:bf:bb:6c:c4:6a:e7:7c:c6:23:4a:
09:91:bf:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:55 2024 by rpki-client on console-fra.rpki-client.org