Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/ujiDsQ86MqHFm6TzD-8dHEwv6gY.roa
File: ujiDsQ86MqHFm6TzD-8dHEwv6gY.roa (raw, json)
Hash identifier: 6tY5WEzfdanWspmcsv7w4AhStVxOVBPttRx+6+nfOm0=
Subject key identifier: BA:38:83:B1:0F:3A:32:A1:C5:9B:A4:F3:0F:EF:1D:1C:4C:2F:EA:06
Certificate issuer: /CN=cf640b02311376dc96eebfeca755c3b0061140ec
Certificate serial: 01856DD4032929D262D20894DCEDBEAAFC63
Authority key identifier: CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/ujiDsQ86MqHFm6TzD-8dHEwv6gY.roa
Signing time: Sun 01 Jan 2023 14:54:48 +0000
ROA not before: Sun 01 Jan 2023 14:54:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12859
IP address blocks: 185.4.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:d4:03:29:29:d2:62:d2:08:94:dc:ed:be:aa:fc:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf640b02311376dc96eebfeca755c3b0061140ec
Validity
Not Before: Jan 1 14:54:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba3883b10f3a32a1c59ba4f30fef1d1c4c2fea06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:dc:61:2e:b1:17:81:45:a1:e8:92:03:24:4c:
0d:22:d7:dc:71:e9:23:0f:9f:6b:ff:68:91:d8:10:
a3:29:31:d1:bd:3c:e1:82:ea:4a:ef:d0:13:6c:75:
1e:34:ed:13:23:c4:c2:f9:7b:1c:ad:83:7e:f0:e6:
9f:a1:af:44:44:a1:5c:fa:62:ed:1c:69:b3:f8:d9:
da:d6:84:e8:e1:9f:03:6e:5f:35:8a:88:a2:84:73:
98:ab:a8:ad:86:5a:27:58:43:dd:9d:bb:09:f0:e2:
8b:7a:6f:70:2f:a9:7a:c4:a4:ac:ac:af:18:23:21:
ad:11:49:cf:63:b8:a2:00:63:8e:dd:c7:b5:d7:62:
ea:d7:a6:b0:b8:cc:fb:ed:a8:e8:d5:53:5f:57:bb:
c0:ea:da:13:08:39:bd:6c:ca:9b:c4:ba:ae:d3:1a:
cd:53:97:a5:2d:c4:ea:e9:98:54:c3:a4:5f:66:a6:
94:10:e6:09:fb:f6:08:89:06:31:72:05:24:9a:49:
0b:a9:95:c6:36:92:a6:47:4d:12:26:74:e4:43:38:
0a:29:20:c2:28:dd:85:36:0f:91:69:4f:18:2b:b8:
22:8b:da:18:e4:5b:ec:e9:a7:61:06:d9:1c:6f:c2:
84:c5:d7:03:06:8b:d3:db:a8:73:48:e7:f9:c9:a8:
3b:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:38:83:B1:0F:3A:32:A1:C5:9B:A4:F3:0F:EF:1D:1C:4C:2F:EA:06
X509v3 Authority Key Identifier:
keyid:CF:64:0B:02:31:13:76:DC:96:EE:BF:EC:A7:55:C3:B0:06:11:40:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2QLAjETdtyW7r_sp1XDsAYRQOw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/ujiDsQ86MqHFm6TzD-8dHEwv6gY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/00ec78-7e44-49e4-8443-9db5be4d0eff/1/z2QLAjETdtyW7r_sp1XDsAYRQOw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.4.114.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:9d:92:be:ca:05:73:11:4a:7c:9e:f4:c0:84:ca:1d:c3:30:
03:87:a9:e5:22:59:8a:4b:47:3f:41:71:89:5a:8e:04:96:7f:
a5:86:30:31:c3:ec:24:49:00:db:96:df:ac:09:d5:93:c7:14:
ce:68:8e:25:f7:02:a4:71:e3:64:7a:15:5f:64:98:73:c3:c3:
4c:6a:0a:b1:61:3b:f6:0e:11:51:fa:2d:4e:cf:ec:11:4e:2c:
3f:34:36:a1:08:c8:2a:20:45:d3:0d:eb:1b:94:b9:c6:aa:d2:
f8:f7:8e:c6:1c:17:44:33:3e:3b:d4:2b:51:fd:54:42:12:a8:
1b:5d:32:8c:58:db:d8:ca:91:47:16:4e:6c:15:57:6c:28:a8:
98:b6:1f:95:ee:cd:54:1b:97:9b:ee:83:72:07:ad:be:be:dc:
0f:8b:e4:e9:4a:91:dc:4a:ff:bd:35:61:fd:97:c6:15:47:d1:
17:d4:34:50:52:6c:8a:b7:ff:53:dd:ce:3b:44:c2:3b:da:eb:
2b:8f:77:71:c5:ce:c8:85:88:41:60:c5:dd:2f:f1:62:ff:9d:
52:12:78:ed:c5:fe:4f:47:a7:d3:da:9b:ab:f0:0a:cd:11:f6:
f9:5a:e5:3c:2d:c3:b1:e2:c0:8e:8c:78:39:c0:e3:e7:57:3c:
65:ef:f7:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:14:57 2024 by rpki-client on console-ams.rpki-client.org