Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/57d581-3994-4d83-a1b0-968470b650f4/1/1KldkeZm3iVr54FYaWYvupkjfEU.roa
File: 1KldkeZm3iVr54FYaWYvupkjfEU.roa (raw, json)
Hash identifier: zh+ygY1JvKfIWV0omJjD5vtic6ipcp6uS25tkhgVgQM=
Subject key identifier: D4:A9:5D:91:E6:66:DE:25:6B:E7:81:58:69:66:2F:BA:99:23:7C:45
Certificate issuer: /CN=ff836ed8cd29b81b8421a1dab920905e2ed76184
Certificate serial: 0412A46A
Authority key identifier: FF:83:6E:D8:CD:29:B8:1B:84:21:A1:DA:B9:20:90:5E:2E:D7:61:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4Nu2M0puBuEIaHauSCQXi7XYYQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/57d581-3994-4d83-a1b0-968470b650f4/1/1KldkeZm3iVr54FYaWYvupkjfEU.roa
Signing time: Sat 01 Jan 2022 02:52:19 +0000
ROA not before: Sat 01 Jan 2022 02:52:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204995
IP address blocks: 185.184.9.0/24 maxlen: 24
185.184.8.0/24 maxlen: 24
185.184.11.0/24 maxlen: 24
2a0b:2180:1::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68330602 (0x412a46a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff836ed8cd29b81b8421a1dab920905e2ed76184
Validity
Not Before: Jan 1 02:52:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4a95d91e666de256be7815869662fba99237c45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:b4:b4:be:51:b8:35:5c:95:a5:bf:08:02:a8:
43:11:51:3b:e4:0a:76:57:09:ab:d4:00:0c:a8:35:
8a:80:aa:c0:de:61:73:b4:39:6c:08:f8:e7:ba:e2:
74:3c:ea:2a:66:20:6d:9e:b6:ce:86:34:76:4a:86:
84:81:c1:74:0c:ed:52:c6:f9:d9:9c:d8:13:2f:99:
77:85:f4:c1:b4:59:86:0f:28:eb:99:71:37:28:94:
ff:94:c8:bb:72:95:ca:28:0d:46:73:37:b8:2c:52:
70:12:6c:6c:c3:88:44:0e:03:4b:68:e8:06:e1:33:
02:ee:5c:78:98:41:43:37:9e:65:56:8a:1e:82:9c:
86:f3:72:d0:eb:c1:19:a6:a4:79:0f:6f:9b:25:c4:
d5:80:06:e1:12:39:1f:00:44:a4:5a:65:2b:3d:62:
89:d5:90:98:29:72:2c:4a:ab:a6:6d:9c:7d:3c:d3:
52:2b:80:77:1d:eb:b4:c1:05:93:ce:3b:77:fd:c1:
85:45:1b:93:f1:8c:87:e9:a5:1a:0c:f5:01:86:b3:
f3:06:f9:bd:cc:d2:6a:94:48:35:12:19:64:b0:1e:
23:79:1a:cc:92:88:ef:71:e5:ae:99:42:31:80:60:
8f:88:3c:d7:f8:0f:79:46:d4:7b:90:76:90:9e:97:
27:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:A9:5D:91:E6:66:DE:25:6B:E7:81:58:69:66:2F:BA:99:23:7C:45
X509v3 Authority Key Identifier:
keyid:FF:83:6E:D8:CD:29:B8:1B:84:21:A1:DA:B9:20:90:5E:2E:D7:61:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4Nu2M0puBuEIaHauSCQXi7XYYQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/57d581-3994-4d83-a1b0-968470b650f4/1/1KldkeZm3iVr54FYaWYvupkjfEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/57d581-3994-4d83-a1b0-968470b650f4/1/_4Nu2M0puBuEIaHauSCQXi7XYYQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.8.0/23
185.184.11.0/24
IPv6:
2a0b:2180:1::/48
Signature Algorithm: sha256WithRSAEncryption
32:e5:33:e1:fd:51:99:f5:92:fb:f0:37:a5:53:ff:b2:8d:20:
39:88:18:42:2c:9d:cf:29:ad:67:40:ab:b4:73:cc:b5:c9:65:
3b:0d:69:df:3b:94:43:32:9f:2d:c2:33:1d:d9:dd:af:af:46:
48:83:7b:7a:cf:97:9c:a9:7b:0d:d3:49:20:c1:96:7d:37:e3:
f7:11:80:c0:47:78:12:1d:36:74:73:4b:9f:72:92:8b:24:c9:
26:66:90:a0:47:27:89:ba:68:93:ef:aa:0d:17:ee:97:a3:4a:
1e:62:41:ca:ea:0f:f2:3d:35:c4:4a:56:c0:50:a1:18:af:e2:
63:69:7f:af:58:84:92:61:c3:06:01:b9:de:52:49:b0:60:fb:
f9:c9:7b:61:20:74:c6:3b:a3:1b:26:0f:d2:b7:ee:02:29:93:
9a:21:be:ca:69:5f:08:6e:c6:f8:68:e4:b5:9e:1d:bc:40:8c:
f6:85:20:c3:04:44:88:f5:2f:af:8c:7a:af:0d:2e:58:e2:51:
5c:33:b5:4c:78:c1:1d:cc:79:97:44:96:83:53:2d:9b:17:e1:
c2:43:eb:cf:08:33:1e:81:7a:dd:6b:7b:53:fb:8a:8e:75:36:
cd:30:d7:cc:a5:79:db:6f:ec:a9:8d:f1:35:88:f7:43:f0:f6:
12:3c:e6:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:11 2024 by rpki-client on console-fra.rpki-client.org