Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/89181b-a5ee-4eb7-959d-a6db4ad0153f/1/S6_fg0Uprg0HIIzVepfFtLtE8rE.roa
File: S6_fg0Uprg0HIIzVepfFtLtE8rE.roa (raw, json)
Hash identifier: +40PJ27P4H07yCKGeNEVA0iLBLWDu4oSuGarbnPEhuA=
Subject key identifier: 4B:AF:DF:83:45:29:AE:0D:07:20:8C:D5:7A:97:C5:B4:BB:44:F2:B1
Certificate issuer: /CN=86649d785d47a0d2634d1d877609c8d609f44871
Certificate serial: 01870E19CCD9A0DC148B1351D4D593FC78BC
Authority key identifier: 86:64:9D:78:5D:47:A0:D2:63:4D:1D:87:76:09:C8:D6:09:F4:48:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hmSdeF1HoNJjTR2HdgnI1gn0SHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/89181b-a5ee-4eb7-959d-a6db4ad0153f/1/S6_fg0Uprg0HIIzVepfFtLtE8rE.roa
Signing time: Thu 23 Mar 2023 10:53:04 +0000
ROA not before: Thu 23 Mar 2023 10:53:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 52000
IP address blocks: 185.252.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:0e:19:cc:d9:a0:dc:14:8b:13:51:d4:d5:93:fc:78:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86649d785d47a0d2634d1d877609c8d609f44871
Validity
Not Before: Mar 23 10:53:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4bafdf834529ae0d07208cd57a97c5b4bb44f2b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:25:43:af:8e:3e:77:16:96:84:92:67:b7:1d:
15:7d:3c:7a:2e:6d:1c:8e:d4:ae:a2:21:79:a2:57:
49:e6:4d:c6:49:4f:98:3c:35:98:41:e0:d3:f1:17:
5d:00:e0:22:44:bc:cc:3b:53:45:d8:38:ca:b2:b7:
65:f3:ee:cf:92:4c:06:be:64:c4:5b:0f:76:df:ec:
74:d1:02:d0:e0:96:06:4d:c5:31:de:8b:12:73:64:
38:bb:6c:c6:a4:1d:70:c9:08:9a:13:c6:b2:b9:20:
91:d0:b8:93:fe:6d:55:f0:9e:bd:3d:5e:89:37:5b:
9e:21:58:46:3e:e5:62:64:f4:c2:b4:73:f9:03:e2:
4e:f1:fb:14:ee:4a:a5:ce:ef:de:65:7e:5e:04:01:
3c:23:8b:46:7e:26:e0:da:7c:5f:4b:37:7f:81:3e:
ee:48:8d:b8:1f:96:77:20:ae:6f:7c:2a:66:0d:5d:
d7:87:45:c9:76:7c:dc:91:d7:3c:1b:a0:e8:fe:87:
ba:7c:d0:8f:23:52:f4:32:41:d4:ce:83:73:fe:40:
80:dc:57:8b:32:84:81:0c:0d:98:a3:41:5a:0d:89:
61:35:14:8c:b5:38:fe:85:b0:51:f1:03:69:e3:0a:
22:5c:ee:5e:9b:2c:ea:5d:a8:8d:25:50:86:09:79:
83:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AF:DF:83:45:29:AE:0D:07:20:8C:D5:7A:97:C5:B4:BB:44:F2:B1
X509v3 Authority Key Identifier:
keyid:86:64:9D:78:5D:47:A0:D2:63:4D:1D:87:76:09:C8:D6:09:F4:48:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hmSdeF1HoNJjTR2HdgnI1gn0SHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89181b-a5ee-4eb7-959d-a6db4ad0153f/1/S6_fg0Uprg0HIIzVepfFtLtE8rE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/89181b-a5ee-4eb7-959d-a6db4ad0153f/1/hmSdeF1HoNJjTR2HdgnI1gn0SHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.252.215.0/24
Signature Algorithm: sha256WithRSAEncryption
de:20:3a:2d:7c:03:5d:f6:e1:6f:96:b3:2e:3d:38:2a:59:c6:
c5:eb:88:36:d1:83:fa:d5:c8:ca:de:7c:76:01:48:19:53:8a:
2b:67:4a:d3:9b:aa:dc:87:18:5b:d3:3f:50:da:56:d6:7c:be:
85:12:1a:53:e2:0f:08:e7:8c:c4:a6:b4:fa:80:e2:e9:85:d8:
80:16:c6:49:4a:48:e2:d1:42:6f:a5:ff:83:71:c8:c4:67:ef:
38:69:00:fb:d6:61:03:d2:33:4b:be:0c:92:64:d8:43:ec:f6:
c8:85:52:a2:43:99:7d:96:42:40:fe:4a:21:22:b3:13:f1:f5:
08:bb:ec:fc:6a:c2:18:e8:2c:58:13:fd:58:89:ce:2a:8d:bd:
8b:1b:c0:f9:0d:cc:5a:8a:61:35:c4:b2:fd:92:0f:c1:9c:82:
fd:d4:19:3e:c1:50:a9:b1:0e:19:d9:1c:c6:7c:b2:47:6f:f5:
9a:0b:cc:b8:9d:61:3d:6b:b7:1b:79:74:74:c4:d7:23:5b:d0:
e4:b5:98:c3:b9:ec:7e:11:5e:7e:8e:07:5e:ce:32:3c:10:81:
09:98:1e:9f:d5:95:bc:97:97:71:16:cf:9c:c3:aa:74:c9:b6:
fa:1d:dc:ae:12:90:12:30:39:20:7f:f1:b4:65:17:2b:3a:f5:
cb:cd:ac:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:13 2025 by rpki-client