Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/a7b5f7-f359-461a-b6ad-4e269d844db6/1/1-e7ZahQNgt7FdtcYYtWqxts3iEU.roa
File: 1-e7ZahQNgt7FdtcYYtWqxts3iEU.roa (raw, json)
Hash identifier: plYytWh2oLhMb/niHr5xaelDHZRlMNtdXDXX7CDohjI=
Subject key identifier: F9:EE:D9:6A:14:0D:82:DE:C5:76:D7:18:62:D5:AA:C6:DB:37:88:45
Certificate issuer: /CN=1ec104278c95e7054950933761d465af457c5818
Certificate serial: 01856D788D44AB68128620FEEA566ED4CCDE
Authority key identifier: 1E:C1:04:27:8C:95:E7:05:49:50:93:37:61:D4:65:AF:45:7C:58:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HsEEJ4yV5wVJUJM3YdRlr0V8WBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/a7b5f7-f359-461a-b6ad-4e269d844db6/1/1-e7ZahQNgt7FdtcYYtWqxts3iEU.roa
Signing time: Sun 01 Jan 2023 13:14:55 +0000
ROA not before: Sun 01 Jan 2023 13:14:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45033
IP address blocks: 185.43.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:78:8d:44:ab:68:12:86:20:fe:ea:56:6e:d4:cc:de
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ec104278c95e7054950933761d465af457c5818
Validity
Not Before: Jan 1 13:14:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f9eed96a140d82dec576d71862d5aac6db378845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:ee:da:e2:f9:09:82:71:a0:78:64:57:24:d5:
0d:ce:6c:7c:5d:6e:f6:5e:71:00:2e:28:5f:94:81:
d9:ec:ca:de:0a:c5:37:e1:0b:4d:05:e3:7f:6e:a1:
74:26:c0:10:42:ba:4d:dd:d6:47:d5:95:ff:0f:f5:
3b:1f:5d:6f:26:2b:53:b0:82:52:8b:df:fa:73:a2:
ae:0e:57:f7:89:6b:4f:1a:a6:b6:22:cd:3e:d1:55:
f2:d6:06:1e:f1:51:04:b2:3e:62:1e:e0:31:66:02:
7e:0a:b6:d6:38:03:fa:3a:db:8d:6d:d7:7f:3d:99:
96:e8:20:6a:ec:c8:34:7a:41:6b:aa:bb:74:60:9f:
3e:a6:3c:2a:08:05:c2:e0:51:d4:72:56:26:8f:2c:
14:dc:6f:68:6d:ad:52:1f:ed:9d:cd:5d:76:ed:30:
0e:35:12:ef:61:0f:eb:a6:1d:e6:68:fd:08:4f:e6:
cc:42:b4:f4:a1:3a:76:70:d6:84:c4:0c:e8:ac:2f:
83:4b:02:61:7b:be:a6:ee:3a:9e:53:86:34:4f:84:
65:8e:aa:1f:4b:b6:01:c4:2c:c3:d5:39:4f:12:27:
56:05:e7:24:02:26:c6:79:74:dc:39:57:ef:50:3f:
d6:68:08:3f:76:43:4c:8d:11:9b:ae:86:ca:27:8c:
59:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:EE:D9:6A:14:0D:82:DE:C5:76:D7:18:62:D5:AA:C6:DB:37:88:45
X509v3 Authority Key Identifier:
keyid:1E:C1:04:27:8C:95:E7:05:49:50:93:37:61:D4:65:AF:45:7C:58:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HsEEJ4yV5wVJUJM3YdRlr0V8WBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a7b5f7-f359-461a-b6ad-4e269d844db6/1/1-e7ZahQNgt7FdtcYYtWqxts3iEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/a7b5f7-f359-461a-b6ad-4e269d844db6/1/HsEEJ4yV5wVJUJM3YdRlr0V8WBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.128.0/24
Signature Algorithm: sha256WithRSAEncryption
08:aa:61:8f:32:5f:ed:c1:c1:9e:71:1f:68:46:35:ab:e4:2b:
49:7f:e1:03:18:95:ce:43:14:f1:d6:2a:b3:1e:e7:4d:1e:a3:
cb:8f:e3:d9:1e:ad:7b:db:b9:7f:00:f8:80:62:b7:69:79:64:
5b:55:8f:90:3a:ac:42:62:ca:95:5b:be:9c:32:0e:5b:ff:56:
d1:2a:b7:6c:c3:b0:72:da:0c:af:aa:40:97:aa:07:b2:80:97:
7f:2a:a7:06:b5:fd:62:e4:d5:a1:76:a7:da:4b:26:e0:23:37:
20:79:b5:d3:0a:e8:42:20:3d:17:7c:c6:12:51:7e:1a:97:2c:
01:11:21:d5:45:24:23:36:5a:93:7b:8c:43:7e:6e:0f:8e:fd:
97:41:21:4c:04:be:f5:b5:e1:b7:db:76:cc:06:7b:90:16:bd:
e6:e1:ac:37:a9:2b:0e:40:62:29:c1:06:30:54:b7:5c:4a:b4:
63:26:b3:f3:64:de:26:0e:41:a7:0e:25:ee:3e:a5:9b:eb:85:
a6:98:19:df:c9:2b:07:ed:78:b2:3a:45:7d:b0:03:d9:58:dc:
93:89:aa:6a:51:71:fb:bf:62:8c:47:40:68:f0:35:66:1c:64:
bc:f6:01:c4:3a:6a:98:bc:81:c4:31:3d:a3:e4:f4:2c:33:00:
31:24:84:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:17 2023 by rpki-client on console-ams.rpki-client.org