Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/jmI-1psdKK060u7Aea77Qd4g7n8.roa
File: jmI-1psdKK060u7Aea77Qd4g7n8.roa (raw, json)
Hash identifier: gbnGL7x/p7S5G+brb8eHLwH6rrVwdMlh7nIiHW31eU0=
Subject key identifier: 8E:62:3E:D6:9B:1D:28:AD:3A:D2:EE:C0:79:AE:FB:41:DE:20:EE:7F
Certificate issuer: /CN=a663abd479cbff76082304bf60d03adc3187d936
Certificate serial: 01856F6FFFCED155B47882EBCF6D0A78FB97
Authority key identifier: A6:63:AB:D4:79:CB:FF:76:08:23:04:BF:60:D0:3A:DC:31:87:D9:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pmOr1HnL_3YIIwS_YNA63DGH2TY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/jmI-1psdKK060u7Aea77Qd4g7n8.roa
Signing time: Sun 01 Jan 2023 22:24:48 +0000
ROA not before: Sun 01 Jan 2023 22:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 64200
IP address blocks: 185.198.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:ff:ce:d1:55:b4:78:82:eb:cf:6d:0a:78:fb:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a663abd479cbff76082304bf60d03adc3187d936
Validity
Not Before: Jan 1 22:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8e623ed69b1d28ad3ad2eec079aefb41de20ee7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d3:78:66:7a:b2:15:37:ca:9d:48:cb:86:1a:
3a:a0:fb:0a:25:40:db:d2:db:ab:09:f6:bd:9b:df:
ca:20:00:f5:f9:65:dc:8d:ec:15:ab:06:ce:59:07:
a5:a8:a4:42:18:8c:e9:96:2d:e7:03:44:bb:61:6a:
fe:cd:e1:88:17:f3:85:1c:3f:25:8b:02:c3:ee:08:
5b:26:a1:2e:a2:49:75:c4:3a:38:40:d8:94:30:d6:
d3:47:29:a8:f2:02:9e:b5:e1:ff:1f:20:1b:bd:33:
9b:f9:9d:71:80:48:8f:f8:41:b4:46:6f:31:9e:c3:
f5:f4:50:a4:de:66:6d:66:82:74:5c:36:df:c8:d9:
67:6f:b9:34:f4:d9:d3:ff:aa:9c:25:ed:bb:b3:f4:
05:42:72:24:b1:69:b2:99:9a:9a:fe:1b:68:e6:5f:
1b:8a:95:5d:3a:49:4c:81:eb:59:05:0e:9a:df:ff:
44:b9:8d:1f:04:41:e7:4f:70:de:ca:81:7f:ab:4a:
66:8d:d2:3c:d0:ad:92:91:78:60:46:d5:24:ba:d5:
47:ff:06:38:e7:92:88:0d:cf:63:83:ff:f5:77:54:
09:06:c0:76:da:e6:b1:bd:31:c2:88:e1:41:44:1e:
49:2a:fa:2f:2b:33:30:50:3d:89:97:12:e7:47:a4:
c2:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:62:3E:D6:9B:1D:28:AD:3A:D2:EE:C0:79:AE:FB:41:DE:20:EE:7F
X509v3 Authority Key Identifier:
keyid:A6:63:AB:D4:79:CB:FF:76:08:23:04:BF:60:D0:3A:DC:31:87:D9:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pmOr1HnL_3YIIwS_YNA63DGH2TY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/jmI-1psdKK060u7Aea77Qd4g7n8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/f42724-d009-487d-a79c-bfa04f6cde50/1/pmOr1HnL_3YIIwS_YNA63DGH2TY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.88.0/24
Signature Algorithm: sha256WithRSAEncryption
41:4c:02:9d:46:3b:c6:28:68:9e:a8:10:66:90:94:d2:46:99:
56:a3:eb:03:44:82:52:af:bf:f6:91:66:fe:ab:0d:cb:df:4c:
a9:ee:fb:54:ae:80:e1:23:89:f0:5f:7e:2b:07:3f:37:2e:a4:
03:c1:3d:1b:26:29:56:34:8b:32:fe:9b:84:da:d6:f5:9a:56:
e3:7e:fd:54:de:0b:86:d3:75:ef:4e:f5:a8:e9:57:7a:88:5e:
6b:93:f1:52:4a:55:67:84:3c:ca:ba:d2:77:e7:6b:98:76:a0:
f2:bb:11:f3:61:55:ed:26:d4:14:56:c3:1f:5b:2a:fe:5c:35:
65:53:cf:25:02:64:0f:82:98:51:dc:d3:54:ba:77:39:be:63:
79:a1:94:f3:f1:d5:e6:4c:e0:0e:40:2e:e6:a3:3a:f9:da:cf:
4c:8b:2a:85:ee:3d:e0:e2:ba:bf:ad:2a:53:d7:56:0e:85:2d:
d2:d4:46:b6:3b:e4:33:2b:5d:4e:65:26:40:1e:2c:d4:43:eb:
ff:71:c7:de:78:5a:62:fd:1b:99:b3:5f:2b:bd:d6:9f:6a:67:
dd:61:38:c8:f6:06:87:a0:c2:b1:07:5c:04:78:20:f8:75:d9:
87:bc:b4:d5:11:34:d9:fc:7a:a4:34:ef:6d:d4:73:42:dd:1a:
a8:85:8f:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:48 2024 by rpki-client on console-fra.rpki-client.org