Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/ikMmu4h1zjmNQ9DzR4qQ11P046M.roa
File: ikMmu4h1zjmNQ9DzR4qQ11P046M.roa (raw, json)
Hash identifier: +iMZTjzOfq3Zw4QTK4/eMHxne1e4t+Lt2dGLCkBOeyE=
Subject key identifier: 8A:43:26:BB:88:75:CE:39:8D:43:D0:F3:47:8A:90:D7:53:F4:E3:A3
Certificate issuer: /CN=4944680c20d1af01f169b18ac9c77d9877133cde
Certificate serial: 01856D93EF0017F20BB6F076EAEAC5B61A2B
Authority key identifier: 49:44:68:0C:20:D1:AF:01:F1:69:B1:8A:C9:C7:7D:98:77:13:3C:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SURoDCDRrwHxabGKycd9mHcTPN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/ikMmu4h1zjmNQ9DzR4qQ11P046M.roa
Signing time: Sun 01 Jan 2023 13:44:49 +0000
ROA not before: Sun 01 Jan 2023 13:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 45671
IP address blocks: 85.255.124.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:ef:00:17:f2:0b:b6:f0:76:ea:ea:c5:b6:1a:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4944680c20d1af01f169b18ac9c77d9877133cde
Validity
Not Before: Jan 1 13:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8a4326bb8875ce398d43d0f3478a90d753f4e3a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:56:32:c2:3b:17:46:2a:c1:a2:f3:03:da:e1:
41:40:c4:36:9a:bb:90:7b:75:5b:1c:67:b8:82:ad:
25:25:df:ac:f7:d6:f5:aa:fd:4e:b4:8f:76:16:df:
4a:eb:48:a0:05:37:0f:68:bc:85:19:58:52:f9:06:
58:bb:9b:3c:17:73:4a:45:d5:65:c3:ad:ed:62:7f:
8c:20:4e:04:52:c2:86:4e:ae:6e:b2:1c:fa:75:8e:
b8:07:3b:4b:d6:ca:38:35:ce:1f:36:35:05:69:5a:
df:ee:8d:06:6c:1a:94:49:91:b2:60:fe:d3:7b:b0:
62:e5:e8:14:33:09:1e:07:84:5f:fb:da:8f:cf:60:
cf:0e:21:00:39:c3:8d:31:f0:23:bd:86:8d:f0:ea:
f9:db:04:db:ad:24:06:d2:9c:b0:5a:a0:28:50:9e:
26:0a:c1:98:b4:e6:88:70:63:62:a1:15:9b:e0:c1:
7f:94:ee:32:99:12:2a:65:db:ff:b5:a0:da:04:9b:
f7:57:18:9d:20:23:28:3e:ec:74:10:f0:6b:39:f9:
97:53:8f:d3:80:28:cb:a2:b4:f5:bf:82:d8:f8:19:
ce:c9:74:bc:a3:c6:2c:5b:4d:6e:87:50:71:05:5d:
87:aa:eb:f4:ff:d3:e6:51:1e:bc:70:af:fa:92:7f:
83:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:43:26:BB:88:75:CE:39:8D:43:D0:F3:47:8A:90:D7:53:F4:E3:A3
X509v3 Authority Key Identifier:
keyid:49:44:68:0C:20:D1:AF:01:F1:69:B1:8A:C9:C7:7D:98:77:13:3C:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SURoDCDRrwHxabGKycd9mHcTPN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/ikMmu4h1zjmNQ9DzR4qQ11P046M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/7dee09-cd2e-4030-ab92-ebdcc02fbae9/1/SURoDCDRrwHxabGKycd9mHcTPN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.255.124.0/24
Signature Algorithm: sha256WithRSAEncryption
84:a7:a0:37:8e:3c:80:37:de:08:2a:eb:32:eb:8f:e6:87:54:
1f:11:22:07:8f:48:ea:99:87:d2:ea:21:ac:f6:e3:e8:28:9a:
a9:d9:c3:c8:8f:05:7a:bd:64:4b:ea:04:0d:b0:3f:ca:b3:e1:
c7:98:05:ff:5a:65:97:dd:01:f6:7a:be:51:81:3b:73:80:71:
c9:42:82:75:a3:7f:0a:a9:b5:26:91:94:97:a7:b8:ff:fc:bf:
16:38:d5:24:34:fd:43:de:f7:de:bd:6c:9b:02:7b:d9:b5:98:
35:47:0a:69:49:9a:ee:20:93:ce:98:7a:80:c4:4f:93:77:a9:
d5:f5:bf:ed:9a:b4:77:c9:d0:94:b8:36:c1:98:55:21:53:0e:
6a:a6:83:d4:c5:3d:60:fb:c6:aa:4b:c5:a2:46:97:a5:ce:c0:
52:43:99:d0:5e:41:9b:08:56:87:68:a3:b5:1e:8a:0a:84:88:
01:6d:9b:97:cf:29:59:09:7f:4e:9a:94:d6:70:9b:1d:f6:89:
31:f2:e4:68:e8:cd:f4:9a:9e:88:8e:fa:06:8c:4b:bd:f5:fd:
e6:eb:30:0b:6b:8f:61:c8:7e:4d:b4:7a:4b:dd:c2:69:d9:64:
e9:17:fa:05:e8:5f:d8:f7:49:af:ab:07:8e:33:0e:e9:66:ab:
d4:75:9c:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:46 2024 by rpki-client on console-ams.rpki-client.org