Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/639f49-4cfc-41c8-8ba7-5e030706488d/1/OZa3TM1YQO2DG4L4-MuiWNrUmPA.roa
File: OZa3TM1YQO2DG4L4-MuiWNrUmPA.roa (raw, json)
Hash identifier: YEDX8XaX9x+000WpTyS0aOX13kay5MgOnuOlxIRhJCY=
Subject key identifier: 39:96:B7:4C:CD:58:40:ED:83:1B:82:F8:F8:CB:A2:58:DA:D4:98:F0
Certificate issuer: /CN=d8a8e9af2ca43e2712bfb2c9796ec4c0ba658521
Certificate serial: 0C9BB6F0
Authority key identifier: D8:A8:E9:AF:2C:A4:3E:27:12:BF:B2:C9:79:6E:C4:C0:BA:65:85:21
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2KjpryykPicSv7LJeW7EwLplhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/639f49-4cfc-41c8-8ba7-5e030706488d/1/OZa3TM1YQO2DG4L4-MuiWNrUmPA.roa
Signing time: Sat 01 Jan 2022 11:01:54 +0000
ROA not before: Sat 01 Jan 2022 11:01:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210979
IP address blocks: 185.102.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211531504 (0xc9bb6f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8a8e9af2ca43e2712bfb2c9796ec4c0ba658521
Validity
Not Before: Jan 1 11:01:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3996b74ccd5840ed831b82f8f8cba258dad498f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:0c:c9:1f:bd:1d:66:7e:fe:af:8b:e2:92:51:
98:28:e8:33:74:d0:35:71:ef:22:87:67:0b:62:7a:
67:1f:36:37:fd:18:a6:d2:a0:2e:95:3a:c5:d7:50:
bd:a8:19:04:6a:d6:04:e1:0b:3b:1e:70:1e:cf:4d:
49:42:02:3f:c3:9f:12:9e:2c:38:f5:cf:ce:14:1b:
f3:b6:12:15:b3:4e:0b:c6:85:e8:2a:01:49:88:a6:
10:e7:84:fc:aa:00:bc:e2:b1:ba:63:33:56:da:7e:
de:f1:20:a5:73:d9:0c:6b:55:93:d8:91:f5:40:5f:
6b:f7:19:8d:ec:c8:70:c2:92:af:63:49:f6:33:9f:
9f:56:bc:e0:7c:82:26:42:aa:10:ad:0c:45:48:37:
29:9a:ad:37:e0:09:12:7f:b4:3b:d8:c9:5a:b8:4e:
a8:df:7f:98:d0:2a:ef:ed:f5:97:09:04:2d:93:f8:
cc:3a:0e:10:d1:24:1b:b3:af:40:10:6a:42:d5:ea:
14:c5:f6:75:00:17:31:7d:c1:01:cb:4a:13:e3:c0:
28:66:f5:12:97:32:24:e3:a1:ca:0b:ba:dc:43:75:
3d:e3:93:07:81:b3:3b:1d:4c:0e:d4:9a:2a:fd:be:
47:e8:ed:dc:31:3c:e9:cf:82:0a:e6:ad:e8:6d:2d:
b5:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:96:B7:4C:CD:58:40:ED:83:1B:82:F8:F8:CB:A2:58:DA:D4:98:F0
X509v3 Authority Key Identifier:
keyid:D8:A8:E9:AF:2C:A4:3E:27:12:BF:B2:C9:79:6E:C4:C0:BA:65:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2KjpryykPicSv7LJeW7EwLplhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/639f49-4cfc-41c8-8ba7-5e030706488d/1/OZa3TM1YQO2DG4L4-MuiWNrUmPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/639f49-4cfc-41c8-8ba7-5e030706488d/1/2KjpryykPicSv7LJeW7EwLplhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.102.169.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:dc:4a:ee:f6:d9:a7:35:02:f4:9d:2c:f6:53:5d:7f:29:36:
d4:3d:76:76:f8:5b:24:2a:49:4a:9a:5a:5d:01:59:82:16:af:
98:7c:5c:c0:80:18:ff:68:2c:41:d0:be:00:c1:24:f1:b8:c1:
02:a2:12:59:46:7f:ec:71:b4:c4:bb:a1:93:94:28:69:38:ab:
3a:c2:9b:b1:c0:11:d6:62:3a:95:21:3e:7e:8a:da:51:76:66:
6f:0d:48:20:e5:14:34:9d:c9:3f:a6:01:33:89:b6:d1:95:b3:
66:09:5a:d9:1a:09:82:12:36:ef:67:24:64:b4:1d:40:70:b3:
6f:02:fb:db:65:5b:73:18:5d:bc:a0:6e:09:d2:fa:65:bf:91:
bd:94:dc:26:90:97:ba:4b:41:96:e2:bf:b3:fa:f0:4b:5f:9f:
9f:03:a4:21:82:56:ec:41:10:66:a2:78:3d:2a:ff:e6:5d:58:
b3:68:7d:13:bc:84:d7:a7:42:b8:49:39:88:00:bb:56:fe:fa:
de:d8:f8:46:ea:4c:82:98:fc:74:97:a5:cb:4a:9f:70:8b:8c:
94:eb:44:19:aa:90:62:3f:af:f3:db:c0:6e:9f:7f:c8:5a:96:
27:5e:87:d0:47:d6:9f:7e:a9:98:0d:3c:8d:b1:c1:8a:8d:29:
6f:e2:38:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:34 2023 by rpki-client on console-ams.rpki-client.org