Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/c89408-cf22-4da5-981a-b638b31db89d/1/guLuLeSbX5zgj7pkr4t_xLQDoXo.roa
File: guLuLeSbX5zgj7pkr4t_xLQDoXo.roa (raw, json)
Hash identifier: LdJS1ItYs8k5lBPcPW9Rvwbj2LQP/hQpj5ZGpBF4p1g=
Subject key identifier: 82:E2:EE:2D:E4:9B:5F:9C:E0:8F:BA:64:AF:8B:7F:C4:B4:03:A1:7A
Certificate issuer: /CN=12dfa341e6a3a02e36c2ab7c3b7f3c9791c7e769
Certificate serial: 01856BEEC1985943D451778350ECC66AB448
Authority key identifier: 12:DF:A3:41:E6:A3:A0:2E:36:C2:AB:7C:3B:7F:3C:97:91:C7:E7:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Et-jQeajoC42wqt8O388l5HH52k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/c89408-cf22-4da5-981a-b638b31db89d/1/guLuLeSbX5zgj7pkr4t_xLQDoXo.roa
Signing time: Sun 01 Jan 2023 06:04:47 +0000
ROA not before: Sun 01 Jan 2023 06:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21245
IP address blocks: 185.241.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:ee:c1:98:59:43:d4:51:77:83:50:ec:c6:6a:b4:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=12dfa341e6a3a02e36c2ab7c3b7f3c9791c7e769
Validity
Not Before: Jan 1 06:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=82e2ee2de49b5f9ce08fba64af8b7fc4b403a17a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:2e:25:88:d6:35:f2:55:40:6b:ea:0c:2e:6e:
7e:4d:b1:05:28:ce:1d:15:f8:cf:91:47:4b:72:f1:
eb:aa:d6:56:77:0c:d0:89:da:75:e0:da:4c:2a:8f:
41:c5:39:bb:23:dd:e7:38:29:0c:02:ad:d0:4e:37:
1a:cb:06:58:7f:06:bb:b3:1c:e0:4d:08:e4:28:d2:
fa:d9:ca:ef:7a:68:28:34:21:97:b9:6d:b8:fe:8b:
6d:12:c3:e8:1d:95:c0:32:ef:f4:98:b3:30:5e:1b:
8b:f1:c5:07:3c:35:ac:b6:fb:9c:c3:99:7f:c0:15:
17:3e:51:d7:98:c7:95:9a:45:3e:85:b0:4d:de:a9:
ea:d4:7f:56:3d:4b:d0:d2:8a:c5:e5:84:43:d9:64:
ac:2b:20:d6:68:a0:0c:a1:32:74:b4:98:0c:7b:12:
fb:68:02:c2:f6:34:15:bb:69:56:b7:7e:0b:3c:07:
23:b8:df:09:35:8f:d9:8d:4e:3d:c7:69:02:7f:a3:
e3:1f:4d:e8:75:04:84:50:3f:f1:39:f5:1c:6d:86:
9c:44:5f:eb:79:e7:32:89:82:2a:fb:86:10:4e:90:
1d:8f:e7:a3:a5:ea:0e:d2:e3:25:d0:d7:aa:bf:9c:
7d:9d:69:e8:06:9e:f9:3b:27:54:c2:6e:1b:59:92:
d1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E2:EE:2D:E4:9B:5F:9C:E0:8F:BA:64:AF:8B:7F:C4:B4:03:A1:7A
X509v3 Authority Key Identifier:
keyid:12:DF:A3:41:E6:A3:A0:2E:36:C2:AB:7C:3B:7F:3C:97:91:C7:E7:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Et-jQeajoC42wqt8O388l5HH52k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/c89408-cf22-4da5-981a-b638b31db89d/1/guLuLeSbX5zgj7pkr4t_xLQDoXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/c89408-cf22-4da5-981a-b638b31db89d/1/Et-jQeajoC42wqt8O388l5HH52k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.63.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:56:e2:eb:94:27:8b:f0:c3:0b:fd:f4:df:1c:dd:a6:0c:d5:
4f:7b:0f:e0:5a:87:14:4f:ba:f6:21:8d:4c:67:ab:a4:85:6c:
e3:37:a9:c4:30:73:c1:e2:e6:43:44:e1:79:cd:65:50:6a:51:
3d:c3:9e:77:ee:27:78:b6:df:2e:06:af:ed:3d:19:be:74:4d:
81:e7:2c:6e:9c:09:2e:99:7f:d1:4f:fb:6d:a8:51:ab:93:34:
52:00:2f:a1:22:6c:fd:96:e6:86:5a:6f:10:51:c7:3d:7c:35:
90:e3:4f:33:17:13:ad:0f:f2:2e:11:56:9d:ea:f9:e6:a4:d0:
d4:92:8d:00:bd:ed:20:0f:80:c8:e9:eb:3f:f0:5b:ef:80:ce:
b3:5e:66:cd:b3:8e:40:cc:3a:49:5c:95:b2:05:b7:7c:c6:45:
4e:45:24:7e:e1:76:81:ff:71:73:36:91:35:23:73:0e:7f:87:
68:f9:ed:64:72:e1:8b:0c:26:05:2a:b8:d2:ba:ab:d1:35:16:
bd:a9:55:d0:4f:53:68:e5:1d:cb:c6:c5:f0:45:de:10:da:b6:
9d:4d:2f:91:d3:a4:dd:26:ba:75:40:15:ab:f1:1a:b1:32:d6:
5a:40:31:6c:12:c1:8e:ad:7f:66:06:27:8d:9c:44:7b:de:9c:
f5:0f:64:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:23 2024 by rpki-client on console-fra.rpki-client.org