Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/d42db6-7715-4588-8051-601601085b7a/1/7FwWHRy9P1F3ZkHWi9LIEdrH7lQ.roa
File: 7FwWHRy9P1F3ZkHWi9LIEdrH7lQ.roa (raw, json)
Hash identifier: 00BOQxzBnSKckIl6spyiRoej1x4e/vlys4sctIeDLzY=
Subject key identifier: EC:5C:16:1D:1C:BD:3F:51:77:66:41:D6:8B:D2:C8:11:DA:C7:EE:54
Certificate issuer: /CN=1762467884a3245ad2486bcccfa61cf8cc546357
Certificate serial: 018570395FDFE7D9C2DB31C20285907E1798
Authority key identifier: 17:62:46:78:84:A3:24:5A:D2:48:6B:CC:CF:A6:1C:F8:CC:54:63:57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F2JGeISjJFrSSGvMz6Yc-MxUY1c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/d42db6-7715-4588-8051-601601085b7a/1/7FwWHRy9P1F3ZkHWi9LIEdrH7lQ.roa
Signing time: Mon 02 Jan 2023 02:04:46 +0000
ROA not before: Mon 02 Jan 2023 02:04:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 205979
IP address blocks: 185.157.112.0/24 maxlen: 24
185.157.115.0/24 maxlen: 24
185.157.113.0/24 maxlen: 24
185.157.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:39:5f:df:e7:d9:c2:db:31:c2:02:85:90:7e:17:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1762467884a3245ad2486bcccfa61cf8cc546357
Validity
Not Before: Jan 2 02:04:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ec5c161d1cbd3f51776641d68bd2c811dac7ee54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:e0:dc:9b:41:0d:e7:80:14:04:02:eb:ff:11:
5a:80:5b:e1:72:92:e1:c8:a0:db:97:69:b0:a4:54:
17:64:bb:b1:9a:99:71:84:cc:93:3d:fc:c4:de:48:
2b:34:96:4e:2c:33:b8:01:83:0b:25:39:a4:51:e5:
90:03:2a:55:a4:90:a6:88:44:7a:bd:b0:e8:b2:21:
79:e5:c3:cb:53:44:ba:95:03:53:a9:8e:f9:ca:f3:
af:8d:9f:98:42:d7:ce:50:6a:68:77:f7:98:89:e9:
bb:22:72:e8:11:f3:7c:7e:39:9d:6e:ea:e4:9f:9a:
0f:e0:79:88:b5:dd:51:da:b9:d3:d7:60:2b:43:84:
8f:95:96:a1:5e:5f:24:49:ce:15:4e:be:19:e2:d8:
f5:14:6d:a4:52:47:5b:48:91:ef:3c:bb:57:82:91:
57:90:81:14:cc:33:1d:d3:81:62:17:c5:a5:ac:61:
45:1d:84:fe:cd:c4:39:92:31:fe:a4:7b:a0:17:ba:
92:e1:03:03:fd:80:80:0f:65:48:3e:23:ce:a1:7d:
ee:61:47:77:e9:f5:d0:ea:a4:53:8b:f4:5a:56:ea:
e7:93:c2:30:a9:42:22:80:a3:3c:d5:99:ff:b7:a1:
6d:6b:b5:98:41:7c:ec:b4:3d:e2:8c:63:45:2a:cf:
5a:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:5C:16:1D:1C:BD:3F:51:77:66:41:D6:8B:D2:C8:11:DA:C7:EE:54
X509v3 Authority Key Identifier:
keyid:17:62:46:78:84:A3:24:5A:D2:48:6B:CC:CF:A6:1C:F8:CC:54:63:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F2JGeISjJFrSSGvMz6Yc-MxUY1c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/d42db6-7715-4588-8051-601601085b7a/1/7FwWHRy9P1F3ZkHWi9LIEdrH7lQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/d42db6-7715-4588-8051-601601085b7a/1/F2JGeISjJFrSSGvMz6Yc-MxUY1c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.157.112.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:65:39:0a:eb:a4:41:f0:a7:3e:85:69:53:22:87:63:c6:6a:
bf:93:9d:b8:a3:88:f6:86:fc:ef:de:f6:fc:4b:91:02:0f:e8:
63:69:b3:b8:10:16:64:84:00:d4:c4:fb:1d:35:ba:51:6a:28:
ff:e9:53:86:5e:2f:36:71:ad:9a:b8:02:7c:2d:38:6a:4f:0f:
8d:20:88:68:3f:9a:0d:e5:50:2d:97:ba:3d:4e:f5:22:49:a8:
1b:48:80:24:6f:13:04:d1:e9:b0:fc:17:5e:ca:a2:cd:d6:29:
57:98:9f:0c:7d:48:ef:d0:bd:74:41:9a:77:ce:e4:19:eb:da:
02:84:db:b2:46:7d:0c:d2:2a:a9:ed:47:0f:24:fb:f4:d3:9d:
1a:1c:50:b3:07:1a:70:c9:e2:a6:87:7d:20:41:9b:22:89:64:
ed:cc:d3:81:90:56:84:75:22:75:d1:3b:24:d3:7c:1d:93:7d:
cf:f2:9c:7f:f3:a6:63:e4:5a:bf:12:bd:aa:e2:1e:e0:c9:7f:
2a:ed:2e:9d:6d:d3:2a:0d:ca:d1:61:67:74:71:d2:c1:c5:17:
85:ba:13:e5:e8:01:ee:93:5f:85:d6:44:26:df:e6:fa:26:3b:
99:75:39:77:8a:0f:1f:2e:73:f7:6f:c1:b3:80:4f:a5:ea:dd:
9a:61:34:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:23 2024 by rpki-client on console-fra.rpki-client.org