Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/8e09fe-a5c0-497d-a5bb-c277b4cf7c67/1/o2xDTDVD0JOAOfD67JE0fcnegIs.roa
File: o2xDTDVD0JOAOfD67JE0fcnegIs.roa (raw, json)
Hash identifier: Gf/7oXvRvj/7NSmVmP31Q0yC+x0UGs6sw7AI/4tLPkw=
Subject key identifier: A3:6C:43:4C:35:43:D0:93:80:39:F0:FA:EC:91:34:7D:C9:DE:80:8B
Certificate issuer: /CN=45248dc088485d78dcf81ada9a18d5ff9d2f906c
Certificate serial: 0189B68A82C20AB2A53BF780400CCD93487D
Authority key identifier: 45:24:8D:C0:88:48:5D:78:DC:F8:1A:DA:9A:18:D5:FF:9D:2F:90:6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RSSNwIhIXXjc-BramhjV_50vkGw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/8e09fe-a5c0-497d-a5bb-c277b4cf7c67/1/o2xDTDVD0JOAOfD67JE0fcnegIs.roa
Signing time: Wed 02 Aug 2023 13:57:58 +0000
ROA not before: Wed 02 Aug 2023 13:57:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 21082
IP address blocks: 185.188.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:b6:8a:82:c2:0a:b2:a5:3b:f7:80:40:0c:cd:93:48:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45248dc088485d78dcf81ada9a18d5ff9d2f906c
Validity
Not Before: Aug 2 13:57:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a36c434c3543d0938039f0faec91347dc9de808b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ed:6a:2f:5a:7f:0e:3a:3d:1e:52:3b:bc:55:
6e:41:fa:6b:57:79:82:41:72:bd:f7:4b:ec:c1:c3:
bb:a1:c3:23:e0:56:c5:cd:b0:0e:ed:9e:b0:88:f9:
36:d2:f5:cb:e6:fe:fd:b3:c2:b0:a1:32:4b:1e:04:
cd:fb:cd:56:8f:a1:dd:5b:42:cc:81:c0:5e:71:eb:
0e:3e:ad:76:13:aa:c0:24:3d:fc:ed:da:99:ed:97:
d2:2b:bd:62:ea:70:1c:df:30:f0:b6:2b:e6:a0:18:
02:6b:01:d6:50:6e:45:a9:69:03:d0:18:28:8a:89:
0d:a5:d8:8c:f5:c5:4f:a7:6d:6c:4a:a2:25:92:9d:
49:3d:22:83:53:59:58:42:1e:b3:41:22:63:03:d5:
3a:81:98:5e:a9:8a:b7:de:7e:40:00:bb:a0:30:c6:
60:f0:ec:77:8b:b5:e8:3f:46:61:69:3b:52:bd:e9:
a6:ae:37:b3:65:09:ae:58:49:9b:30:0c:25:b1:b9:
91:db:4e:c6:d8:4e:91:0f:38:3b:36:d8:66:ad:ec:
a8:9e:82:76:58:6d:cb:89:74:fa:c4:6f:7e:58:de:
66:87:db:67:e5:d4:8d:36:e4:e6:f0:c6:2e:10:e8:
5e:a8:6d:2b:7d:97:fa:98:d0:66:6d:c4:c3:ad:a0:
68:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:6C:43:4C:35:43:D0:93:80:39:F0:FA:EC:91:34:7D:C9:DE:80:8B
X509v3 Authority Key Identifier:
keyid:45:24:8D:C0:88:48:5D:78:DC:F8:1A:DA:9A:18:D5:FF:9D:2F:90:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RSSNwIhIXXjc-BramhjV_50vkGw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/8e09fe-a5c0-497d-a5bb-c277b4cf7c67/1/o2xDTDVD0JOAOfD67JE0fcnegIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/8e09fe-a5c0-497d-a5bb-c277b4cf7c67/1/RSSNwIhIXXjc-BramhjV_50vkGw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.188.140.0/24
Signature Algorithm: sha256WithRSAEncryption
11:bb:17:b1:b7:6e:35:5a:6b:13:65:7c:62:5c:ee:47:d2:d4:
fb:cc:64:6e:ee:2e:61:6c:41:0a:02:c2:5a:93:b0:df:7b:b6:
f6:21:b2:d5:78:dd:fb:8c:33:9f:0d:d2:80:bb:85:d6:75:63:
27:69:90:3f:b0:7f:56:c3:13:c7:8c:fe:81:af:e9:19:97:51:
41:74:44:a4:61:ae:b8:cc:e8:11:c9:fc:04:43:08:ce:1e:98:
6c:f2:09:da:a4:38:e5:e5:1e:2f:52:91:d8:43:3e:1f:26:97:
6c:bf:af:b4:b6:27:02:d2:be:b2:ec:a9:2e:48:0d:71:9a:a6:
73:17:82:60:90:9f:75:e8:f0:c5:ee:7c:f1:1e:08:ef:1e:80:
92:b1:0a:cf:47:4f:52:8c:28:d1:74:a1:fb:ec:54:af:17:d2:
40:6c:83:e1:47:78:45:c8:3a:fa:9d:2c:33:14:be:ae:e6:94:
1e:ee:55:27:0f:c8:e1:d7:3a:77:f8:83:b6:bb:b2:38:03:b4:
c2:21:40:7e:67:8c:4a:e3:a3:a4:52:c0:6b:9f:e4:93:ef:2d:
9c:8b:e5:8f:c1:73:46:c0:92:61:35:fd:e7:b0:47:b3:51:3e:
28:98:f4:b7:09:8c:74:64:2e:a1:dd:e2:12:53:40:ca:b0:36:
32:1b:cc:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:28:09 2025 by rpki-client