Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/MaxTKXbalUsx1N33dx3tFj8dmL0.roa
File: MaxTKXbalUsx1N33dx3tFj8dmL0.roa (raw, json)
Hash identifier: ChD2XIjLVlhJ3+FtWoD2nrY10XXAljNgMThwx8G5NC4=
Subject key identifier: 31:AC:53:29:76:DA:95:4B:31:D4:DD:F7:77:1D:ED:16:3F:1D:98:BD
Certificate issuer: /CN=6085397f26a044caef6a6b669287331aa4d68645
Certificate serial: 01856FF9491EBA6E7E27E43CE1C737B9ED03
Authority key identifier: 60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/MaxTKXbalUsx1N33dx3tFj8dmL0.roa
Signing time: Mon 02 Jan 2023 00:54:46 +0000
ROA not before: Mon 02 Jan 2023 00:54:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212703
IP address blocks: 185.229.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:49:1e:ba:6e:7e:27:e4:3c:e1:c7:37:b9:ed:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6085397f26a044caef6a6b669287331aa4d68645
Validity
Not Before: Jan 2 00:54:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=31ac532976da954b31d4ddf7771ded163f1d98bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:36:c5:f4:29:44:8a:95:34:ad:3d:7f:14:f6:
f7:30:8c:38:3d:55:e9:b1:11:5b:a3:90:ea:52:83:
f4:b5:f5:ed:12:b0:ae:32:7d:c4:b8:4a:54:13:80:
74:49:70:88:0f:f2:e0:0e:e5:a2:73:35:68:99:fd:
42:56:cf:80:02:12:be:88:f2:d4:0e:96:07:7d:97:
a1:4b:3f:bb:af:24:ca:86:66:53:9f:4c:ad:d4:48:
86:ac:d1:4d:cc:22:42:52:03:b8:8a:30:e9:cb:5f:
6d:bc:36:4b:c5:0e:de:79:c2:ac:37:7e:a7:62:31:
3c:76:1f:ec:a4:bf:8b:7e:6c:31:e7:08:08:a1:16:
ca:35:d2:1e:c4:72:33:d0:01:59:e4:71:a6:62:4d:
fb:72:87:5a:6f:87:98:5b:65:6d:fd:42:ce:55:f1:
5a:0e:fd:9c:08:76:8a:5b:7c:bb:26:3f:a0:16:65:
0a:52:cb:43:a5:fc:e3:99:de:91:e4:b0:ed:51:36:
13:20:c2:81:23:3c:2f:de:74:1c:ef:c7:b5:2d:aa:
18:69:67:66:f8:71:d1:08:af:7e:d1:93:f1:3c:6a:
e6:f0:cd:d4:86:ae:f7:51:bb:13:62:a1:aa:ef:a2:
0f:69:5d:4f:37:a0:f3:e7:1a:99:5d:f2:4a:cf:5f:
a6:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AC:53:29:76:DA:95:4B:31:D4:DD:F7:77:1D:ED:16:3F:1D:98:BD
X509v3 Authority Key Identifier:
keyid:60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/MaxTKXbalUsx1N33dx3tFj8dmL0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/YIU5fyagRMrvamtmkoczGqTWhkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.201.0/24
Signature Algorithm: sha256WithRSAEncryption
74:93:fa:35:bd:a7:5d:4c:a5:07:9c:de:5d:f5:a0:4c:43:82:
4d:a5:6d:aa:2b:67:b9:82:cd:48:a1:fb:7d:fe:32:9b:e6:5c:
e0:0a:91:db:cb:38:d3:50:0b:ad:78:6e:f9:2b:77:9c:36:00:
56:9c:0d:55:73:d2:89:b4:22:5f:85:73:00:24:7e:d0:d8:f4:
3d:05:a6:09:0c:de:1d:1a:ef:82:d9:14:8c:36:81:78:0e:85:
df:7f:2d:b9:bc:5e:64:67:b7:6f:bf:a1:f2:04:c1:62:d5:37:
73:52:f7:c4:6d:f1:c3:9a:55:75:0c:98:69:4b:a3:f0:de:ea:
d0:9c:e1:e1:35:85:ac:e7:62:b9:65:30:f0:ea:e1:61:18:9e:
c9:c1:92:ba:86:76:df:ad:de:43:33:be:1c:b9:56:4f:0b:73:
3e:1c:b1:23:b5:a1:de:88:97:fa:f1:4b:26:63:63:c8:34:95:
0c:70:bc:ca:46:73:1a:fb:d4:6e:29:b1:a1:76:95:e3:09:42:
e3:d3:d8:4c:f4:c5:d1:be:c2:d5:f5:8c:ea:d9:85:88:eb:0b:
e1:be:a5:61:90:e0:1f:28:ac:60:db:ba:f0:f0:39:aa:4b:f3:
f4:aa:3a:ab:88:ea:fc:15:d6:9b:eb:e2:67:03:9c:78:da:f3:
d1:6e:49:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:46 2024 by rpki-client on console-ams.rpki-client.org