Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/lGICWCwgdTfguhPjQDg2Hp1jmXY.roa
File: lGICWCwgdTfguhPjQDg2Hp1jmXY.roa (raw, json)
Hash identifier: 6WF7sJvEYb0J+cEbQQ/UVjddDfmQzIeAg36n4emM6Do=
Subject key identifier: 94:62:02:58:2C:20:75:37:E0:BA:13:E3:40:38:36:1E:9D:63:99:76
Certificate issuer: /CN=6085397f26a044caef6a6b669287331aa4d68645
Certificate serial: 0339B25D
Authority key identifier: 60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/lGICWCwgdTfguhPjQDg2Hp1jmXY.roa
Signing time: Sat 01 Jan 2022 05:03:18 +0000
ROA not before: Sat 01 Jan 2022 05:03:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212703
IP address blocks: 185.229.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54112861 (0x339b25d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6085397f26a044caef6a6b669287331aa4d68645
Validity
Not Before: Jan 1 05:03:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=946202582c207537e0ba13e34038361e9d639976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:52:8b:0d:55:a4:8d:8b:31:fd:7c:b2:60:c1:
70:a7:bd:9d:d0:5e:53:50:43:b7:cd:8c:9a:28:61:
37:36:f2:9f:b7:68:d6:5a:9c:50:86:07:f6:e8:1a:
56:7a:7e:fb:8d:52:8e:e0:20:97:b9:51:32:da:05:
e8:77:1e:28:18:fa:21:ef:bb:d3:34:e2:84:ee:90:
b2:b5:31:69:ad:e8:75:8c:09:46:b6:bb:9d:e2:5d:
c0:6c:70:d2:6a:b3:68:1d:20:64:d3:1f:f5:84:d8:
3b:bd:47:39:f1:ed:26:6f:7c:4f:74:1a:41:6e:6e:
2c:3a:28:79:6d:f9:8a:9f:01:15:ef:93:57:d3:98:
57:96:3a:b9:39:d2:c0:98:85:72:9c:65:3c:b9:e0:
71:e8:8b:7b:c7:df:1a:00:c1:49:92:91:fc:e0:3e:
59:7b:73:b3:0c:68:98:bf:79:b4:76:ab:67:92:b2:
49:cc:d0:2f:5d:dd:f0:b9:39:9c:bc:95:02:f5:7e:
0a:da:73:2d:2b:d6:21:e3:4a:da:c0:51:6b:3f:2b:
3d:f2:a2:d1:f3:cd:2c:52:45:44:aa:11:f3:aa:95:
2c:dd:91:61:c5:17:a8:24:1c:f9:a0:89:d7:a5:2a:
ab:cb:ec:83:83:49:98:92:fa:bf:45:14:bb:dc:54:
32:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:62:02:58:2C:20:75:37:E0:BA:13:E3:40:38:36:1E:9D:63:99:76
X509v3 Authority Key Identifier:
keyid:60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/lGICWCwgdTfguhPjQDg2Hp1jmXY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/YIU5fyagRMrvamtmkoczGqTWhkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.201.0/24
Signature Algorithm: sha256WithRSAEncryption
45:91:22:3f:59:ea:e6:fd:de:3f:f1:eb:0d:0d:37:fc:d2:02:
cc:f6:32:4b:a3:f0:ac:14:a1:d1:1f:d3:73:c4:82:70:ce:25:
03:55:a4:48:bb:45:3c:1f:d2:34:6f:74:04:0c:e6:5e:71:7e:
9f:9f:fb:39:4d:56:c7:1d:3e:c3:c0:04:c6:2e:24:a7:4c:9b:
fc:68:c2:e3:03:0a:3d:4d:e0:92:c2:03:ab:5a:31:06:a7:e1:
1f:5a:01:98:bb:b2:f2:72:f8:86:9a:ee:87:99:74:c4:58:2e:
ff:76:81:58:54:fd:0c:20:6b:90:f6:ea:ab:48:dd:1a:61:9d:
6a:6e:ce:a9:f8:9a:a3:66:19:db:17:49:28:8d:7a:df:ce:71:
4b:33:c4:a4:2f:f1:87:6b:8e:79:9b:bf:0a:ed:2f:a3:26:0c:
93:e3:7d:f2:75:78:6f:b5:b9:40:33:17:7c:5c:ea:2e:36:75:
fe:f7:6f:2a:a6:fb:bb:14:bc:3c:21:95:5a:c2:d9:27:24:d1:
22:80:64:60:2e:1f:1f:87:94:1e:b0:91:19:f9:dd:e4:c8:56:
f0:8e:02:c0:7b:49:49:0c:d0:2c:ad:1e:76:32:1b:22:e9:fb:
f6:36:35:01:76:b0:81:0e:0e:30:30:17:3a:c6:a6:41:cc:8f:
cf:c5:c1:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:20 2024 by rpki-client on console-fra.rpki-client.org