Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/sRnXk0NguMg1dTLyMmm6U8mlIoA.roa
File: sRnXk0NguMg1dTLyMmm6U8mlIoA.roa (raw, json)
Hash identifier: /AG7jQk/cRXxfu8yR0EmfE02AYxztzAF8whSUl1kCto=
Subject key identifier: B1:19:D7:93:43:60:B8:C8:35:75:32:F2:32:69:BA:53:C9:A5:22:80
Certificate issuer: /CN=6085397f26a044caef6a6b669287331aa4d68645
Certificate serial: 01856FF9431170E9DB0125BE61CDF4F2A36E
Authority key identifier: 60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/sRnXk0NguMg1dTLyMmm6U8mlIoA.roa
Signing time: Mon 02 Jan 2023 00:54:44 +0000
ROA not before: Mon 02 Jan 2023 00:54:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61094
IP address blocks: 185.111.189.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:43:11:70:e9:db:01:25:be:61:cd:f4:f2:a3:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6085397f26a044caef6a6b669287331aa4d68645
Validity
Not Before: Jan 2 00:54:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b119d7934360b8c8357532f23269ba53c9a52280
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d5:9a:77:98:de:3e:45:d5:38:b6:55:c0:4e:
03:07:f8:a8:0c:4d:3e:f6:76:c3:24:8f:92:fc:67:
97:6d:4a:9f:fb:fe:09:92:61:de:90:77:37:3a:49:
07:69:60:3a:9c:84:69:b3:86:82:f0:85:91:c9:5e:
e0:a2:cd:9b:ee:9c:00:b5:67:b1:61:b5:66:db:d2:
9f:ea:3b:db:50:c0:92:6c:65:a3:22:6c:16:3f:0e:
65:fd:26:2b:9b:93:96:29:6b:d1:a5:a5:e8:50:97:
cf:36:e9:71:19:28:23:ac:5b:ce:e9:ff:36:e3:de:
88:bd:e0:9b:23:4b:92:b5:43:06:df:4a:3f:fe:cb:
b4:5d:9b:7a:3f:dd:fb:e3:92:0b:1b:8c:9d:10:4e:
ce:17:4b:06:bb:6b:31:5f:6a:94:e8:9c:dd:12:a8:
5b:52:e0:72:f8:93:74:c2:68:b6:cb:42:aa:b2:02:
36:c9:54:85:d6:58:20:ab:2d:8f:8b:fa:e4:52:88:
e2:63:54:54:9e:b2:dc:a2:59:92:0a:3f:de:7d:27:
58:02:d9:b7:72:1f:a3:57:c6:19:a7:b4:08:d1:57:
75:3c:9a:e2:9f:fd:a7:02:51:60:c4:86:30:fb:9d:
88:3d:87:f2:4d:49:3a:2e:fd:82:94:4e:06:d2:a7:
57:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:19:D7:93:43:60:B8:C8:35:75:32:F2:32:69:BA:53:C9:A5:22:80
X509v3 Authority Key Identifier:
keyid:60:85:39:7F:26:A0:44:CA:EF:6A:6B:66:92:87:33:1A:A4:D6:86:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YIU5fyagRMrvamtmkoczGqTWhkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/sRnXk0NguMg1dTLyMmm6U8mlIoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1125a2-4432-483f-a00b-616d97a77bd6/1/YIU5fyagRMrvamtmkoczGqTWhkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.111.189.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:14:49:b3:6b:d6:8e:ca:95:a8:b2:20:ef:1d:7a:0c:f5:88:
22:1d:4e:80:5d:2a:be:47:1c:70:82:70:c7:b8:9d:0f:fb:05:
8a:65:61:26:67:db:cd:91:a4:b9:eb:da:1d:96:f9:38:a1:a8:
da:58:51:31:bb:e9:81:33:fd:50:ab:c1:7e:cb:5f:47:00:97:
81:76:f7:91:5c:96:16:5f:5d:15:f0:e3:1b:71:db:29:bb:3b:
72:bb:2c:2e:cf:53:7e:40:3e:bb:eb:7d:06:71:e0:c4:22:cd:
e7:e7:47:16:ef:d4:d2:51:d3:6a:ef:a0:29:88:45:71:23:37:
8f:6a:69:30:37:d0:e6:a2:ec:60:a9:91:6f:93:13:34:dd:83:
2b:f2:c6:d3:97:80:07:2a:0f:6f:e8:17:25:ad:a9:12:4e:a6:
01:b3:07:3c:68:20:59:e5:ac:65:96:30:b0:57:2a:4c:33:2c:
74:15:4b:93:38:08:f8:23:50:c0:27:2f:f1:34:2c:5d:b2:53:
5a:e9:4f:e1:7a:9f:5b:a2:81:e7:cb:f5:ba:de:8c:ba:1d:24:
11:5d:e7:9b:04:96:e5:79:3e:26:82:8b:c1:01:55:95:a2:c4:
f4:37:21:f4:c9:f8:9f:30:14:81:46:e5:f0:f2:8c:04:b1:72:
ae:a2:5b:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:20 2024 by rpki-client on console-fra.rpki-client.org