Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/1gQEKPhOIY-pxZN8pM-8pM9xHm8.roa
File: 1gQEKPhOIY-pxZN8pM-8pM9xHm8.roa (raw, json)
Hash identifier: 36ZOntChLKLhfDAgcp+htnHM2SGMuXfQkPyM7FoVIVw=
Subject key identifier: D6:04:04:28:F8:4E:21:8F:A9:C5:93:7C:A4:CF:BC:A4:CF:71:1E:6F
Certificate issuer: /CN=dd82de4f1304339fde527ba06033ca9e511171bd
Certificate serial: 018595D7BDF6EF9B7D2745A571BB577B9FFB
Authority key identifier: DD:82:DE:4F:13:04:33:9F:DE:52:7B:A0:60:33:CA:9E:51:11:71:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3YLeTxMEM5_eUnugYDPKnlERcb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/1gQEKPhOIY-pxZN8pM-8pM9xHm8.roa
Signing time: Mon 09 Jan 2023 09:23:42 +0000
ROA not before: Mon 09 Jan 2023 09:23:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3177
IP address blocks: 185.86.182.0/23 maxlen: 23
185.86.183.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:95:d7:bd:f6:ef:9b:7d:27:45:a5:71:bb:57:7b:9f:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dd82de4f1304339fde527ba06033ca9e511171bd
Validity
Not Before: Jan 9 09:23:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d6040428f84e218fa9c5937ca4cfbca4cf711e6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:60:a2:84:95:01:dc:67:ea:31:7b:51:28:e0:
e7:d9:9d:6d:0c:df:1b:9b:62:95:66:a9:4f:91:c4:
ba:29:f9:7f:8d:d5:4c:43:99:79:f4:84:21:cc:a5:
b1:75:d4:4a:d9:b9:c1:dd:38:5f:71:87:92:ad:6d:
a5:4c:4b:e9:6d:a1:ce:08:35:6d:e5:64:7c:ca:c6:
23:e0:15:12:04:78:cd:87:ae:74:1b:29:97:b7:a7:
c4:4a:f5:1c:29:bc:31:4e:b6:f7:dd:ac:a4:4d:86:
ee:43:a4:2e:8a:04:b4:f1:e5:9e:63:12:a2:67:09:
b1:a2:01:fd:5e:14:16:67:39:8f:a9:43:51:6c:18:
0f:2f:b9:cc:b0:d4:0a:61:4c:48:a8:94:5c:be:a7:
98:64:07:9e:35:85:ef:66:69:5f:f5:b6:f5:0d:da:
c4:d6:d5:24:dd:da:d9:d4:57:09:f8:c9:8c:0c:46:
49:8a:f8:91:22:66:70:4a:16:bd:ae:46:b3:bf:1d:
1e:5f:be:10:36:5a:79:fe:dd:75:6b:f5:92:37:9d:
aa:87:a9:e5:68:de:2c:51:7e:13:78:04:16:18:59:
c9:06:69:32:58:10:30:93:8d:91:75:b2:ed:b6:8c:
7d:6c:ef:d7:fd:45:13:83:48:08:c2:48:de:e6:53:
49:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:04:04:28:F8:4E:21:8F:A9:C5:93:7C:A4:CF:BC:A4:CF:71:1E:6F
X509v3 Authority Key Identifier:
keyid:DD:82:DE:4F:13:04:33:9F:DE:52:7B:A0:60:33:CA:9E:51:11:71:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3YLeTxMEM5_eUnugYDPKnlERcb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/1gQEKPhOIY-pxZN8pM-8pM9xHm8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/f8bb1b-d6fd-49a1-9653-ff157bef0621/1/3YLeTxMEM5_eUnugYDPKnlERcb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.182.0/23
Signature Algorithm: sha256WithRSAEncryption
45:ef:56:09:a7:85:31:f2:ba:98:ec:45:ec:69:87:9f:5e:71:
4e:d7:1c:5f:ca:12:a4:32:8e:56:13:73:4d:69:ea:c9:65:30:
15:bd:f0:8d:f9:6e:47:23:dd:a9:4d:0a:ae:b3:25:2f:a5:59:
eb:5e:b9:07:8a:ab:01:d9:b3:94:3f:5d:90:ba:c2:1d:56:55:
80:a1:c7:c0:f0:51:cd:37:91:45:cf:a3:09:cc:67:c2:aa:ed:
58:c2:58:8f:36:dc:31:ce:bc:65:65:07:89:4f:36:63:da:90:
99:fe:2e:50:ed:0c:c0:98:0a:4c:11:6d:cd:1e:73:50:9e:e0:
a8:84:62:7c:8c:a4:e5:e3:da:60:77:2f:bd:9c:cc:3f:14:0c:
6c:a9:6b:d2:12:b5:20:67:db:5d:b6:97:72:48:82:78:e2:76:
c8:a3:cf:d8:9d:f3:7f:1c:10:33:97:5c:0e:f6:bb:0e:cc:ec:
f2:aa:92:35:4d:5c:03:05:9f:9e:4f:b1:fd:3e:4c:53:8a:22:
28:d2:42:05:7c:5a:81:3a:92:da:08:c0:6f:25:f0:41:47:71:
74:31:5b:87:b0:bf:e9:b0:af:63:a0:be:8c:31:4f:6f:ee:a7:
26:40:99:fe:38:66:91:a9:d7:35:f6:aa:3b:b9:a4:8b:68:ed:
c7:d6:c6:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 29 15:03:54 2023 by rpki-client on console-fra.rpki-client.org