Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/c29057-7eb2-4ec0-b227-02cddbd2e190/1/D71aUDQebClyy88a5rsmuy9F9Fk.roa
File: D71aUDQebClyy88a5rsmuy9F9Fk.roa (raw, json)
Hash identifier: y6c2ElnzuMxkAUzIg0fcWsEaix2bqMqI4MzhiGkqz9M=
Subject key identifier: 0F:BD:5A:50:34:1E:6C:29:72:CB:CF:1A:E6:BB:26:BB:2F:45:F4:59
Certificate issuer: /CN=a84233ad498882a916f223956b585e5bb409c2c5
Certificate serial: 01856DC1A962A458D320D32E4F95EECE814D
Authority key identifier: A8:42:33:AD:49:88:82:A9:16:F2:23:95:6B:58:5E:5B:B4:09:C2:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qEIzrUmIgqkW8iOVa1heW7QJwsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/c29057-7eb2-4ec0-b227-02cddbd2e190/1/D71aUDQebClyy88a5rsmuy9F9Fk.roa
Signing time: Sun 01 Jan 2023 14:34:46 +0000
ROA not before: Sun 01 Jan 2023 14:34:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47638
IP address blocks: 185.161.132.0/22 maxlen: 24
2a0f:cd40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:a9:62:a4:58:d3:20:d3:2e:4f:95:ee:ce:81:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a84233ad498882a916f223956b585e5bb409c2c5
Validity
Not Before: Jan 1 14:34:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0fbd5a50341e6c2972cbcf1ae6bb26bb2f45f459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:29:8b:e8:9d:fa:da:3c:36:8c:75:98:04:61:
22:fc:36:24:72:c1:9e:c0:57:2e:57:22:8d:65:a8:
7a:12:16:60:4d:5f:94:a7:d9:c9:48:d4:75:8c:4c:
c9:fd:e4:0d:24:9b:4d:76:a1:ff:fd:52:d7:af:7d:
15:fc:df:18:77:43:3b:24:2b:ce:73:80:92:b2:78:
40:d4:d1:11:1b:9a:b3:63:fc:b2:3c:3c:ac:55:d0:
fc:35:3e:e6:b0:ed:23:16:2b:34:6f:03:e6:bc:bb:
39:fa:df:27:01:ec:95:73:b7:ad:51:2e:cf:a1:e1:
69:72:09:bb:14:f5:f3:24:85:df:c5:e0:a3:bb:f9:
63:84:c8:28:ea:bb:d5:1e:6f:16:86:69:b6:37:a9:
f8:7c:b8:33:09:65:8c:bb:48:2b:74:d4:d0:7c:eb:
f0:e7:4a:d4:4a:8e:d0:10:18:63:a8:f5:18:46:c2:
d9:5f:08:9b:23:07:7a:23:22:c5:8c:99:32:c5:be:
83:b9:11:3f:71:23:9e:7f:e9:92:92:2c:08:5d:bc:
0e:26:d8:50:f8:29:2d:c9:15:3c:96:81:8b:87:da:
c7:db:e1:e8:b6:c7:ad:b8:01:e1:75:b9:24:7e:aa:
42:8c:6c:6f:e7:cb:f1:3f:71:3b:fe:c0:85:cc:26:
16:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:BD:5A:50:34:1E:6C:29:72:CB:CF:1A:E6:BB:26:BB:2F:45:F4:59
X509v3 Authority Key Identifier:
keyid:A8:42:33:AD:49:88:82:A9:16:F2:23:95:6B:58:5E:5B:B4:09:C2:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qEIzrUmIgqkW8iOVa1heW7QJwsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c29057-7eb2-4ec0-b227-02cddbd2e190/1/D71aUDQebClyy88a5rsmuy9F9Fk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/c29057-7eb2-4ec0-b227-02cddbd2e190/1/qEIzrUmIgqkW8iOVa1heW7QJwsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.132.0/22
IPv6:
2a0f:cd40::/29
Signature Algorithm: sha256WithRSAEncryption
49:3f:74:57:bc:2d:8d:96:df:d4:f9:9d:01:99:b2:d8:f6:c8:
5a:8b:35:0a:67:1e:c9:c1:0c:02:53:f0:77:a8:a4:5d:e8:de:
0a:11:e9:53:a6:7e:c5:d1:f0:42:7e:41:7a:cd:c7:ad:27:96:
7a:04:5c:ab:21:55:d2:66:3c:1d:c5:7e:75:4c:94:26:45:b2:
36:04:07:cc:44:b5:7d:19:db:ac:70:78:7e:74:ec:f7:c3:11:
a0:86:84:1e:7b:7b:3a:ef:27:c8:df:77:b1:40:7b:3e:79:c7:
f5:1d:ae:fc:c8:da:75:04:27:c7:74:b0:93:a2:cc:9e:f7:f5:
fd:36:75:cc:b3:e9:10:2e:f2:cf:28:e6:2c:af:f2:8e:6d:cb:
fd:81:62:d2:b3:57:5c:44:9f:f2:f1:00:3e:d8:bb:4f:8c:d4:
a0:e3:34:26:5e:ef:48:f8:0e:a7:97:fb:4f:41:8a:82:d7:e3:
bf:27:7c:d1:82:73:ea:73:80:43:5e:96:0e:a9:26:64:bf:08:
1b:e8:fa:30:69:e7:4e:38:60:1a:e5:c8:08:9c:ec:64:b2:19:
07:13:21:af:9a:72:dd:06:e2:0a:7a:d9:64:58:e5:68:c1:3b:
ab:50:59:23:74:52:02:4a:da:57:f3:d4:09:e4:83:d8:42:32:
14:27:ba:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:39 2024 by rpki-client on console-fra.rpki-client.org