Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/bc4619-4b05-4753-90b2-11b69f784a7a/1/2U3ax4AB34-GGHrlK33LpqBxYpk.roa
File: 2U3ax4AB34-GGHrlK33LpqBxYpk.roa (raw, json)
Hash identifier: 9czPaevaAXBQb3/vPiF5q7rCEGrJdomlv4G7sN8ZJgA=
Subject key identifier: D9:4D:DA:C7:80:01:DF:8F:86:18:7A:E5:2B:7D:CB:A6:A0:71:62:99
Certificate issuer: /CN=3a2651030fa3c5ffbb3488f1f15d99dc3b3bbaeb
Certificate serial: 0183ACDAF2377104693B38B36B5BCD1AABD1
Authority key identifier: 3A:26:51:03:0F:A3:C5:FF:BB:34:88:F1:F1:5D:99:DC:3B:3B:BA:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OiZRAw-jxf-7NIjx8V2Z3Ds7uus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/bc4619-4b05-4753-90b2-11b69f784a7a/1/2U3ax4AB34-GGHrlK33LpqBxYpk.roa
Signing time: Thu 06 Oct 2022 10:32:53 +0000
ROA not before: Thu 06 Oct 2022 10:32:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.36.0.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ac:da:f2:37:71:04:69:3b:38:b3:6b:5b:cd:1a:ab:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a2651030fa3c5ffbb3488f1f15d99dc3b3bbaeb
Validity
Not Before: Oct 6 10:32:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d94ddac78001df8f86187ae52b7dcba6a0716299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:48:bc:a6:0c:3e:1c:2b:7f:1a:a4:42:ad:37:
f6:35:50:0b:53:22:47:df:ef:64:f1:59:49:f6:2e:
08:f1:07:03:c9:00:84:52:b8:b8:db:3f:2f:0a:92:
db:76:09:12:5d:ac:c6:39:36:61:01:45:6f:fb:89:
54:aa:dc:58:8a:e9:fe:5f:a8:4b:64:89:3b:21:7d:
f1:b6:4f:f5:9d:14:21:75:a6:df:4b:95:dd:60:80:
7e:88:83:14:e8:10:c6:0a:0c:2c:e8:ae:d0:76:a4:
de:75:4f:a2:b1:3b:10:2d:ff:15:d8:c4:42:fb:0c:
60:b7:fd:9f:15:3b:0c:6c:50:83:b8:a0:13:28:93:
72:95:3b:e2:95:44:a3:21:32:22:3a:89:27:05:39:
52:01:2d:73:6f:1a:bb:3f:35:2e:bc:39:13:24:40:
87:20:b4:8e:a3:ea:ff:ba:a3:06:be:f2:35:a6:b4:
18:fb:5c:13:5c:5e:60:1e:a1:97:52:66:88:7a:9d:
bd:c8:99:42:8f:9d:8a:61:1b:ce:a8:b3:44:96:87:
e3:f8:1e:86:1a:31:40:ac:8a:83:10:57:8e:86:f9:
13:cb:d8:b9:d7:36:06:5a:f4:ef:c4:88:86:63:97:
0a:d9:fc:4c:10:cd:9a:0e:49:cd:84:3a:59:a7:dd:
10:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:4D:DA:C7:80:01:DF:8F:86:18:7A:E5:2B:7D:CB:A6:A0:71:62:99
X509v3 Authority Key Identifier:
keyid:3A:26:51:03:0F:A3:C5:FF:BB:34:88:F1:F1:5D:99:DC:3B:3B:BA:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OiZRAw-jxf-7NIjx8V2Z3Ds7uus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/bc4619-4b05-4753-90b2-11b69f784a7a/1/2U3ax4AB34-GGHrlK33LpqBxYpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/bc4619-4b05-4753-90b2-11b69f784a7a/1/OiZRAw-jxf-7NIjx8V2Z3Ds7uus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.36.0.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:d8:53:8e:6c:1b:59:15:64:33:fe:77:13:cb:4e:f2:c6:93:
6e:ec:47:ed:01:47:a7:7f:90:a3:10:a9:66:20:4d:21:2d:61:
52:5c:c1:d0:41:a5:00:dd:c7:e9:99:76:c3:59:3a:6c:a8:d3:
78:63:5c:e9:20:35:6d:d3:74:53:7f:1c:1e:c0:cf:c6:f8:07:
45:6e:7c:ca:7f:6e:8d:60:39:d1:3e:50:98:59:ae:bb:1c:96:
94:53:5f:6a:8a:38:db:c5:3c:ad:90:22:7a:39:71:e7:62:81:
4c:1c:5e:1a:1f:ab:53:82:45:ca:4d:f9:45:8a:cd:02:6c:80:
9d:45:6b:ad:64:dd:fb:1b:1f:91:47:fc:b8:43:f7:9c:15:67:
a8:d6:48:63:04:7b:81:95:cc:ae:d9:c2:90:b0:af:b7:44:f1:
b3:c8:e5:7e:5a:d9:a2:3f:ce:5e:5b:07:28:1a:bb:40:c8:02:
34:9a:e4:89:6f:94:19:29:99:71:c8:5a:d4:3f:b3:13:90:2a:
55:b1:09:b6:93:2f:d5:66:8f:d8:d4:41:31:ee:2f:98:fb:38:
d5:11:95:0e:ca:2e:f8:85:ca:0c:f1:8f:f0:67:b8:4f:82:92:
e3:98:c8:e1:5e:4a:98:77:18:1c:b8:7d:68:84:08:85:8e:68:
c3:89:f0:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:52 2024 by rpki-client on console-fra.rpki-client.org