Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/f03765-ba17-40d7-8194-47ceef07e19a/1/TVcguSuoTeNkbiUscU5TufLdEdg.roa
File: TVcguSuoTeNkbiUscU5TufLdEdg.roa (raw, json)
Hash identifier: z9yoZnS60jWUK/o3el12E++OvEadmHO5L13lLhtLQ3U=
Subject key identifier: 4D:57:20:B9:2B:A8:4D:E3:64:6E:25:2C:71:4E:53:B9:F2:DD:11:D8
Certificate issuer: /CN=a576094c03e0dbcfbfa11bf7148ab16a00673ef9
Certificate serial: 01856F5DD748CD0B8170B7FF0BD714049626
Authority key identifier: A5:76:09:4C:03:E0:DB:CF:BF:A1:1B:F7:14:8A:B1:6A:00:67:3E:F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pXYJTAPg28-_oRv3FIqxagBnPvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/f03765-ba17-40d7-8194-47ceef07e19a/1/TVcguSuoTeNkbiUscU5TufLdEdg.roa
Signing time: Sun 01 Jan 2023 22:04:58 +0000
ROA not before: Sun 01 Jan 2023 22:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57567
IP address blocks: 185.86.44.0/24 maxlen: 24
185.86.44.0/23 maxlen: 23
185.86.47.0/24 maxlen: 24
185.86.46.0/24 maxlen: 24
185.86.46.0/23 maxlen: 23
185.86.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:d7:48:cd:0b:81:70:b7:ff:0b:d7:14:04:96:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a576094c03e0dbcfbfa11bf7148ab16a00673ef9
Validity
Not Before: Jan 1 22:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d5720b92ba84de3646e252c714e53b9f2dd11d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:b6:ef:95:0c:50:74:cb:f6:3d:38:b0:3f:5b:
cb:50:4b:15:de:82:62:0e:e0:74:89:8a:8f:07:bf:
84:10:fd:97:52:65:ed:47:b7:fc:6b:32:09:3c:e6:
45:27:63:cc:e3:20:56:c2:f4:a4:8e:5e:86:89:0e:
51:db:9c:f3:38:f8:8e:9b:a4:6d:c1:44:95:59:9a:
3b:c9:91:39:24:1e:18:cc:f5:41:6a:c9:84:68:a6:
fc:ac:7d:0a:2c:26:5d:79:56:79:89:4d:61:31:30:
47:e0:27:41:0c:3a:f1:53:30:17:ba:14:b2:25:e7:
96:76:1e:ec:15:7d:ac:5f:b0:e8:61:7f:91:14:22:
81:a8:52:bc:4c:dc:35:1a:f4:89:53:b6:e5:20:71:
e7:1c:a9:4e:92:c8:9b:f7:ad:36:48:3e:b6:23:88:
56:2d:82:8e:8c:49:0e:cf:91:61:a0:17:49:4e:a6:
c1:fb:44:f1:88:0b:b8:c6:70:4d:c7:ca:eb:d6:f5:
fa:b7:6d:d6:2f:0b:1b:e6:65:81:3d:18:84:37:f9:
10:20:7e:a5:d0:7b:ac:9d:28:df:a9:94:ac:70:63:
48:35:f5:0f:9d:05:85:dc:a5:da:a2:14:48:37:ec:
1a:99:63:ba:a2:45:97:a3:6b:0f:d5:b5:a1:1f:d5:
01:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:57:20:B9:2B:A8:4D:E3:64:6E:25:2C:71:4E:53:B9:F2:DD:11:D8
X509v3 Authority Key Identifier:
keyid:A5:76:09:4C:03:E0:DB:CF:BF:A1:1B:F7:14:8A:B1:6A:00:67:3E:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pXYJTAPg28-_oRv3FIqxagBnPvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/f03765-ba17-40d7-8194-47ceef07e19a/1/TVcguSuoTeNkbiUscU5TufLdEdg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/f03765-ba17-40d7-8194-47ceef07e19a/1/pXYJTAPg28-_oRv3FIqxagBnPvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.86.44.0/22
Signature Algorithm: sha256WithRSAEncryption
96:ca:e7:2c:d0:44:d3:52:b6:d1:40:6e:fb:ef:d2:25:6f:27:
e6:8e:45:6d:70:81:a6:e3:db:27:f4:2b:9c:cd:9b:90:dc:45:
40:f8:76:eb:88:3f:c8:f1:a6:11:e3:dd:78:a0:f6:67:88:8a:
3b:92:ca:fc:87:15:2c:aa:42:04:19:29:f5:d1:32:f2:92:5e:
25:34:36:bd:a6:62:0e:c8:7a:25:0a:3e:a2:b9:fa:a5:5a:b4:
3a:b7:5a:77:35:fa:77:2c:12:ad:e1:59:73:ad:68:53:34:d9:
d0:4c:79:ae:4e:f6:16:0d:2c:29:2d:0e:f7:07:d0:ae:bb:48:
38:30:4d:5a:cc:ff:0a:9f:c0:d8:c9:7d:9f:72:db:30:b5:f2:
c5:27:0f:ed:5c:35:5e:33:d6:91:86:68:80:3d:8a:bc:85:b2:
1a:f7:5a:42:6d:b5:3a:65:b0:59:f5:4e:30:70:c3:6b:d3:57:
fe:42:05:11:41:41:42:bb:00:f2:fc:29:36:35:82:0e:92:cc:
9c:da:e7:a6:3c:28:2a:df:d6:e8:ef:2b:dd:c1:be:eb:6b:76:
6d:7d:9a:6d:f1:d8:83:e2:e3:82:f6:66:18:09:80:72:23:d8:
b5:52:70:dd:90:f0:2e:89:91:e2:17:de:06:84:c5:5d:8a:24:
17:ef:33:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:18 2024 by rpki-client on console-ams.rpki-client.org