Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/391cd8-9265-4729-804a-d49fac1195c4/1/1-J2XDfBfSxLJlFPY9BDCcPI_ZwE.roa
File: 1-J2XDfBfSxLJlFPY9BDCcPI_ZwE.roa (raw, json)
Hash identifier: g+i7jKpzY75gd+k6zY23PIrwEqpc7+GRviRkaw3CA4s=
Subject key identifier: F8:9D:97:0D:F0:5F:4B:12:C9:94:53:D8:F4:10:C2:70:F2:3F:67:01
Certificate issuer: /CN=e2c21e54bb3205a6e399e752515abf62df1b8689
Certificate serial: 0189CA7F
Authority key identifier: E2:C2:1E:54:BB:32:05:A6:E3:99:E7:52:51:5A:BF:62:DF:1B:86:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4sIeVLsyBabjmedSUVq_Yt8bhok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/391cd8-9265-4729-804a-d49fac1195c4/1/1-J2XDfBfSxLJlFPY9BDCcPI_ZwE.roa
Signing time: Sat 01 Jan 2022 15:59:00 +0000
ROA not before: Sat 01 Jan 2022 15:59:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 185.243.96.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25807487 (0x189ca7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2c21e54bb3205a6e399e752515abf62df1b8689
Validity
Not Before: Jan 1 15:59:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f89d970df05f4b12c99453d8f410c270f23f6701
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4b:93:02:04:25:d3:f5:46:44:09:bd:fa:12:
e4:39:85:8b:fa:f2:4f:8c:a5:b7:3f:48:94:ca:43:
9d:76:e4:33:fd:fc:e6:2b:2a:e2:39:ce:c8:42:ff:
9e:61:88:cc:0c:bf:ba:c6:b4:fb:b7:2c:17:d6:d7:
b9:fb:4d:b1:77:ae:db:c5:31:a5:7c:e5:c7:00:4d:
02:34:97:53:1d:cf:9c:b3:c0:b0:6c:ed:b3:16:d9:
d8:7f:62:76:5f:58:6d:d7:03:f1:e8:01:90:cb:45:
1c:54:d3:7f:f4:43:82:ff:db:e3:68:99:d6:0d:d5:
84:0c:e3:54:36:20:88:15:20:b3:da:b4:41:e6:84:
2e:43:3d:20:5c:1e:40:b6:64:d6:1e:f7:85:bd:17:
d4:d5:d1:98:0e:06:1b:16:f9:78:79:7e:01:4d:79:
73:b6:0d:cb:44:07:b2:22:17:ff:5a:9b:92:5d:91:
8e:dd:6c:65:42:fd:17:0d:55:2d:4d:1e:db:45:c1:
3e:12:b2:d9:aa:7b:69:02:f6:76:79:dd:bf:ac:6f:
db:d8:01:42:d7:6d:36:3b:7e:da:9e:9e:fc:6f:fe:
85:02:ad:69:40:30:36:35:bc:7f:5a:c5:df:ca:90:
0d:39:69:70:55:05:e6:dd:5e:de:97:e9:69:69:4a:
b2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:9D:97:0D:F0:5F:4B:12:C9:94:53:D8:F4:10:C2:70:F2:3F:67:01
X509v3 Authority Key Identifier:
keyid:E2:C2:1E:54:BB:32:05:A6:E3:99:E7:52:51:5A:BF:62:DF:1B:86:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4sIeVLsyBabjmedSUVq_Yt8bhok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/391cd8-9265-4729-804a-d49fac1195c4/1/1-J2XDfBfSxLJlFPY9BDCcPI_ZwE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/391cd8-9265-4729-804a-d49fac1195c4/1/4sIeVLsyBabjmedSUVq_Yt8bhok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.243.96.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:1b:d3:4e:2d:98:3e:04:3d:f8:80:77:8a:2b:16:2f:14:0c:
a7:7a:bb:e7:4a:0a:cc:d2:ec:dc:be:20:eb:3f:1b:0f:10:58:
d6:36:53:76:65:d9:af:9e:c0:71:68:9f:62:d3:eb:f1:26:1c:
54:b1:d4:78:dd:8b:f6:c4:82:d6:74:ad:70:35:2b:2b:ba:1a:
5f:60:6b:3c:db:d4:0e:5c:ef:5e:19:e9:10:70:83:c7:1c:ce:
cb:20:75:db:2a:e4:68:1c:c3:d1:45:a0:89:02:a5:14:35:40:
c3:e1:1c:e5:0a:67:08:1b:ee:5a:95:e3:44:05:34:bd:c7:0f:
2f:8c:78:da:ce:6b:d6:83:8f:d2:f7:99:fc:21:93:c2:40:19:
79:d2:dc:d5:1f:f1:34:0c:71:01:1d:5a:56:51:66:25:21:f4:
05:b0:79:35:c1:e3:0e:3e:b7:3f:51:f6:99:50:e1:04:f4:44:
4d:cd:b4:b8:ad:be:81:a6:e7:af:df:00:62:b5:19:51:a0:61:
0c:17:bc:f3:88:b0:5a:53:fc:c5:79:b2:08:42:52:1a:1b:ab:
7e:ba:26:b2:fe:eb:fd:4f:76:e7:37:b7:bd:4f:cd:1e:4f:0c:
c8:bd:03:ad:4b:b0:3c:cf:83:38:f2:86:90:90:f3:df:f9:c3:
7e:75:a9:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:28 2024 by rpki-client on console-fra.rpki-client.org