Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/f568cf-d3ac-4e99-aeac-010c781ecd77/1/8qQ9KToCiUyrk-bT6nHtasHe4CU.roa
File: 8qQ9KToCiUyrk-bT6nHtasHe4CU.roa (raw, json)
Hash identifier: W8MrACuwSlKPagdJ7W4pCKL5m1mfau/IL0gq/bXv30k=
Subject key identifier: F2:A4:3D:29:3A:02:89:4C:AB:93:E6:D3:EA:71:ED:6A:C1:DE:E0:25
Certificate issuer: /CN=39ed4b063e3773b822de16e9b7323eb195cd7062
Certificate serial: 018802C697ACCE2D8C493374FBD4593523B5
Authority key identifier: 39:ED:4B:06:3E:37:73:B8:22:DE:16:E9:B7:32:3E:B1:95:CD:70:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Oe1LBj43c7gi3hbptzI-sZXNcGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/f568cf-d3ac-4e99-aeac-010c781ecd77/1/8qQ9KToCiUyrk-bT6nHtasHe4CU.roa
Signing time: Tue 09 May 2023 23:09:09 +0000
ROA not before: Tue 09 May 2023 23:09:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210667
IP address blocks: 185.228.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:02:c6:97:ac:ce:2d:8c:49:33:74:fb:d4:59:35:23:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39ed4b063e3773b822de16e9b7323eb195cd7062
Validity
Not Before: May 9 23:09:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2a43d293a02894cab93e6d3ea71ed6ac1dee025
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:e4:61:82:4b:c1:43:00:76:a1:bb:de:bc:e9:
fc:88:6a:4c:39:00:fa:d2:4b:d0:46:b0:3a:cf:84:
99:f5:fb:66:5c:4a:89:6c:57:de:c3:ae:b7:8c:09:
7b:7a:73:71:a0:d9:d1:73:04:34:20:a6:11:5e:9b:
c4:17:6e:87:61:ae:5d:59:9c:0a:7e:1c:20:f0:8f:
21:e1:f8:f1:2d:9e:b9:3a:ca:8b:d7:33:b1:c8:7d:
c5:6a:b3:df:ad:e2:04:ef:fa:b3:c2:ee:07:f5:f0:
00:95:55:c5:58:d4:b9:7e:07:13:36:04:82:b2:11:
92:d3:6d:90:75:ca:ee:55:3f:53:2b:cc:87:d6:30:
a6:97:c1:e7:c6:8e:f8:9c:75:e0:15:c1:11:e6:87:
a7:b6:32:17:14:57:b6:ff:b4:be:ec:03:ac:84:0c:
b9:c7:6b:f0:60:43:31:b7:4a:aa:66:bf:61:df:8b:
73:bf:82:18:98:bd:6b:83:73:10:3c:b7:4a:c4:9d:
35:b5:3e:dd:75:42:9e:b1:c9:b4:bd:27:5d:37:9a:
0b:09:b7:03:3e:60:15:d7:4b:80:ed:06:f4:fa:81:
10:90:b4:d4:60:b0:84:13:27:7d:26:4c:05:1c:3d:
76:74:09:f3:e5:3e:8c:5d:7a:e1:f0:40:fd:b7:b4:
97:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:A4:3D:29:3A:02:89:4C:AB:93:E6:D3:EA:71:ED:6A:C1:DE:E0:25
X509v3 Authority Key Identifier:
keyid:39:ED:4B:06:3E:37:73:B8:22:DE:16:E9:B7:32:3E:B1:95:CD:70:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Oe1LBj43c7gi3hbptzI-sZXNcGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/f568cf-d3ac-4e99-aeac-010c781ecd77/1/8qQ9KToCiUyrk-bT6nHtasHe4CU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/f568cf-d3ac-4e99-aeac-010c781ecd77/1/Oe1LBj43c7gi3hbptzI-sZXNcGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.59.0/24
Signature Algorithm: sha256WithRSAEncryption
61:7e:8a:e9:76:31:4e:2d:46:2d:26:5e:6e:66:c4:23:71:ec:
d3:41:ee:53:75:71:fb:2f:fb:51:16:95:52:2f:de:50:61:af:
e2:36:a0:fd:b5:73:25:d7:b4:98:9f:ff:81:da:0b:65:d5:dc:
7e:8b:b0:9b:b2:bb:05:b6:85:ea:ce:41:d3:a2:77:2d:f4:1b:
d9:5f:d8:ff:d2:e0:6d:80:a2:40:a7:a1:5e:c3:24:27:03:88:
f7:bc:16:0a:3d:49:34:29:b0:14:80:7a:67:86:9a:5b:bd:ef:
db:a1:33:ac:68:1a:ee:b6:e3:5b:62:35:6a:2f:a2:6a:7e:95:
6d:4c:e4:07:56:d4:77:6b:35:a8:83:cc:61:b0:92:ea:e9:70:
52:b7:cb:46:24:85:57:73:02:fc:23:dd:64:c7:5e:ce:7e:22:
db:51:00:89:df:1d:fd:e6:76:27:35:72:81:97:3b:5f:d6:79:
e3:2b:5c:24:08:b8:0e:03:4f:ea:bc:c7:68:3d:68:19:47:58:
9c:34:e4:d1:82:67:11:de:b0:5b:c0:c6:82:fe:cc:48:f8:d8:
2d:90:04:62:a1:5a:0f:06:a4:62:e5:39:68:84:64:f8:b9:02:
88:a7:d5:39:75:e8:f3:5c:f6:61:ea:4a:a1:b2:2a:e8:9e:02:
e4:f5:2f:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:54 2025 by rpki-client