Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/11a678-11b6-4a35-a5ac-bb74c97f7269/1/AiJQPjTibVbRnMzfOg3WIpIktDQ.roa
File: AiJQPjTibVbRnMzfOg3WIpIktDQ.roa (raw, json)
Hash identifier: o1nrqePHYtwHffMdePOXCwlHtepBWRY2MqHmFzhYouY=
Subject key identifier: 02:22:50:3E:34:E2:6D:56:D1:9C:CC:DF:3A:0D:D6:22:92:24:B4:34
Certificate issuer: /CN=e314905c56633e9fde791b3005d9a4af7d31a7a0
Certificate serial: 0187E843385E04A5D9379364583F0482C8E5
Authority key identifier: E3:14:90:5C:56:63:3E:9F:DE:79:1B:30:05:D9:A4:AF:7D:31:A7:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4xSQXFZjPp_eeRswBdmkr30xp6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/11a678-11b6-4a35-a5ac-bb74c97f7269/1/AiJQPjTibVbRnMzfOg3WIpIktDQ.roa
Signing time: Thu 04 May 2023 19:35:32 +0000
ROA not before: Thu 04 May 2023 19:35:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198636
IP address blocks: 185.235.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e8:43:38:5e:04:a5:d9:37:93:64:58:3f:04:82:c8:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e314905c56633e9fde791b3005d9a4af7d31a7a0
Validity
Not Before: May 4 19:35:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0222503e34e26d56d19cccdf3a0dd6229224b434
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:14:a4:ff:77:a3:5d:01:fe:23:a6:fd:bf:c9:
1a:e3:49:58:14:25:f4:89:d0:71:0e:11:f8:c8:2e:
c4:dd:04:84:7f:70:27:e5:c8:71:0a:6f:a8:e2:7e:
ef:03:2d:e8:8d:bb:90:25:6a:67:53:f6:e4:67:df:
68:87:8d:18:41:38:38:94:cc:53:3a:b1:61:3c:d2:
67:5c:37:d8:d1:ba:fe:7f:2f:9f:b1:8c:da:7f:b5:
e4:43:a9:d7:55:10:ed:09:f7:52:c3:c8:0e:e1:4e:
b9:c0:07:fd:e2:ce:13:a0:59:55:88:7f:bb:0f:30:
37:65:ee:79:dc:99:f6:ac:b6:40:81:7a:0b:46:f7:
40:69:30:41:c8:9c:fd:a3:c7:10:8e:c6:e0:85:3a:
b7:21:99:9e:4d:6d:aa:8e:6f:33:46:dc:74:5a:ba:
a3:ee:ca:ab:84:a7:8e:f9:bb:82:b9:64:52:41:0b:
ea:ee:24:1c:4c:ff:f8:a9:d4:f9:8b:5d:90:d4:e8:
13:b6:f4:ab:72:1a:d3:26:65:c9:3b:53:01:67:14:
b8:20:b5:fe:d5:3a:59:35:41:77:34:fd:cf:93:27:
2b:cd:70:39:33:79:b9:c5:c1:f1:03:b5:2e:b3:12:
25:0d:cf:b8:f1:8b:74:3c:8e:54:b7:42:38:b9:4e:
70:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:22:50:3E:34:E2:6D:56:D1:9C:CC:DF:3A:0D:D6:22:92:24:B4:34
X509v3 Authority Key Identifier:
keyid:E3:14:90:5C:56:63:3E:9F:DE:79:1B:30:05:D9:A4:AF:7D:31:A7:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4xSQXFZjPp_eeRswBdmkr30xp6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/11a678-11b6-4a35-a5ac-bb74c97f7269/1/AiJQPjTibVbRnMzfOg3WIpIktDQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/11a678-11b6-4a35-a5ac-bb74c97f7269/1/4xSQXFZjPp_eeRswBdmkr30xp6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.186.0/24
Signature Algorithm: sha256WithRSAEncryption
65:be:17:bf:92:8d:c1:36:e8:12:5f:b3:2b:e9:83:8b:8e:c5:
02:be:0a:3e:d0:37:42:73:17:d0:ba:9a:a1:da:8f:30:04:3e:
53:75:d2:2d:b6:1e:dc:05:b6:fa:3a:e4:ed:25:d5:5b:0c:18:
5c:c6:43:03:12:40:5b:00:a7:bf:12:23:27:31:7e:62:e7:79:
ed:bf:89:cb:c7:24:e3:56:f5:04:10:dc:e4:47:9d:e0:20:b3:
8c:99:c6:46:45:76:97:aa:0a:c2:57:f8:10:12:54:b7:d6:f3:
0a:c8:ee:98:51:94:b1:34:fa:a4:c6:71:42:e8:d1:5b:4a:14:
12:37:72:3d:39:fa:17:c1:e7:97:4a:ff:ce:0e:b0:8c:a4:54:
96:42:92:86:07:be:45:5d:41:fe:ca:8d:16:f0:93:d9:d1:a3:
76:48:32:20:3f:be:9f:dc:0c:0d:f1:45:93:7d:5c:0b:f9:cf:
f6:e8:39:62:7f:91:74:3f:b8:48:f8:9f:67:63:53:e8:c3:60:
69:88:be:3e:69:44:11:cc:ce:65:01:7b:8f:67:ed:d1:66:fc:
bc:16:95:c6:1f:31:93:89:58:27:f3:cc:de:20:5f:9a:06:5e:
a5:db:ea:16:67:99:eb:f8:8d:44:02:26:f3:f2:a2:bb:86:ac:
4a:36:46:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 21 12:31:58 2023 by rpki-client on console-ams.rpki-client.org