Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/1ace3c-3a1b-4614-aaf3-f2daf0e42d1c/1/RJzhDDPfr154OHZ46__52BSP1mw.roa
File: RJzhDDPfr154OHZ46__52BSP1mw.roa (raw, json)
Hash identifier: 6yqQg5llbkCB5NMtTf/dEH/fVLqGaM+LyWutE5MYfZ4=
Subject key identifier: 44:9C:E1:0C:33:DF:AF:5E:78:38:76:78:EB:FF:F9:D8:14:8F:D6:6C
Certificate issuer: /CN=1149bd5764a8bb849fea2c54069ac423120250ba
Certificate serial: 0185708CBE57C65241D4D5809700DC191744
Authority key identifier: 11:49:BD:57:64:A8:BB:84:9F:EA:2C:54:06:9A:C4:23:12:02:50:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EUm9V2Sou4Sf6ixUBprEIxICULo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/1ace3c-3a1b-4614-aaf3-f2daf0e42d1c/1/RJzhDDPfr154OHZ46__52BSP1mw.roa
Signing time: Mon 02 Jan 2023 03:35:50 +0000
ROA not before: Mon 02 Jan 2023 03:35:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 996
IP address blocks: 94.103.191.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:8c:be:57:c6:52:41:d4:d5:80:97:00:dc:19:17:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1149bd5764a8bb849fea2c54069ac423120250ba
Validity
Not Before: Jan 2 03:35:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=449ce10c33dfaf5e78387678ebfff9d8148fd66c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:70:bf:9e:e8:41:44:5d:31:78:ff:e1:84:4a:
84:30:0d:4f:69:5e:fa:db:a0:e8:06:0c:a5:cc:70:
61:9d:50:8f:ca:10:23:a8:f3:b4:3f:e6:02:0d:37:
d6:f1:fd:b6:c9:88:a2:42:e1:c8:ab:75:45:d2:d8:
c3:e9:6c:8b:e7:cd:41:dd:bd:ce:f1:5c:d9:2b:6a:
e1:0b:07:60:39:d1:6d:99:49:36:8b:d4:e8:88:e3:
9e:fa:69:b6:cb:21:2c:2d:b7:5e:99:2c:de:07:bf:
68:e4:56:f5:a8:cf:ab:8c:b7:d6:2b:38:dd:97:c6:
b3:07:b9:b3:ee:d5:2a:06:24:6f:14:a2:9d:23:55:
fb:e5:32:10:30:c8:35:fd:4d:6d:e2:2f:c2:b1:0d:
17:62:f8:3e:1d:16:17:8d:0d:97:c1:b1:c8:9e:28:
3c:01:4e:62:7c:6b:0a:40:32:d8:57:82:ca:5d:e5:
2e:fa:d9:49:3c:da:70:98:5a:0b:43:80:f8:b5:3b:
04:54:c1:3f:41:d9:0b:cc:92:a8:4a:a4:d1:57:b8:
10:23:49:0c:55:fe:9f:6c:39:58:02:82:43:64:23:
68:7c:ad:d2:ee:e4:6b:71:65:de:fc:25:38:ce:05:
c1:d8:12:08:b5:69:1b:dd:fe:55:99:68:ef:a4:5a:
ee:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:9C:E1:0C:33:DF:AF:5E:78:38:76:78:EB:FF:F9:D8:14:8F:D6:6C
X509v3 Authority Key Identifier:
keyid:11:49:BD:57:64:A8:BB:84:9F:EA:2C:54:06:9A:C4:23:12:02:50:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EUm9V2Sou4Sf6ixUBprEIxICULo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/1ace3c-3a1b-4614-aaf3-f2daf0e42d1c/1/RJzhDDPfr154OHZ46__52BSP1mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/1ace3c-3a1b-4614-aaf3-f2daf0e42d1c/1/EUm9V2Sou4Sf6ixUBprEIxICULo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.103.191.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:7a:1b:d0:88:b2:e6:9d:1e:e5:09:2b:51:86:d9:30:49:2a:
79:f6:70:3f:17:42:86:da:7b:6f:e5:7a:6c:a3:4c:cf:da:2c:
e1:5c:71:a9:1c:8e:88:de:80:f1:a0:85:7f:97:c2:37:f0:e5:
b0:39:f2:8f:d5:c4:79:04:33:7c:fb:fd:b8:67:e7:0f:3a:ad:
66:ab:f7:62:c2:aa:75:38:a1:4a:c8:4d:cd:13:22:ab:a4:4e:
9e:d9:48:e4:3b:27:8d:b1:7c:9e:08:1e:ea:2d:0d:ce:a4:3b:
99:5f:33:d1:64:9b:80:14:c3:d3:7a:27:bb:c0:ee:0d:e2:76:
5c:06:01:b5:e5:9a:90:69:f5:97:a2:23:1a:c8:1a:0b:ee:ef:
b5:d2:3b:c0:2d:f3:c2:50:f0:53:ef:83:89:00:df:28:c1:56:
17:ad:a7:70:b0:16:31:59:85:f2:b8:ab:f0:1d:bc:76:fb:a9:
44:e7:54:93:1d:0c:d9:9a:2b:df:40:86:01:c4:8d:c1:42:bf:
90:12:0c:32:d3:98:0e:f9:80:b2:36:9a:07:9a:fc:b4:23:08:
e7:92:5c:36:0e:aa:11:b7:45:3f:59:c3:bc:90:da:0d:f6:ba:
b8:07:d0:32:51:ff:e8:be:8c:58:03:00:3d:55:45:0a:d2:31:
6c:b5:02:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 5 13:07:23 2023 by rpki-client on console-ams.rpki-client.org