Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/KOIFVYu0yOGtw-0WEwpoSYV-D7A.roa
File: KOIFVYu0yOGtw-0WEwpoSYV-D7A.roa (raw, json)
Hash identifier: VdPQuNOYOpbbnBryjE0WsOjxSIw7Ks1ct2PFdVNPAMw=
Subject key identifier: 28:E2:05:55:8B:B4:C8:E1:AD:C3:ED:16:13:0A:68:49:85:7E:0F:B0
Certificate issuer: /CN=15982be200f2ed9be40fc983d94d9c726350a9d9
Certificate serial: 018CC8010AA884F139D31F3056C4EB94AD45
Authority key identifier: 15:98:2B:E2:00:F2:ED:9B:E4:0F:C9:83:D9:4D:9C:72:63:50:A9:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/KOIFVYu0yOGtw-0WEwpoSYV-D7A.roa
Signing time: Tue 02 Jan 2024 02:29:20 +0000
ROA not before: Tue 02 Jan 2024 02:29:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62068
IP address blocks: 185.13.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:0a:a8:84:f1:39:d3:1f:30:56:c4:eb:94:ad:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15982be200f2ed9be40fc983d94d9c726350a9d9
Validity
Not Before: Jan 2 02:29:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=28e205558bb4c8e1adc3ed16130a6849857e0fb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:cb:13:a0:e1:49:94:ea:63:40:ec:39:2c:bc:
b8:47:ca:20:d8:a3:3c:90:8c:3e:7a:dd:66:61:8e:
f7:3f:72:45:ec:15:b2:27:19:a7:4f:7f:c3:18:2f:
5b:fd:55:04:0b:48:1b:30:c7:44:91:d3:75:5f:91:
fe:85:d3:5c:48:35:2a:24:91:9b:b3:ad:ae:e1:5c:
69:2c:6c:cd:15:47:ed:53:56:f4:63:5e:fc:ad:4c:
b9:ba:83:a8:6a:86:57:df:d9:7b:db:3e:ab:a2:69:
20:be:ea:46:ea:39:31:73:d3:4a:63:1e:33:58:7c:
0f:3a:ca:80:08:f0:e1:09:1f:d7:ee:79:20:3e:81:
1a:0b:0a:05:25:fc:41:7f:bf:0c:a9:79:3f:fc:e4:
04:3d:a8:25:df:61:46:b6:b5:a7:d8:a2:c5:eb:0d:
3b:51:46:1e:25:d9:41:15:3c:51:99:02:13:ef:53:
c9:28:4f:f8:23:c8:83:90:9e:fd:cd:86:02:1e:2b:
9d:a6:96:90:1f:77:87:2a:67:7b:94:46:93:c7:86:
dd:cf:67:40:09:a1:de:d3:cd:78:41:f6:ba:df:76:
15:f4:87:6e:41:98:6d:ee:64:cb:85:bc:74:9a:48:
bf:e1:41:a6:a4:3a:47:fd:65:e1:82:84:92:a0:92:
07:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:E2:05:55:8B:B4:C8:E1:AD:C3:ED:16:13:0A:68:49:85:7E:0F:B0
X509v3 Authority Key Identifier:
keyid:15:98:2B:E2:00:F2:ED:9B:E4:0F:C9:83:D9:4D:9C:72:63:50:A9:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/KOIFVYu0yOGtw-0WEwpoSYV-D7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/30e653-9c0b-4164-9a7d-ca7e6c3ae8ce/1/FZgr4gDy7ZvkD8mD2U2ccmNQqdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.13.224.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:6e:fe:bd:6b:68:f8:db:25:cf:ac:2a:73:4a:3d:60:fe:32:
0f:98:4a:4f:0d:7d:a6:8c:f5:bb:bb:49:4c:99:63:55:b4:54:
95:96:30:cd:f8:dc:02:49:b8:ad:23:2f:86:9b:26:ab:4c:aa:
f8:ff:0d:c0:6f:9f:ae:63:b6:96:b8:4b:47:e0:97:a8:09:0e:
40:2d:0c:ae:82:1b:06:1b:be:dd:d7:8e:8b:86:ef:12:cc:92:
68:09:46:ed:19:fc:3c:1a:9b:cc:c9:b0:f2:d5:4a:74:73:f9:
92:88:48:93:d1:21:47:d9:4f:de:07:1a:5e:03:0a:4e:d7:19:
65:bf:33:b6:33:62:86:c3:83:26:3d:08:1e:e6:93:25:4b:a1:
a9:43:19:0c:24:46:1d:4d:d4:78:55:5b:f5:86:f5:90:aa:78:
9b:a7:f8:66:24:9c:f2:7e:20:db:d2:92:3c:af:b4:be:51:8d:
49:49:c8:73:9b:12:d0:cf:d3:ea:07:42:ac:57:a7:9a:ca:9a:
6b:a9:11:9a:a6:fa:26:17:6e:e0:6d:6a:39:42:f7:a5:70:18:
f7:3a:88:ad:f6:f4:ae:60:3e:fe:19:d2:3f:78:82:c7:00:aa:
81:b2:da:bd:ed:1b:ae:6d:9d:51:94:49:9f:63:1a:e5:3c:9f:
d7:f5:e5:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 22 17:50:01 2024 by rpki-client on console-fra.rpki-client.org