Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/2ba8ba-505e-4bcb-8300-99a1ed92b379/1/T9cPdAFgS1gzXLCzORI1qjX295I.roa
File: T9cPdAFgS1gzXLCzORI1qjX295I.roa (raw, json)
Hash identifier: uQ3b9i5hpJ6iVDSnlGDfbBFhPpgIrHu0AfXjVXOWflU=
Subject key identifier: 4F:D7:0F:74:01:60:4B:58:33:5C:B0:B3:39:12:35:AA:35:F6:F7:92
Certificate issuer: /CN=1a64c7dd9ea964644157f6297abc95bb56a85c54
Certificate serial: 0492D3B7
Authority key identifier: 1A:64:C7:DD:9E:A9:64:64:41:57:F6:29:7A:BC:95:BB:56:A8:5C:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GmTH3Z6pZGRBV_YperyVu1aoXFQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/2ba8ba-505e-4bcb-8300-99a1ed92b379/1/T9cPdAFgS1gzXLCzORI1qjX295I.roa
Signing time: Sat 01 Jan 2022 06:59:45 +0000
ROA not before: Sat 01 Jan 2022 06:59:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8943
IP address blocks: 185.169.117.0/24 maxlen: 24
2a0b:9700::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 76731319 (0x492d3b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a64c7dd9ea964644157f6297abc95bb56a85c54
Validity
Not Before: Jan 1 06:59:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4fd70f7401604b58335cb0b3391235aa35f6f792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:da:f4:ee:10:c0:37:2b:30:81:88:dc:82:ef:
0b:a6:e6:df:f8:7e:24:89:22:7d:c1:8f:cf:b0:b2:
ed:82:8c:e1:96:f6:51:1c:b1:a2:89:44:ef:89:a7:
31:dd:d6:67:5a:86:18:72:57:03:6e:c0:25:f6:26:
6d:66:18:ec:87:e7:60:19:c8:71:48:fe:77:70:1a:
e5:fe:e9:a6:85:58:c5:99:5d:9b:25:bb:3a:d9:b7:
e4:ce:9f:ca:5e:26:07:1d:5e:9e:28:b6:97:d2:47:
b5:bf:44:62:c1:a9:5c:50:f1:53:a9:10:ca:b8:7e:
30:cd:47:b6:10:40:e9:8e:f3:9f:fe:9e:7b:7a:5e:
c8:71:14:38:49:91:38:06:f8:2b:b3:5d:ed:a5:9f:
5c:a3:2f:bc:37:42:95:76:90:38:68:51:01:2d:57:
a0:82:b8:1f:ab:3b:79:d1:cb:9e:23:b4:15:9d:24:
2b:fd:02:c2:88:65:12:6e:af:3b:0e:dc:db:57:0f:
ae:55:0d:25:be:c2:09:cb:92:df:d3:64:51:85:63:
5c:20:64:be:4f:38:50:ff:2a:06:9e:b7:63:bf:2f:
ba:14:3d:ca:41:c2:12:3c:7b:eb:61:c9:48:4b:9b:
0f:d1:a9:6e:c5:8b:ff:f6:f3:75:39:ea:af:ba:76:
47:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:D7:0F:74:01:60:4B:58:33:5C:B0:B3:39:12:35:AA:35:F6:F7:92
X509v3 Authority Key Identifier:
keyid:1A:64:C7:DD:9E:A9:64:64:41:57:F6:29:7A:BC:95:BB:56:A8:5C:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GmTH3Z6pZGRBV_YperyVu1aoXFQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/2ba8ba-505e-4bcb-8300-99a1ed92b379/1/T9cPdAFgS1gzXLCzORI1qjX295I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/2ba8ba-505e-4bcb-8300-99a1ed92b379/1/GmTH3Z6pZGRBV_YperyVu1aoXFQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.169.117.0/24
IPv6:
2a0b:9700::/32
Signature Algorithm: sha256WithRSAEncryption
78:ce:2c:36:8a:05:6f:dd:33:a9:7f:bf:e5:6b:b1:76:2e:72:
0d:b1:e5:49:11:24:3a:7d:42:0e:8d:09:a4:c4:84:31:7c:01:
8c:ed:e2:3d:2a:16:f5:22:a1:29:cd:67:76:35:cd:83:87:f8:
bd:56:52:8f:33:05:f2:67:dd:a2:a8:d5:2d:a0:0f:1e:c2:27:
ac:19:d1:ee:e4:56:28:52:30:d5:d6:6d:a5:8b:43:41:98:95:
8a:cf:5e:5e:59:30:53:cd:cf:20:ba:9b:d6:13:0b:53:82:3a:
d1:c9:79:e9:49:05:fe:bb:3b:83:9a:34:b0:74:8b:ef:f0:61:
b4:41:19:47:1d:83:ff:04:1c:7b:27:f8:8b:fa:44:fc:aa:ef:
d8:f2:79:fb:cf:7f:89:8b:51:fd:64:5e:bd:59:a1:cd:49:5a:
0d:42:24:a0:03:02:fc:b5:55:2a:5e:c2:1d:ae:b1:2b:5f:37:
43:7e:bb:1a:cf:41:d0:dc:4f:60:5d:a1:08:12:92:ad:b4:a9:
18:f4:45:12:2f:f8:66:4d:41:75:bc:b1:f6:6c:1f:16:87:ad:
8d:e5:59:f7:d3:05:fc:58:22:e4:ac:18:6f:24:de:df:bb:6c:
08:d2:bb:8d:75:da:f5:72:38:59:1b:a7:a1:1d:eb:4c:17:89:
a1:91:21:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:42 2024 by rpki-client on console-ams.rpki-client.org