Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/56c214-2041-4296-80c4-22cf1ca982b4/1/u9E48-vRNvLko4sPiku6M9tCz58.roa
File: u9E48-vRNvLko4sPiku6M9tCz58.roa (raw, json)
Hash identifier: S3SpfIjTBhm3do7qPtQtN2uRKvrUY0wZszk4tnLRJyM=
Subject key identifier: BB:D1:38:F3:EB:D1:36:F2:E4:A3:8B:0F:8A:4B:BA:33:DB:42:CF:9F
Certificate issuer: /CN=5ce4b3954d2c6ce5682052b534d55fedb7f2973e
Certificate serial: C69F59
Authority key identifier: 5C:E4:B3:95:4D:2C:6C:E5:68:20:52:B5:34:D5:5F:ED:B7:F2:97:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XOSzlU0sbOVoIFK1NNVf7bfylz4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/56c214-2041-4296-80c4-22cf1ca982b4/1/u9E48-vRNvLko4sPiku6M9tCz58.roa
Signing time: Sat 01 Jan 2022 11:54:40 +0000
ROA not before: Sat 01 Jan 2022 11:54:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201838
IP address blocks: 185.71.36.0/22 maxlen: 24
2a03:3820::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13016921 (0xc69f59)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ce4b3954d2c6ce5682052b534d55fedb7f2973e
Validity
Not Before: Jan 1 11:54:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bbd138f3ebd136f2e4a38b0f8a4bba33db42cf9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:0c:30:0a:71:61:da:dc:3c:cb:dc:22:21:81:
ab:1e:75:c1:2f:2a:0f:cd:d5:e7:e8:1b:c0:1b:de:
81:39:2f:8e:10:7d:4b:6a:fa:52:54:10:49:f4:cd:
c0:7e:57:67:d9:13:fe:d9:9c:01:97:c7:60:87:fd:
a8:c4:9f:f1:95:8c:7c:93:54:33:a7:47:62:6e:d6:
28:50:b8:97:47:bf:c3:89:69:14:d1:7d:aa:0d:e9:
18:fe:40:04:6f:91:cf:4c:f7:51:34:d4:25:54:2d:
11:f8:23:1a:ad:15:9a:75:9e:41:73:1a:ff:aa:05:
8b:8f:b5:03:bd:37:c9:52:1b:22:38:47:98:e9:89:
31:be:0d:87:8e:c6:26:2e:0a:d1:ca:64:06:0b:40:
f4:6d:89:2a:ce:37:6f:f9:4f:bb:f9:b4:30:71:b7:
b5:bf:47:49:34:7f:f8:99:bc:54:05:60:5a:a0:93:
4f:a8:ff:e9:8e:4c:95:cc:3e:0e:d0:5b:b1:c2:a1:
b4:84:b5:05:40:ed:c6:23:38:46:13:a3:3e:8b:20:
03:ac:2c:f3:d1:67:82:03:da:6e:39:8c:94:c6:87:
b2:f0:49:78:56:ef:14:e2:f1:c2:f1:44:d7:fe:3a:
64:20:e3:d4:67:aa:77:d9:83:6d:8e:7f:fd:84:1e:
43:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:D1:38:F3:EB:D1:36:F2:E4:A3:8B:0F:8A:4B:BA:33:DB:42:CF:9F
X509v3 Authority Key Identifier:
keyid:5C:E4:B3:95:4D:2C:6C:E5:68:20:52:B5:34:D5:5F:ED:B7:F2:97:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XOSzlU0sbOVoIFK1NNVf7bfylz4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/56c214-2041-4296-80c4-22cf1ca982b4/1/u9E48-vRNvLko4sPiku6M9tCz58.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/56c214-2041-4296-80c4-22cf1ca982b4/1/XOSzlU0sbOVoIFK1NNVf7bfylz4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.71.36.0/22
IPv6:
2a03:3820::/32
Signature Algorithm: sha256WithRSAEncryption
01:0c:9f:9e:75:49:f2:c6:7b:43:7c:0c:e2:48:6f:40:93:c0:
e1:89:d5:8d:e9:dc:69:d9:50:50:e1:bc:98:6f:a1:67:ba:fd:
35:2e:4f:d2:c8:7e:f1:5f:ae:23:c8:db:29:54:10:da:ce:44:
25:da:06:fa:d9:82:37:6e:f3:36:db:4a:6c:64:99:68:e9:46:
e5:d1:1a:80:2e:19:db:e6:b8:d5:b4:12:ae:6d:9d:84:1e:c7:
62:eb:82:c6:4b:76:de:81:54:8d:e6:ea:76:98:41:87:b7:83:
90:9a:0a:df:61:93:28:5a:e9:30:bc:1b:4c:be:9b:35:ed:e2:
53:e8:d5:c6:cf:a4:34:75:3f:ab:73:1e:4e:7a:b2:e1:11:c4:
d8:cc:44:8a:37:65:52:0b:de:94:7c:50:aa:7d:9e:32:5b:4c:
46:85:cd:d9:e3:2e:32:33:aa:79:bb:13:73:3e:b3:e7:48:2c:
6d:94:fa:82:21:1d:d1:83:9b:3c:6c:89:88:57:3f:4a:79:bd:
e7:14:97:00:eb:b9:14:c4:ec:1b:f9:a7:cc:ce:73:98:f7:65:
cb:d6:45:f6:8a:5c:45:05:41:ae:e0:1f:57:04:48:0f:3f:ae:
05:b4:b9:37:59:43:1a:80:7c:d6:03:af:2c:aa:91:99:9a:0f:
39:12:d1:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:24:53 2024 by rpki-client on console-ams.rpki-client.org