Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/869eae-2a07-4b67-a6ab-0f4910b553d9/1/1W2q5oZpkwyUoFccMotqkx3x3LA.roa
File: 1W2q5oZpkwyUoFccMotqkx3x3LA.roa (raw, json)
Hash identifier: GGHdfR6748QA2V6dsJ9vro0s5K2Lk/9pTDqJNfhn6wo=
Subject key identifier: D5:6D:AA:E6:86:69:93:0C:94:A0:57:1C:32:8B:6A:93:1D:F1:DC:B0
Certificate issuer: /CN=26472cfdcd392a184f1f051320bba806a204c6cd
Certificate serial: 01856D2F20BFDD417411B01C109690EAEBF3
Authority key identifier: 26:47:2C:FD:CD:39:2A:18:4F:1F:05:13:20:BB:A8:06:A2:04:C6:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jkcs_c05KhhPHwUTILuoBqIExs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/869eae-2a07-4b67-a6ab-0f4910b553d9/1/1W2q5oZpkwyUoFccMotqkx3x3LA.roa
Signing time: Sun 01 Jan 2023 11:54:43 +0000
ROA not before: Sun 01 Jan 2023 11:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25227
IP address blocks: 185.124.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:2f:20:bf:dd:41:74:11:b0:1c:10:96:90:ea:eb:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=26472cfdcd392a184f1f051320bba806a204c6cd
Validity
Not Before: Jan 1 11:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d56daae68669930c94a0571c328b6a931df1dcb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:05:b7:31:7c:a8:6c:e0:e1:33:eb:dc:b5:22:
fc:9c:9f:54:73:cc:b0:b0:ca:74:12:bb:14:72:bb:
40:45:3d:e5:1a:20:45:87:c8:91:7d:7b:87:2d:79:
57:57:20:02:e8:67:4d:c5:1d:18:04:65:84:be:8e:
e7:6b:f1:fb:bf:47:6c:94:c4:79:f1:23:e0:c6:c7:
1e:5c:f4:65:88:15:bc:ce:e4:30:7d:7a:b9:0d:51:
88:9d:1f:2d:3a:bb:38:e7:ee:64:06:00:26:34:8a:
40:d3:d9:27:61:8a:be:68:c8:86:0d:03:65:4c:e3:
e0:f2:e8:c3:1a:e9:2d:67:c4:89:7a:0f:5c:d4:d1:
98:f3:cc:7c:08:19:b7:19:d2:6f:fd:78:d0:07:00:
19:a2:7f:97:32:23:bf:3a:bc:4b:b4:8a:e9:e8:e1:
32:2d:44:66:2c:78:44:93:71:c7:61:28:c8:51:1d:
e9:fa:fe:08:22:8f:91:c7:6b:a1:81:b7:90:fc:ad:
73:95:cd:f5:db:58:1d:d2:23:3a:86:71:84:d4:94:
56:a7:63:cc:5c:fc:fc:55:fb:bf:dc:e1:05:9e:9d:
02:07:b6:39:0d:b8:d7:23:f9:db:d9:f8:d7:f8:ba:
a6:f4:12:67:5e:4b:8d:2b:f6:09:ce:9d:af:e8:ee:
93:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:6D:AA:E6:86:69:93:0C:94:A0:57:1C:32:8B:6A:93:1D:F1:DC:B0
X509v3 Authority Key Identifier:
keyid:26:47:2C:FD:CD:39:2A:18:4F:1F:05:13:20:BB:A8:06:A2:04:C6:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jkcs_c05KhhPHwUTILuoBqIExs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/869eae-2a07-4b67-a6ab-0f4910b553d9/1/1W2q5oZpkwyUoFccMotqkx3x3LA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/869eae-2a07-4b67-a6ab-0f4910b553d9/1/Jkcs_c05KhhPHwUTILuoBqIExs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.124.64.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:46:64:f1:d3:0a:4a:f1:02:27:67:de:de:50:df:8a:2d:19:
d0:1b:91:cb:54:27:b8:91:6a:ae:c8:21:56:9c:8a:9c:e3:a2:
8d:07:7a:b2:d1:e3:fb:7f:83:a4:03:ea:f0:07:e3:35:82:b1:
39:89:a3:1a:f6:43:5e:23:7d:c5:5d:95:75:56:7d:db:be:6b:
4b:5d:67:24:50:46:1c:7d:b9:5f:b4:1a:53:19:28:3e:9e:f1:
51:29:d6:5f:c1:10:af:a8:f1:68:d3:96:ff:80:7c:44:5f:69:
c5:b7:e8:be:8c:4a:05:c9:29:d0:bf:10:50:68:71:41:98:cb:
3f:79:ed:8f:ca:e9:6c:bf:43:39:21:1f:2d:d5:b9:c7:eb:8f:
6d:86:f3:d2:43:9d:eb:c6:db:fc:f1:2d:a3:54:ed:e8:03:59:
7b:3a:ad:73:5a:af:77:67:ae:b9:07:ca:01:1d:55:ed:f5:a3:
29:af:46:c4:4e:16:bf:3a:90:57:e3:3b:02:a8:8c:02:d1:88:
59:17:6d:ce:22:2a:5a:7b:ae:78:be:39:22:5a:82:f2:a0:c9:
4a:6a:5d:ff:dd:9c:ec:18:16:f7:16:6f:73:51:d7:f3:bc:56:
07:19:9e:d6:1c:aa:0e:f3:6f:af:8a:2c:29:60:ed:e7:c2:85:
7c:81:08:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:02 2024 by rpki-client on console-fra.rpki-client.org