Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bc7b6e-30cb-4eac-849a-c1d9eb8be4f9/1/Xr0Tg78RKIYywCbKggJUMdyzJoY.roa
File: Xr0Tg78RKIYywCbKggJUMdyzJoY.roa (raw, json)
Hash identifier: FvamlvI8v2U2zMEnVS16XnqbCRyA766UzqJwFSwyLBc=
Subject key identifier: 5E:BD:13:83:BF:11:28:86:32:C0:26:CA:82:02:54:31:DC:B3:26:86
Certificate issuer: /CN=c8bcaeab463ffaefda9e475cedef54128a0dc65f
Certificate serial: 01856F6FFD5FB3B35FB510129965DA77D68E
Authority key identifier: C8:BC:AE:AB:46:3F:FA:EF:DA:9E:47:5C:ED:EF:54:12:8A:0D:C6:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yLyuq0Y_-u_ankdc7e9UEooNxl8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bc7b6e-30cb-4eac-849a-c1d9eb8be4f9/1/Xr0Tg78RKIYywCbKggJUMdyzJoY.roa
Signing time: Sun 01 Jan 2023 22:24:48 +0000
ROA not before: Sun 01 Jan 2023 22:24:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201508
IP address blocks: 185.242.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:6f:fd:5f:b3:b3:5f:b5:10:12:99:65:da:77:d6:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8bcaeab463ffaefda9e475cedef54128a0dc65f
Validity
Not Before: Jan 1 22:24:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5ebd1383bf11288632c026ca82025431dcb32686
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:e4:83:b7:e7:da:d1:67:0b:c6:89:de:41:b0:
07:e8:71:1d:37:60:34:ce:b6:7d:58:73:c0:7e:cd:
39:56:e7:77:9e:2c:51:30:96:91:b1:7f:43:a5:56:
7f:e0:24:5c:3a:9a:be:df:2e:02:cf:82:df:15:bf:
d7:30:84:f0:28:ae:d8:e4:ff:57:a8:cd:7d:55:37:
2e:4b:f6:c9:a5:1e:7e:d4:ac:97:1a:ae:c8:d6:2a:
b0:ed:1e:df:88:e2:ea:25:8e:ad:9e:c4:37:95:4f:
d9:b9:87:82:89:27:12:da:7a:56:95:85:69:58:c8:
c9:3e:25:64:47:ff:34:49:38:94:93:2d:05:7a:59:
35:e6:07:27:b1:6b:35:21:d9:0e:7c:33:79:e1:7b:
38:22:29:a2:f6:1e:4b:8c:e1:90:12:79:f0:c0:30:
d1:ef:ad:24:01:b0:11:c5:e3:a5:33:66:df:86:53:
93:a0:19:e2:fc:d1:15:a8:8a:2e:58:f2:36:8c:50:
df:1c:f0:87:70:39:05:a5:45:78:71:03:5d:4b:87:
2f:cd:0e:04:40:bc:fc:4c:7d:4e:d4:99:90:95:fe:
23:2b:84:b5:91:d0:1f:ca:4e:61:a7:7b:d4:3c:b2:
09:bc:62:38:fd:83:53:ef:71:a4:1c:37:92:ec:9b:
f0:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:BD:13:83:BF:11:28:86:32:C0:26:CA:82:02:54:31:DC:B3:26:86
X509v3 Authority Key Identifier:
keyid:C8:BC:AE:AB:46:3F:FA:EF:DA:9E:47:5C:ED:EF:54:12:8A:0D:C6:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yLyuq0Y_-u_ankdc7e9UEooNxl8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bc7b6e-30cb-4eac-849a-c1d9eb8be4f9/1/Xr0Tg78RKIYywCbKggJUMdyzJoY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bc7b6e-30cb-4eac-849a-c1d9eb8be4f9/1/yLyuq0Y_-u_ankdc7e9UEooNxl8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.242.218.0/24
Signature Algorithm: sha256WithRSAEncryption
01:a3:c4:6e:e3:57:6c:4f:5a:e7:b7:f9:15:e0:2c:81:04:ba:
26:7b:8f:09:9c:66:a2:d8:4a:d2:13:2a:ed:29:7b:50:5e:50:
7d:05:a0:73:5a:8a:7d:8c:63:1b:5a:31:d2:58:be:87:2f:6f:
7f:49:29:1c:2f:4c:49:57:24:83:63:c9:13:1c:ff:be:0e:58:
bb:f9:cf:ad:59:07:1d:ab:75:3d:7f:ef:16:52:6d:3e:42:ad:
33:53:8d:90:e3:3b:03:95:59:2e:bc:34:d1:79:e8:20:55:77:
c0:91:4f:7d:78:66:47:47:e6:7a:a6:f3:c1:4d:40:8f:1f:9e:
45:25:7c:14:81:dc:8d:54:12:99:9f:34:b8:bc:49:c4:56:93:
81:40:9e:d0:b8:5a:47:8e:10:44:3e:94:4a:7a:fc:a7:93:17:
b9:80:bb:a2:50:97:81:80:04:5d:3f:f4:47:05:86:bb:61:10:
d1:55:85:41:19:d9:93:6d:5d:2b:1d:70:21:18:e3:b7:76:a5:
3b:ed:fb:0c:d3:3d:7b:a8:c1:a0:68:ba:6e:b3:84:6c:eb:40:
50:79:50:4b:1d:b1:67:e6:b6:25:49:d7:f7:fc:35:d3:7c:8a:
af:a6:e3:34:dd:bd:dc:95:f7:de:79:a2:8e:9d:5f:f0:98:f5:
29:57:11:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:35 2024 by rpki-client on console-ams.rpki-client.org