Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/951c4a-b053-4b73-986e-141faeeca25b/1/3ekLFsvVEArG9raOyPRbgW3Aeoc.roa
File: 3ekLFsvVEArG9raOyPRbgW3Aeoc.roa (raw, json)
Hash identifier: AiW7/mkZ0Cmt5eclmxkMalT4b38ND+Ih4X3qiOd7NOM=
Subject key identifier: DD:E9:0B:16:CB:D5:10:0A:C6:F6:B6:8E:C8:F4:5B:81:6D:C0:7A:87
Certificate issuer: /CN=63c088eadc52cc6d35a7fb765182080a7446f76a
Certificate serial: 01856F300D8652EF9D631260AA681A2C6560
Authority key identifier: 63:C0:88:EA:DC:52:CC:6D:35:A7:FB:76:51:82:08:0A:74:46:F7:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y8CI6txSzG01p_t2UYIICnRG92o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/951c4a-b053-4b73-986e-141faeeca25b/1/3ekLFsvVEArG9raOyPRbgW3Aeoc.roa
Signing time: Sun 01 Jan 2023 21:14:58 +0000
ROA not before: Sun 01 Jan 2023 21:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 39855
IP address blocks: 185.198.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:0d:86:52:ef:9d:63:12:60:aa:68:1a:2c:65:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63c088eadc52cc6d35a7fb765182080a7446f76a
Validity
Not Before: Jan 1 21:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=dde90b16cbd5100ac6f6b68ec8f45b816dc07a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:09:42:8a:af:b5:30:cc:6e:1f:36:43:25:16:
94:c0:81:db:b6:6f:98:08:70:c4:c8:8a:b4:ae:72:
bc:9e:ed:35:0a:7b:94:3e:10:a3:17:f9:44:7f:5e:
6f:94:d2:0b:bb:2a:e1:fb:8f:ce:41:96:e5:b7:d0:
24:8d:e3:a5:b7:fe:20:b8:1a:7b:2e:a2:35:d9:86:
cb:6f:1d:99:ee:5e:1a:b6:bc:5d:21:08:d1:0b:9a:
bd:26:8c:ac:4a:1e:de:a3:b7:ea:42:3c:7d:5a:45:
51:4a:7e:d8:c1:8a:71:58:b7:2e:82:7d:5d:bb:77:
1f:31:db:eb:97:f4:52:d5:4d:f8:cd:02:ca:60:29:
ee:2b:8a:85:97:7a:ab:cb:b8:d4:5c:47:49:d6:4f:
55:98:94:11:a3:8a:80:3b:52:e6:4c:68:9b:43:50:
24:b6:4d:8b:45:58:7a:c6:65:6a:76:d6:ed:a3:de:
d1:73:49:65:50:ac:a4:ee:d3:56:42:09:9e:38:65:
c0:d2:13:70:ee:39:00:95:67:8d:f9:1c:aa:f8:fb:
8d:b1:84:04:9b:06:5c:bb:8b:49:2a:65:cb:ab:0a:
99:4c:29:aa:25:a7:b0:eb:cf:f4:40:79:07:33:30:
a6:cb:0c:c7:76:9e:de:89:df:ea:9a:56:5a:f2:69:
db:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:E9:0B:16:CB:D5:10:0A:C6:F6:B6:8E:C8:F4:5B:81:6D:C0:7A:87
X509v3 Authority Key Identifier:
keyid:63:C0:88:EA:DC:52:CC:6D:35:A7:FB:76:51:82:08:0A:74:46:F7:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y8CI6txSzG01p_t2UYIICnRG92o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/951c4a-b053-4b73-986e-141faeeca25b/1/3ekLFsvVEArG9raOyPRbgW3Aeoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/951c4a-b053-4b73-986e-141faeeca25b/1/Y8CI6txSzG01p_t2UYIICnRG92o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.155.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:2f:47:2b:a0:d0:73:8c:f8:cc:79:68:19:b0:75:d5:0a:8e:
fc:a3:be:7a:b7:1c:ac:a6:16:c8:28:82:e8:94:ae:0f:7a:68:
96:e3:4d:9f:6d:73:87:5b:a5:1e:cf:4c:64:24:71:cc:38:61:
85:61:59:81:27:44:85:23:04:37:b4:5f:38:e6:34:d3:ec:e0:
40:0e:be:2b:3a:7d:11:d7:58:8f:a1:97:56:53:59:bd:48:80:
ee:cb:3a:18:c9:d3:f3:ae:e7:75:26:b8:a5:6c:f6:31:d8:41:
0a:23:1f:6a:d1:bc:54:ab:7e:a1:0d:cb:a3:21:f8:f0:5b:85:
34:1b:5b:2e:72:41:5b:e9:17:40:e8:ba:a8:9b:c1:1e:13:d7:
4e:0e:35:a1:29:e4:4f:3b:2c:4b:bf:66:7d:20:60:57:6b:a1:
a6:5d:7e:af:a3:85:c7:76:2d:25:79:cd:fd:7c:c8:54:68:7e:
96:11:3a:3b:15:46:33:68:df:bf:ed:0a:30:af:ca:f6:e1:1c:
f3:db:91:ca:c6:94:f0:cd:fe:11:69:ec:6d:d2:02:49:cc:af:
47:b4:9f:47:5c:8d:50:8b:bb:b4:a3:f3:09:5d:b8:27:0f:2e:
11:10:77:5b:82:6b:bb:69:b4:ac:c5:00:5f:dd:b6:a7:a2:48:
ea:28:ff:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:46 2024 by rpki-client on console-ams.rpki-client.org