Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/310378-5575-4619-bd6f-07fb08f31afd/1/E1qJGBGvynWE8jhy0fgrXo1gE40.roa
File: E1qJGBGvynWE8jhy0fgrXo1gE40.roa (raw, json)
Hash identifier: TBPY+uup0K/aONoa0ypa43MlnxAZWdKd5KKmfNwJH50=
Subject key identifier: 13:5A:89:18:11:AF:CA:75:84:F2:38:72:D1:F8:2B:5E:8D:60:13:8D
Certificate issuer: /CN=619480444f41e7f89b3c9d775c01690e14bbc553
Certificate serial: 018EC38C
Authority key identifier: 61:94:80:44:4F:41:E7:F8:9B:3C:9D:77:5C:01:69:0E:14:BB:C5:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YZSARE9B5_ibPJ13XAFpDhS7xVM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/310378-5575-4619-bd6f-07fb08f31afd/1/E1qJGBGvynWE8jhy0fgrXo1gE40.roa
Signing time: Sat 01 Jan 2022 03:58:54 +0000
ROA not before: Sat 01 Jan 2022 03:58:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211142
IP address blocks: 185.83.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26133388 (0x18ec38c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=619480444f41e7f89b3c9d775c01690e14bbc553
Validity
Not Before: Jan 1 03:58:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=135a891811afca7584f23872d1f82b5e8d60138d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:77:e8:a8:2b:96:01:3a:f7:50:32:cb:6d:cc:
fe:11:f4:ca:54:bc:fb:80:cf:fe:b3:32:03:18:8d:
fd:94:e3:1f:f4:d6:1a:3a:91:38:35:47:1f:78:9d:
b0:2f:13:9d:07:16:b8:23:8c:43:3b:fd:1f:e5:cf:
bc:b4:5f:fc:28:2f:1f:6f:d0:2e:3a:17:87:18:c0:
f9:f7:e1:d7:af:e9:8b:b9:6b:2e:5d:79:02:23:6e:
9e:d8:70:6c:68:b4:3d:ff:40:2a:63:a2:27:35:cc:
93:ac:d5:da:68:a9:a0:a7:b7:82:1d:ec:b5:fb:05:
78:68:58:77:f6:3e:e8:ec:be:ef:32:ec:a5:94:dc:
d1:03:11:b3:5a:b2:f9:ea:d5:27:98:97:9b:5e:22:
b4:6f:f4:9c:77:db:3d:e2:5f:23:a8:43:8c:6b:8f:
0b:42:97:5e:0d:01:80:87:30:b0:1c:e1:18:ae:49:
06:3e:6b:d5:f2:f5:ca:10:3c:2d:33:9a:bc:c2:03:
b7:e8:fe:4f:48:9b:42:ad:b5:45:dc:26:92:fa:66:
ad:7a:d1:25:f9:d1:76:fb:97:c9:24:b6:c7:15:33:
8e:3b:51:aa:d8:be:0f:29:3a:b0:6f:92:84:a9:af:
02:5c:92:5e:92:5d:c9:78:c9:57:47:f0:4c:f9:04:
81:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:5A:89:18:11:AF:CA:75:84:F2:38:72:D1:F8:2B:5E:8D:60:13:8D
X509v3 Authority Key Identifier:
keyid:61:94:80:44:4F:41:E7:F8:9B:3C:9D:77:5C:01:69:0E:14:BB:C5:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YZSARE9B5_ibPJ13XAFpDhS7xVM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/310378-5575-4619-bd6f-07fb08f31afd/1/E1qJGBGvynWE8jhy0fgrXo1gE40.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/310378-5575-4619-bd6f-07fb08f31afd/1/YZSARE9B5_ibPJ13XAFpDhS7xVM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.229.0/24
Signature Algorithm: sha256WithRSAEncryption
11:f3:5a:20:e1:f8:ec:ff:89:a7:20:e4:ec:d9:57:bc:ef:72:
69:6c:43:3c:7c:3b:8f:97:8d:38:37:35:3d:02:8f:bf:79:a5:
2a:4e:93:c8:4a:3c:cc:4c:4d:c2:da:9a:00:df:e6:09:59:84:
93:ec:af:df:97:f4:e3:1e:75:70:78:0a:17:b6:4f:79:d7:65:
63:1f:e4:51:4c:a2:4b:af:c5:43:92:a1:73:65:52:52:74:ef:
85:e0:72:06:f7:35:47:58:bc:41:8e:dd:78:6e:f5:2a:70:bf:
90:e0:89:69:c1:0e:9c:eb:71:bb:ec:b2:dd:e0:59:78:ac:e9:
e4:3b:fd:6c:67:12:7b:38:95:dd:d9:da:dc:e4:f8:8b:79:ba:
a1:8a:7e:b1:3a:b9:b1:41:43:49:61:d1:3b:fd:af:b8:a8:66:
08:5d:be:64:24:fb:97:66:a8:ae:8e:79:a1:5e:4e:9f:74:45:
56:06:48:e1:21:c9:54:ff:31:16:a9:cd:38:bf:e9:87:b2:bc:
00:ef:c0:c1:f4:7c:64:0d:d9:93:95:e7:47:f4:a4:f6:92:c5:
13:61:5b:7f:1d:81:3e:33:6d:b1:e2:4c:ac:3b:ac:9b:8b:8a:
9b:1d:96:84:98:96:ac:19:e4:cf:37:60:c9:6a:3a:2d:f8:8b:
aa:a6:49:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:47 2024 by rpki-client on console-fra.rpki-client.org