Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/963192-9b60-4f5f-821e-2e686bc79c0e/1/p0z4KnKOB1rOKHOYrqEwNECAxYI.roa
File: p0z4KnKOB1rOKHOYrqEwNECAxYI.roa (raw, json)
Hash identifier: K6+CUwQTDcg+J3JmrhMl7g+OrLn1CZaaS7pjcxKxF5Y=
Subject key identifier: A7:4C:F8:2A:72:8E:07:5A:CE:28:73:98:AE:A1:30:34:40:80:C5:82
Certificate issuer: /CN=d592cb39d4f644e4cd0adfd299282e54c3995195
Certificate serial: 01856C93A1C3978254E6E86A979A09A8164A
Authority key identifier: D5:92:CB:39:D4:F6:44:E4:CD:0A:DF:D2:99:28:2E:54:C3:99:51:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ZLLOdT2ROTNCt_SmSguVMOZUZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/963192-9b60-4f5f-821e-2e686bc79c0e/1/p0z4KnKOB1rOKHOYrqEwNECAxYI.roa
Signing time: Sun 01 Jan 2023 09:04:52 +0000
ROA not before: Sun 01 Jan 2023 09:04:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211094
IP address blocks: 185.240.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:93:a1:c3:97:82:54:e6:e8:6a:97:9a:09:a8:16:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d592cb39d4f644e4cd0adfd299282e54c3995195
Validity
Not Before: Jan 1 09:04:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a74cf82a728e075ace287398aea130344080c582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:58:43:06:0f:d6:30:7a:d1:31:bf:4a:af:3f:
5e:00:f0:b5:71:31:f4:fb:78:98:c9:85:8a:5d:c5:
d4:b6:f0:db:af:62:0a:be:d8:b6:89:da:e1:ed:05:
80:cc:77:bb:29:6f:f2:c8:da:61:b5:48:a9:10:b0:
44:9b:64:60:0d:9e:d0:62:4c:3b:ac:1f:2c:69:3e:
5d:42:f1:69:49:aa:81:51:c3:d7:02:40:70:69:d9:
81:20:31:f9:77:b4:e5:92:68:73:3f:16:71:a2:25:
d6:19:2b:26:8d:80:9a:5b:0b:e7:e1:6b:89:a4:03:
0e:e7:d2:49:69:be:01:e2:16:6d:40:58:b6:78:ff:
f8:bb:54:41:14:25:51:3d:09:bf:6b:5e:d9:22:fa:
3f:68:7b:87:91:67:f5:dc:50:71:f1:c2:1a:57:95:
e5:48:d3:31:33:5f:bb:70:f0:c3:8a:94:ae:99:ed:
07:84:cc:9c:bf:d1:1e:c7:7f:28:c6:b9:9e:73:d0:
53:a5:74:cc:b6:fd:15:98:2d:6c:45:33:38:1e:36:
3c:4c:f7:b6:53:c6:62:e7:64:de:9b:d9:b6:3c:94:
c6:7a:2c:b2:bd:53:ea:5d:fd:8c:70:f2:1a:a7:3b:
5f:3f:f0:05:94:e8:14:9f:84:82:5a:74:55:ef:23:
e7:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:4C:F8:2A:72:8E:07:5A:CE:28:73:98:AE:A1:30:34:40:80:C5:82
X509v3 Authority Key Identifier:
keyid:D5:92:CB:39:D4:F6:44:E4:CD:0A:DF:D2:99:28:2E:54:C3:99:51:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ZLLOdT2ROTNCt_SmSguVMOZUZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/963192-9b60-4f5f-821e-2e686bc79c0e/1/p0z4KnKOB1rOKHOYrqEwNECAxYI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/963192-9b60-4f5f-821e-2e686bc79c0e/1/1ZLLOdT2ROTNCt_SmSguVMOZUZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.240.0/24
Signature Algorithm: sha256WithRSAEncryption
69:f4:cd:88:d4:db:29:1d:18:61:1c:d5:28:73:73:f7:b1:3a:
f4:74:02:c7:0a:6e:8d:87:8d:c2:b6:c1:a8:c5:8a:80:dc:a2:
9c:15:3b:bd:65:aa:28:51:7a:88:71:72:4c:49:33:d7:5b:17:
56:f0:10:3a:b6:41:9a:19:9e:66:81:1b:99:5e:f4:a3:c7:1d:
01:17:d1:a1:bf:b8:1e:6c:91:89:17:9a:bb:53:10:9e:ce:c2:
95:b9:47:c0:28:9f:6f:ae:69:b9:9d:ff:81:78:9e:af:34:de:
91:38:6d:ed:6a:8d:b8:82:f6:d1:e3:a2:9c:25:fc:2f:c3:84:
0b:fd:55:8f:56:a0:4f:0a:26:ea:5b:aa:0d:2f:ee:67:a9:1f:
99:07:d0:d8:03:e4:3b:cd:87:3c:db:5f:e0:d7:03:cb:f7:0d:
16:6e:f4:c9:96:ac:fc:ef:b7:26:1f:07:42:41:51:e4:4b:07:
3a:ed:ec:53:98:09:e0:73:6e:f9:71:24:d7:2f:f1:cb:b5:8d:
94:4d:12:37:18:82:50:3e:be:d0:3a:60:95:24:e4:ce:ef:7a:
5b:cb:0a:95:ff:63:51:53:1e:4d:a9:51:9f:ef:70:bb:bd:65:
99:0f:ea:54:f1:78:85:91:49:99:78:b2:cd:9e:5a:51:12:92:
d4:31:f6:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:31 2023 by rpki-client on console-fra.rpki-client.org