Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/dea22b-0587-4a2c-a7f5-a6f0f8637cc0/1/UktXNOUqSvfzkSFh3kdwLDAPDO4.roa
File: UktXNOUqSvfzkSFh3kdwLDAPDO4.roa (raw, json)
Hash identifier: oE1zZse9WEIQW9gYiUwq0hPpypHimhyNAK/8WMeKmSg=
Subject key identifier: 52:4B:57:34:E5:2A:4A:F7:F3:91:21:61:DE:47:70:2C:30:0F:0C:EE
Certificate issuer: /CN=41b502a16de3458db7e830591f2841fd9483c69a
Certificate serial: 0185868B2094EC5308CB138BF3849CCE1017
Authority key identifier: 41:B5:02:A1:6D:E3:45:8D:B7:E8:30:59:1F:28:41:FD:94:83:C6:9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QbUCoW3jRY236DBZHyhB_ZSDxpo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/dea22b-0587-4a2c-a7f5-a6f0f8637cc0/1/UktXNOUqSvfzkSFh3kdwLDAPDO4.roa
Signing time: Fri 06 Jan 2023 10:05:42 +0000
ROA not before: Fri 06 Jan 2023 10:05:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60233
IP address blocks: 185.47.252.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:86:8b:20:94:ec:53:08:cb:13:8b:f3:84:9c:ce:10:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41b502a16de3458db7e830591f2841fd9483c69a
Validity
Not Before: Jan 6 10:05:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=524b5734e52a4af7f3912161de47702c300f0cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:20:21:42:90:9a:8d:c0:17:f9:c6:20:6f:ab:
c0:2d:ba:29:8a:84:05:93:21:e5:9f:71:e7:4e:f6:
dd:cd:1e:58:af:26:9a:e8:3e:7a:67:9c:6e:e2:1f:
92:f1:35:c7:d4:5b:83:bc:6e:32:98:6e:9c:5a:51:
be:70:12:26:80:19:ba:4e:4f:34:fe:78:9c:67:df:
d5:9e:1c:b6:78:2f:42:6b:45:a4:88:3f:75:b5:fd:
8c:ea:01:f4:3c:a5:98:2a:60:06:dc:eb:d3:1c:76:
e8:6b:14:04:c4:c9:63:29:d6:bb:c5:35:ce:ad:3e:
5b:38:ff:95:2a:fa:fd:78:27:43:c4:b7:30:21:d3:
0d:f7:de:93:e3:91:af:85:01:c0:af:a8:07:66:fa:
13:22:7f:cb:f2:e6:9e:b8:51:64:f5:f4:19:2e:4d:
5c:6c:c4:1f:1b:cb:c2:81:bd:1c:85:aa:6d:8d:4e:
d4:d1:4a:bb:7e:de:0a:c8:36:06:7d:bb:b6:2f:18:
91:60:f6:a2:d6:57:b7:07:42:b2:9a:6d:62:11:24:
b8:b7:0c:27:08:ec:43:ce:4c:6a:66:e9:a1:2f:42:
d3:72:0c:9c:8b:b1:91:b2:21:9c:cc:e0:29:c4:42:
51:2c:fa:4d:9a:47:0d:61:b0:4e:58:dd:9f:31:bb:
0e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:4B:57:34:E5:2A:4A:F7:F3:91:21:61:DE:47:70:2C:30:0F:0C:EE
X509v3 Authority Key Identifier:
keyid:41:B5:02:A1:6D:E3:45:8D:B7:E8:30:59:1F:28:41:FD:94:83:C6:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QbUCoW3jRY236DBZHyhB_ZSDxpo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/dea22b-0587-4a2c-a7f5-a6f0f8637cc0/1/UktXNOUqSvfzkSFh3kdwLDAPDO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/dea22b-0587-4a2c-a7f5-a6f0f8637cc0/1/QbUCoW3jRY236DBZHyhB_ZSDxpo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.47.252.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:78:18:f3:70:41:9b:59:c6:c2:74:4e:b9:8a:a0:7b:43:7a:
2d:23:1b:c9:ac:76:4b:1d:8a:30:69:de:a0:f5:ec:02:d4:68:
07:20:1f:87:c3:e1:94:f7:01:29:94:4c:d1:9d:37:a1:d8:85:
46:d5:51:65:a6:9d:83:07:16:66:ce:0d:f1:31:0c:dd:14:63:
9a:60:e0:d8:bb:a2:08:0a:c9:bf:bb:3b:fa:4d:7f:a0:4a:f0:
28:aa:14:f2:1c:48:00:35:48:45:88:4d:ec:d3:33:48:02:f6:
e2:ad:c1:37:0c:36:84:1a:ef:03:52:a9:d1:7b:82:64:4a:e3:
75:41:c0:5a:61:e7:a5:f6:b5:e7:32:79:c1:59:5a:64:00:e9:
e2:04:bb:53:bf:c8:f1:1d:d4:20:79:3f:c7:bf:e0:64:22:7f:
ec:9f:36:2a:8e:43:51:2a:63:d8:53:82:4a:35:fe:08:38:fe:
28:97:b8:85:b7:0a:59:e3:f8:b6:fc:df:a7:2c:37:81:44:e5:
17:10:c9:ac:2b:60:40:43:71:7a:a2:f6:2f:6f:6a:44:c2:6f:
5e:7a:e1:8c:a5:85:3e:54:7c:72:94:e4:9f:d2:0d:75:d7:b0:
0d:9a:31:a8:44:6f:ef:e7:c5:39:d5:8e:d7:a3:cc:86:cd:4e:
25:ad:da:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:22 2024 by rpki-client on console-ams.rpki-client.org