Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/64829d-a344-44d2-9e9d-1dd67c32b06a/1/Awr9iQYESpPEQCsogDhXzarbFpg.roa
File: Awr9iQYESpPEQCsogDhXzarbFpg.roa (raw, json)
Hash identifier: VRJCoCpZJI1IFkifvrA/6jz67Dj5Sx8wAEP04xQYlk0=
Subject key identifier: 03:0A:FD:89:06:04:4A:93:C4:40:2B:28:80:38:57:CD:AA:DB:16:98
Certificate issuer: /CN=85b8b21e4f5fbfdeb714d3e1b38a53817b5729ed
Certificate serial: 01856C65CB43FE4D8884F942554C1ABCDB4C
Authority key identifier: 85:B8:B2:1E:4F:5F:BF:DE:B7:14:D3:E1:B3:8A:53:81:7B:57:29:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hbiyHk9fv963FNPhs4pTgXtXKe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/64829d-a344-44d2-9e9d-1dd67c32b06a/1/Awr9iQYESpPEQCsogDhXzarbFpg.roa
Signing time: Sun 01 Jan 2023 08:14:48 +0000
ROA not before: Sun 01 Jan 2023 08:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 185.212.115.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:65:cb:43:fe:4d:88:84:f9:42:55:4c:1a:bc:db:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85b8b21e4f5fbfdeb714d3e1b38a53817b5729ed
Validity
Not Before: Jan 1 08:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=030afd8906044a93c4402b28803857cdaadb1698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7c:e0:49:be:0c:78:81:56:83:44:00:4d:a7:
f2:75:3e:1e:32:35:e8:ec:d6:00:69:ce:e3:c7:c2:
bf:4e:43:f3:ae:5f:c4:c9:cc:4c:c3:da:23:7e:c5:
d6:ff:78:39:5d:68:6b:87:ef:5d:c4:5c:05:2f:7e:
0b:c8:ff:c8:a5:40:16:81:1a:d3:b2:40:20:28:2a:
c2:fc:c2:93:2a:94:dc:ea:4e:36:49:db:8f:f0:c9:
f1:cd:93:c1:9f:f4:c1:88:68:6e:28:97:bd:dc:40:
77:b2:ea:5f:f1:17:4c:68:55:de:50:6e:84:f9:35:
89:31:61:b6:28:1a:74:4d:35:7d:12:b7:70:6d:7f:
1e:5f:14:40:b3:52:fb:af:37:92:33:d2:f1:c5:ca:
40:d9:2f:98:fc:79:1f:6f:ab:f0:3b:a5:be:11:28:
12:0c:19:ad:40:19:7d:17:e6:7c:b2:cb:30:61:c2:
cf:3c:0a:80:33:4c:95:0d:23:f2:00:06:cd:0c:c6:
93:c2:18:b6:98:53:64:47:2e:d6:12:d3:22:ec:c0:
8b:3d:05:47:85:36:11:e2:64:8c:d6:74:45:07:61:
c4:90:ab:4b:3d:6e:ad:6b:b1:99:49:bf:15:4b:6b:
04:04:cb:a0:44:2b:e7:f3:bb:ce:cd:10:20:27:88:
de:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:0A:FD:89:06:04:4A:93:C4:40:2B:28:80:38:57:CD:AA:DB:16:98
X509v3 Authority Key Identifier:
keyid:85:B8:B2:1E:4F:5F:BF:DE:B7:14:D3:E1:B3:8A:53:81:7B:57:29:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hbiyHk9fv963FNPhs4pTgXtXKe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/64829d-a344-44d2-9e9d-1dd67c32b06a/1/Awr9iQYESpPEQCsogDhXzarbFpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/64829d-a344-44d2-9e9d-1dd67c32b06a/1/hbiyHk9fv963FNPhs4pTgXtXKe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.115.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:b7:d1:3a:b4:ae:4d:db:89:c1:9c:e6:a4:da:fb:2e:ef:00:
fc:6f:1f:d2:0a:78:85:f6:68:13:37:7e:74:fa:ed:8b:86:17:
e5:c8:f5:ad:37:94:08:fe:87:0f:60:e5:3f:e1:db:9e:d5:4b:
f4:55:20:40:06:34:88:62:fd:fe:c6:c5:85:9a:8c:6b:b2:ef:
dd:52:d1:a2:a3:72:64:31:21:00:e3:de:6d:88:85:02:90:18:
10:07:f7:c6:4e:2c:2e:91:14:4d:30:93:54:23:9d:f4:33:33:
e7:24:71:ad:1e:a0:84:02:b1:29:6c:92:00:30:42:a3:31:24:
4f:03:a7:57:0b:6e:7a:a9:26:23:93:6d:f8:90:ef:1a:d5:4f:
c0:55:09:70:6b:6b:22:51:9f:40:20:c3:3e:f6:69:42:74:e0:
86:2e:59:ae:76:52:a3:43:0a:f7:b5:5c:52:5a:25:85:13:fa:
9c:b8:9b:d3:24:e0:91:94:af:73:07:81:45:96:79:d7:60:83:
f0:0b:c6:85:d1:5d:dc:df:0c:bc:88:68:da:ce:14:87:b4:4f:
fc:0f:bf:1a:4a:b6:e8:81:a6:19:36:dd:f2:60:f6:b6:54:e6:
9e:7c:8a:25:30:a3:f1:1a:3c:3b:4a:39:67:47:ee:60:1b:be:
68:db:c1:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:26 2024 by rpki-client on console-fra.rpki-client.org