Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/209f60-d57a-4ecb-a8c6-d2c1ddae69b1/1/1iOXTpZe4AT8tM0VFVznD8z_8Vg.roa
File: 1iOXTpZe4AT8tM0VFVznD8z_8Vg.roa (raw, json)
Hash identifier: EnSp37yCEJTOSI2/fnVuGedEX2/h7y0bhaJ48ASgZpY=
Subject key identifier: D6:23:97:4E:96:5E:E0:04:FC:B4:CD:15:15:5C:E7:0F:CC:FF:F1:58
Certificate issuer: /CN=78beb07e8965aace510f44353242c9cc4d51a237
Certificate serial: 01856F30219A27DA36830871AB8CCF24DCF8
Authority key identifier: 78:BE:B0:7E:89:65:AA:CE:51:0F:44:35:32:42:C9:CC:4D:51:A2:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eL6wfollqs5RD0Q1MkLJzE1Rojc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/209f60-d57a-4ecb-a8c6-d2c1ddae69b1/1/1iOXTpZe4AT8tM0VFVznD8z_8Vg.roa
Signing time: Sun 01 Jan 2023 21:15:03 +0000
ROA not before: Sun 01 Jan 2023 21:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 185.198.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:30:21:9a:27:da:36:83:08:71:ab:8c:cf:24:dc:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78beb07e8965aace510f44353242c9cc4d51a237
Validity
Not Before: Jan 1 21:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d623974e965ee004fcb4cd15155ce70fccfff158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:5c:df:6b:2b:33:f9:19:3e:8b:49:ae:35:c5:
be:ba:53:68:46:6e:90:3a:69:b8:72:46:af:0d:ea:
98:17:f4:6a:8e:d9:ec:84:3c:70:c3:c9:58:92:f4:
4e:cd:07:b1:47:92:59:cd:67:8e:c7:b8:a2:5b:2f:
df:2f:de:2c:25:aa:aa:75:c4:34:00:f3:55:dd:72:
a5:9e:42:41:43:6e:df:fd:d3:35:d0:b7:7d:16:71:
c1:b4:d3:54:1f:37:e0:54:b6:12:bd:ba:25:af:4d:
b7:a7:35:78:c6:06:75:7f:c9:36:96:eb:c3:41:bf:
a8:40:e4:ec:d6:6e:07:a0:d4:a4:93:ee:01:b1:a2:
b4:10:2a:8f:2e:7d:d8:5f:c0:7f:cc:58:f0:67:c6:
b0:1b:ce:07:15:48:89:35:71:b2:a5:ba:f3:53:e8:
34:b8:81:a7:1e:3c:a9:43:35:cf:65:50:68:15:b4:
32:71:94:af:8c:4d:4a:d0:56:55:2d:ea:45:6a:53:
16:28:c9:47:59:e8:7a:10:ed:fc:5b:b7:71:6d:07:
ab:9a:3c:f1:e7:3a:cb:0d:68:51:31:65:0b:ba:47:
01:75:a4:c4:45:7d:fa:96:26:3c:21:42:d9:94:cf:
28:c2:af:e4:8f:00:79:00:53:f4:17:57:70:53:fa:
e1:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:23:97:4E:96:5E:E0:04:FC:B4:CD:15:15:5C:E7:0F:CC:FF:F1:58
X509v3 Authority Key Identifier:
keyid:78:BE:B0:7E:89:65:AA:CE:51:0F:44:35:32:42:C9:CC:4D:51:A2:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eL6wfollqs5RD0Q1MkLJzE1Rojc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/209f60-d57a-4ecb-a8c6-d2c1ddae69b1/1/1iOXTpZe4AT8tM0VFVznD8z_8Vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/209f60-d57a-4ecb-a8c6-d2c1ddae69b1/1/eL6wfollqs5RD0Q1MkLJzE1Rojc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.153.0/24
Signature Algorithm: sha256WithRSAEncryption
56:f8:5c:ea:a5:d9:a8:31:3a:bd:51:8a:9b:da:81:10:61:83:
9c:bf:40:6d:6b:04:8b:f6:af:8a:7c:c1:1d:f9:e3:4c:c2:74:
f3:1e:72:a3:3e:44:aa:b9:47:f7:ba:23:d2:25:d8:84:87:88:
08:fa:65:8e:f0:5f:95:22:39:18:41:63:46:55:9a:dd:42:6e:
e1:bb:8d:ff:e7:65:8d:55:f5:bc:45:f7:1f:12:a5:e8:b1:8d:
41:c8:83:fe:7f:5d:6a:04:0b:76:bf:15:f6:56:1b:82:3b:48:
78:73:61:b6:f8:c2:b0:f9:6b:e2:2f:e4:f4:e0:ff:39:4e:a9:
53:f3:da:2b:2e:19:a2:c9:90:f5:ea:dc:3a:77:ca:56:69:60:
5d:56:d6:45:ad:8d:30:12:85:1d:a1:17:ee:58:ec:be:ae:04:
37:08:09:11:b6:b5:03:e0:8c:7a:ca:31:67:49:c1:bd:52:b6:
ae:42:b9:0b:5c:39:45:23:ca:91:12:f9:85:f4:62:13:ae:15:
50:1f:2e:aa:64:b0:24:f9:cd:d6:81:0b:dd:7d:4f:14:98:9f:
28:2f:4e:7c:9f:4e:cf:f0:0a:b6:5f:5d:dd:08:34:dd:41:20:
f0:d3:72:f9:40:1d:f3:9f:22:f6:4c:68:0d:3d:ae:32:f2:4e:
bc:23:68:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:44 2024 by rpki-client on console-ams.rpki-client.org