Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/209f60-d57a-4ecb-a8c6-d2c1ddae69b1/1/QXXFIYAWsMHr2-QgbZmv9pfTOUM.roa
File: QXXFIYAWsMHr2-QgbZmv9pfTOUM.roa (raw, json)
Hash identifier: xxg00AZaGngjsUMViKDuChjgFK+r+O7cgmqCYrgiRKE=
Subject key identifier: 41:75:C5:21:80:16:B0:C1:EB:DB:E4:20:6D:99:AF:F6:97:D3:39:43
Certificate issuer: /CN=78beb07e8965aace510f44353242c9cc4d51a237
Certificate serial: 018CC5001A95ADCA16AD9C090556ACF81CCB
Authority key identifier: 78:BE:B0:7E:89:65:AA:CE:51:0F:44:35:32:42:C9:CC:4D:51:A2:37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eL6wfollqs5RD0Q1MkLJzE1Rojc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/209f60-d57a-4ecb-a8c6-d2c1ddae69b1/1/QXXFIYAWsMHr2-QgbZmv9pfTOUM.roa
Signing time: Mon 01 Jan 2024 12:29:27 +0000
ROA not before: Mon 01 Jan 2024 12:29:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58061
IP address blocks: 185.198.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:1a:95:ad:ca:16:ad:9c:09:05:56:ac:f8:1c:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=78beb07e8965aace510f44353242c9cc4d51a237
Validity
Not Before: Jan 1 12:29:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4175c5218016b0c1ebdbe4206d99aff697d33943
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:28:d8:4f:c1:e2:ad:d9:2a:e1:16:76:48:5f:
1d:0b:98:2d:2f:a5:d1:d2:7a:fe:8e:06:f5:6e:c8:
46:2b:5e:52:ae:13:4e:29:15:4f:e4:bb:bf:49:e4:
58:a2:bd:79:d5:76:51:0d:c6:1f:45:62:4c:cc:99:
ae:76:9a:9c:d0:02:31:eb:8c:af:7f:92:71:04:8f:
f9:20:cc:1a:22:e8:8f:db:48:e1:f9:a4:9a:0a:84:
2a:a5:75:28:1d:d8:14:bc:80:dc:5e:8a:7a:b9:8a:
ed:54:3b:23:6c:7e:86:32:c5:19:b6:26:50:df:76:
8f:01:c6:3b:02:1a:19:2c:50:d6:f4:51:f2:79:33:
c2:06:98:78:92:50:fd:37:d2:f5:a9:7f:75:73:66:
15:a3:19:22:42:24:ca:a3:b2:e7:d0:b8:9a:2c:95:
d6:5c:83:05:d6:fe:d3:6a:26:87:52:c8:19:4e:31:
31:d0:0b:ca:15:20:21:55:a9:d1:35:6c:dd:9c:31:
e8:93:99:e7:6d:0c:29:dd:f2:a3:d4:cb:5e:31:6d:
58:39:bd:5e:e6:94:a5:8f:81:b6:92:25:63:38:0d:
45:c4:75:7d:b7:c0:cc:3b:3a:52:c0:0a:7f:fb:2f:
f0:9b:d0:09:6e:75:ae:df:3d:6c:a2:b0:b4:e7:1e:
4b:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:75:C5:21:80:16:B0:C1:EB:DB:E4:20:6D:99:AF:F6:97:D3:39:43
X509v3 Authority Key Identifier:
keyid:78:BE:B0:7E:89:65:AA:CE:51:0F:44:35:32:42:C9:CC:4D:51:A2:37
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eL6wfollqs5RD0Q1MkLJzE1Rojc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/209f60-d57a-4ecb-a8c6-d2c1ddae69b1/1/QXXFIYAWsMHr2-QgbZmv9pfTOUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/209f60-d57a-4ecb-a8c6-d2c1ddae69b1/1/eL6wfollqs5RD0Q1MkLJzE1Rojc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.198.153.0/24
Signature Algorithm: sha256WithRSAEncryption
07:3b:0d:c1:ef:f9:fa:ac:54:0c:36:7a:15:b6:b9:4e:05:e6:
41:e4:2e:8b:83:4d:68:b2:31:12:89:65:a5:f2:d2:cd:1d:47:
cb:6a:3b:86:ed:93:73:5e:56:a6:2f:ef:59:5a:02:ce:ec:5b:
c9:5b:b2:20:8d:06:b6:e6:52:65:de:ed:8e:01:49:f2:2d:00:
af:0f:68:1c:ec:bd:48:e2:b6:ef:14:54:b2:14:10:3c:59:60:
2d:11:0e:9c:a3:fe:85:4a:4a:68:e9:71:f0:10:72:79:86:3a:
51:73:d2:7c:9f:4d:c8:33:c2:49:5b:44:89:f8:69:43:44:be:
7a:68:3a:26:59:a2:c8:2b:50:a2:be:4b:e3:59:0f:fb:0d:ed:
c8:23:8c:4a:d2:b1:cd:b3:a1:b1:93:da:8e:3a:f0:a5:b0:44:
99:3b:27:06:cd:cd:ec:b8:45:00:54:3e:4c:2b:10:11:81:29:
91:62:f3:e9:76:6a:01:ff:80:06:c5:43:47:c6:47:24:b3:34:
97:51:e2:db:d8:ff:f9:0c:fc:bd:a3:f7:ae:cf:a3:3a:e6:77:
48:49:60:49:f6:5d:cc:7c:49:fe:6e:dc:ea:3b:46:ae:0b:e0:
c9:47:60:34:e0:de:3c:2b:f1:72:54:b4:6b:9c:c4:33:0e:fa:
95:3a:4c:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:44 2024 by rpki-client on console-ams.rpki-client.org