Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/d4652d-9d7d-451f-a58b-2e7dd2cf6f51/1/JbQujaJ_KrstSH4eGmMjbZAH5Zg.roa
File: JbQujaJ_KrstSH4eGmMjbZAH5Zg.roa (raw, json)
Hash identifier: a5EyCYhc1Gnml+PXVg6jwu42DZrIthVPyjuDpV+iEp0=
Subject key identifier: 25:B4:2E:8D:A2:7F:2A:BB:2D:48:7E:1E:1A:63:23:6D:90:07:E5:98
Certificate issuer: /CN=65e597f3ace516d6cf57ceff1606bbedaa382151
Certificate serial: 01857169ACCEA1DC4F96AEC49C3642908527
Authority key identifier: 65:E5:97:F3:AC:E5:16:D6:CF:57:CE:FF:16:06:BB:ED:AA:38:21:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZeWX86zlFtbPV87_Fga77ao4IVE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/d4652d-9d7d-451f-a58b-2e7dd2cf6f51/1/JbQujaJ_KrstSH4eGmMjbZAH5Zg.roa
Signing time: Mon 02 Jan 2023 07:37:08 +0000
ROA not before: Mon 02 Jan 2023 07:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44477
IP address blocks: 185.218.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:ac:ce:a1:dc:4f:96:ae:c4:9c:36:42:90:85:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65e597f3ace516d6cf57ceff1606bbedaa382151
Validity
Not Before: Jan 2 07:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=25b42e8da27f2abb2d487e1e1a63236d9007e598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b9:75:9e:d2:7e:53:3f:cb:e9:df:6b:d9:7c:
34:93:ae:12:9c:4b:63:0b:13:cb:66:bb:79:9d:3a:
08:ff:8f:11:13:bf:58:42:8f:b5:a4:be:56:6b:f5:
30:2f:25:c1:68:a1:dd:e7:45:a4:e6:d8:da:c0:3a:
25:56:1d:77:17:14:18:cc:c9:bd:3f:56:99:9e:a3:
f9:45:57:4e:cb:78:90:73:98:10:27:94:6f:9f:2f:
f2:5c:da:0d:f6:63:5b:22:e1:3a:9b:0a:58:10:90:
0e:61:14:a6:4e:64:76:f4:ae:89:23:7c:a3:a0:88:
b3:8a:db:15:5f:61:8e:a6:ab:7d:12:9c:b1:95:ef:
d0:f1:54:ec:fb:3a:c1:94:fb:03:30:b1:e8:42:09:
77:6d:23:ad:3a:dd:6d:05:36:ea:48:56:ec:97:84:
18:d8:ce:71:ae:ec:9e:e3:3c:8d:d3:23:b5:60:21:
55:60:64:ad:d8:42:1c:c3:09:27:c2:79:23:eb:20:
0b:6f:4b:3e:e7:32:46:c1:f7:27:9d:55:00:c0:f1:
20:31:27:f5:c8:ac:da:47:be:54:50:68:c0:71:45:
68:71:6b:67:ff:8b:e7:c3:83:7d:9f:1a:92:f0:06:
d4:db:67:5c:8e:63:09:41:6e:15:9c:4f:8e:37:47:
40:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:B4:2E:8D:A2:7F:2A:BB:2D:48:7E:1E:1A:63:23:6D:90:07:E5:98
X509v3 Authority Key Identifier:
keyid:65:E5:97:F3:AC:E5:16:D6:CF:57:CE:FF:16:06:BB:ED:AA:38:21:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZeWX86zlFtbPV87_Fga77ao4IVE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d4652d-9d7d-451f-a58b-2e7dd2cf6f51/1/JbQujaJ_KrstSH4eGmMjbZAH5Zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/d4652d-9d7d-451f-a58b-2e7dd2cf6f51/1/ZeWX86zlFtbPV87_Fga77ao4IVE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.3.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:26:af:0b:29:1b:50:ac:53:cb:7f:d8:b2:ac:d4:77:41:54:
53:f7:8e:4a:43:d2:66:ee:63:94:24:61:05:39:b9:4e:e0:24:
a0:f2:b6:23:c0:ea:60:a0:6c:13:43:97:87:7b:63:eb:1f:d0:
34:16:21:fd:1c:96:17:bb:a7:ad:89:88:dc:4f:d3:b0:3e:f9:
cd:bd:5e:d8:87:01:09:38:c5:45:5c:b5:e3:7e:12:44:0d:11:
a8:db:9a:2c:ca:9c:45:2a:75:ba:84:c0:66:2a:97:32:81:12:
ce:6d:b6:e1:4d:67:82:cd:04:8b:58:79:dc:94:2e:ac:db:e2:
e7:47:69:79:a6:03:e0:11:72:83:a3:1b:fc:f5:86:e7:fd:ac:
70:00:75:3e:6d:f2:7b:37:4a:7b:76:ee:9c:ec:76:a6:e7:0d:
85:22:8c:9c:3e:09:0f:7a:1b:c2:16:3f:c5:ae:ed:a2:7f:e4:
55:96:a4:af:ba:c5:2c:59:c5:07:a0:d1:0c:41:e9:1c:8c:ca:
d6:7e:01:59:3e:0a:d1:c0:c8:c7:9a:11:43:ca:2e:2a:ba:d1:
ae:94:2b:fa:6d:b4:b7:ce:cc:22:0f:1a:9e:36:21:2f:5c:0d:
aa:47:43:2d:9d:59:80:60:8f:b8:69:ba:f0:f7:35:ac:9d:4e:
0c:b0:5b:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:53 2024 by rpki-client on console-ams.rpki-client.org