Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/07ac9f-7b4c-44fd-964e-c3409ec161b7/1/rkEhEQoYoAxSTOXGELQWlZbgOzY.roa
File: rkEhEQoYoAxSTOXGELQWlZbgOzY.roa (raw, json)
Hash identifier: a3453bzPTp59yFqPg0ZgT9bz23PsRHhYAQBzfMFlXpc=
Subject key identifier: AE:41:21:11:0A:18:A0:0C:52:4C:E5:C6:10:B4:16:95:96:E0:3B:36
Certificate issuer: /CN=3daa5d24dcbe5862e82e4f5cd5134f9e5c23c258
Certificate serial: 01858740622671B13DD8B2B00211A86B4AF5
Authority key identifier: 3D:AA:5D:24:DC:BE:58:62:E8:2E:4F:5C:D5:13:4F:9E:5C:23:C2:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PapdJNy-WGLoLk9c1RNPnlwjwlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/07ac9f-7b4c-44fd-964e-c3409ec161b7/1/rkEhEQoYoAxSTOXGELQWlZbgOzY.roa
Signing time: Fri 06 Jan 2023 13:23:41 +0000
ROA not before: Fri 06 Jan 2023 13:23:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35047
IP address blocks: 185.9.44.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:87:40:62:26:71:b1:3d:d8:b2:b0:02:11:a8:6b:4a:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3daa5d24dcbe5862e82e4f5cd5134f9e5c23c258
Validity
Not Before: Jan 6 13:23:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ae4121110a18a00c524ce5c610b4169596e03b36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:5e:3b:9f:2a:bf:df:50:d8:c6:43:ba:13:69:
12:db:5f:d7:9e:ef:5e:c4:66:7a:11:37:5f:90:9e:
71:2d:20:04:7f:05:36:ad:54:8b:72:0e:bd:d7:a2:
c2:0f:7d:e5:1c:da:0c:de:1b:36:da:ef:aa:69:d8:
7f:c0:79:ea:bf:70:3e:35:c0:f6:9f:f5:70:34:7f:
18:31:20:af:18:2a:bd:ef:92:30:fa:d9:16:f8:7c:
a7:fa:b8:9f:1a:8a:e8:df:6a:6b:7b:74:58:4a:f9:
76:ba:64:da:d5:47:3e:63:ff:20:e6:51:be:16:d5:
9c:fa:4f:3d:f1:c6:43:39:a1:51:3e:08:f6:28:1a:
d0:9e:79:3e:3a:8a:91:80:59:2c:63:86:dd:90:43:
72:f4:b1:51:df:38:08:37:03:f5:f1:29:a5:38:98:
e6:b3:8e:ba:7e:bd:66:1d:34:d8:a6:27:3c:63:a7:
fb:2b:0b:eb:75:95:15:f8:5c:76:25:c5:e9:cb:5f:
81:d0:12:af:9d:f9:0d:20:e3:15:a3:d6:57:fa:12:
39:31:28:f6:70:ed:b7:94:02:3b:8a:95:eb:da:65:
62:06:af:7c:9e:8b:be:c5:41:93:ae:b3:ef:92:b5:
35:e5:46:3b:10:99:e4:7c:a5:a7:40:30:ab:ba:04:
08:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:41:21:11:0A:18:A0:0C:52:4C:E5:C6:10:B4:16:95:96:E0:3B:36
X509v3 Authority Key Identifier:
keyid:3D:AA:5D:24:DC:BE:58:62:E8:2E:4F:5C:D5:13:4F:9E:5C:23:C2:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PapdJNy-WGLoLk9c1RNPnlwjwlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/07ac9f-7b4c-44fd-964e-c3409ec161b7/1/rkEhEQoYoAxSTOXGELQWlZbgOzY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/07ac9f-7b4c-44fd-964e-c3409ec161b7/1/PapdJNy-WGLoLk9c1RNPnlwjwlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.9.44.0/22
Signature Algorithm: sha256WithRSAEncryption
38:0e:85:ad:e9:8f:fa:d3:fc:59:1e:67:12:37:16:8a:ae:3d:
bf:19:1c:b9:9a:ec:70:26:ce:d5:26:5a:6b:7f:03:c0:a6:8f:
40:82:9e:32:c0:c8:9c:84:85:c1:9e:9e:31:d4:02:86:54:ed:
db:64:0f:53:b6:7c:56:ad:56:b8:c1:0f:17:45:23:3d:42:3d:
6b:82:ab:78:c3:52:a5:16:bf:55:47:50:ef:ab:21:a0:b7:53:
40:f3:e5:d9:29:19:b1:7e:72:dc:83:98:7b:7d:f7:f8:0b:c9:
fe:de:61:8e:9b:79:7a:d4:30:d6:e3:f7:0d:17:51:0b:73:20:
ca:f2:b9:e2:ef:1d:17:c0:88:ab:5e:06:27:e2:61:2e:16:e2:
df:c5:ed:78:56:ae:79:62:10:16:be:69:b1:bd:22:43:f6:c2:
47:e1:c1:14:ed:99:e8:3b:af:11:49:7e:18:3a:72:6a:bd:c6:
6f:53:52:b9:3e:8a:bb:5e:5d:67:5a:d0:b5:70:87:92:7f:f2:
3f:27:d2:1f:19:d5:c6:db:44:69:6e:e8:07:6a:e5:2e:84:fe:
6a:a1:82:ce:98:77:4d:04:39:68:7c:84:ab:41:f1:2c:d3:c8:
21:a0:24:d3:f2:ef:50:92:94:8e:f2:b6:d3:b9:aa:cf:01:c0:
48:e2:be:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:26 2024 by rpki-client on console-fra.rpki-client.org