Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/AFooaXJOs9wMtJ3Nyvt6A5mNgfg.roa
File: AFooaXJOs9wMtJ3Nyvt6A5mNgfg.roa (raw, json)
Hash identifier: ly01Lrv3+FXUufXCoJw+1E66JMkTxunfSKsLpUPlgZU=
Subject key identifier: 00:5A:28:69:72:4E:B3:DC:0C:B4:9D:CD:CA:FB:7A:03:99:8D:81:F8
Certificate issuer: /CN=e8a905b0a4f1ba373d9e7892d2455bc5ea8bbf89
Certificate serial: 0187ACB341B01D0AA732FEEA904DF415588C
Authority key identifier: E8:A9:05:B0:A4:F1:BA:37:3D:9E:78:92:D2:45:5B:C5:EA:8B:BF:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6KkFsKTxujc9nniS0kVbxeqLv4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/AFooaXJOs9wMtJ3Nyvt6A5mNgfg.roa
Signing time: Sun 23 Apr 2023 06:00:41 +0000
ROA not before: Sun 23 Apr 2023 06:00:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.235.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ac:b3:41:b0:1d:0a:a7:32:fe:ea:90:4d:f4:15:58:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e8a905b0a4f1ba373d9e7892d2455bc5ea8bbf89
Validity
Not Before: Apr 23 06:00:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=005a2869724eb3dc0cb49dcdcafb7a03998d81f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:1e:1e:40:fd:b8:da:25:68:9f:ab:e1:b8:0c:
dd:45:78:3b:45:d9:a0:17:66:18:a2:c8:c5:07:43:
03:d3:6d:0e:5f:ac:a1:3a:d4:8a:b5:33:74:4c:be:
e5:89:01:96:89:a6:c9:eb:7a:8d:e2:44:a5:aa:e9:
6f:fb:23:72:7e:f8:83:77:33:42:c7:bb:5e:39:75:
94:24:57:c7:9f:12:e9:8b:12:b1:f1:27:25:2c:45:
3b:cf:1f:c5:75:67:fc:e1:4c:1d:22:b0:22:1d:11:
55:80:88:16:85:56:e1:f0:2a:3d:e7:3f:c7:5e:97:
79:c6:07:5f:35:6c:4e:b5:6b:6b:08:b2:89:35:f0:
61:30:04:78:02:b7:6f:a8:8a:85:d9:86:cb:88:66:
2a:48:26:17:d3:65:f4:0c:43:60:62:3b:c3:04:5c:
83:97:ed:73:bf:10:bc:38:94:07:ec:0b:37:55:61:
08:c5:34:8f:1e:e6:24:7d:c7:00:06:c7:6b:79:fa:
cf:6a:3c:59:85:a1:86:e0:d4:bb:06:86:ef:6c:86:
ad:05:a0:29:10:bd:ad:6c:d5:96:cd:c7:ad:5f:75:
ab:a3:40:93:b5:14:12:97:bb:80:e5:06:de:7e:f3:
8c:a4:aa:00:c8:3f:15:de:a4:38:d0:67:fb:0c:00:
e0:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:5A:28:69:72:4E:B3:DC:0C:B4:9D:CD:CA:FB:7A:03:99:8D:81:F8
X509v3 Authority Key Identifier:
keyid:E8:A9:05:B0:A4:F1:BA:37:3D:9E:78:92:D2:45:5B:C5:EA:8B:BF:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6KkFsKTxujc9nniS0kVbxeqLv4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/AFooaXJOs9wMtJ3Nyvt6A5mNgfg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/bfb168-1b3d-48ae-9800-1744e7259b17/1/6KkFsKTxujc9nniS0kVbxeqLv4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.227.0/24
Signature Algorithm: sha256WithRSAEncryption
00:6f:91:d0:bf:c4:48:ee:0f:9c:a0:05:e0:6a:a9:3d:ee:f7:
91:7a:bd:5a:91:4c:4a:da:47:c5:c3:52:c4:ba:3c:1b:62:50:
73:ae:ba:af:35:92:04:3b:a9:61:2d:68:65:4b:7f:75:de:30:
b7:8b:fd:a4:83:1c:13:68:c8:9a:ef:a4:d8:55:63:18:2f:2c:
b1:a0:85:0b:bf:8a:9d:95:80:ad:76:8e:24:ab:62:08:f1:f0:
aa:f5:b0:6b:5a:c7:c8:15:05:b0:ee:60:d1:51:7c:c3:2a:1d:
fb:cb:22:c7:63:0c:8b:f4:d7:30:1e:2b:f3:22:60:83:76:3d:
5e:3e:af:df:6e:83:06:ba:6e:c0:b6:34:a3:9c:2b:e7:e7:62:
e4:ea:a7:28:ac:a8:3a:26:56:9d:75:16:1d:dd:bd:98:3e:da:
02:b0:2e:47:1a:ec:7a:ea:38:6c:59:1e:d9:e1:bc:75:0b:5f:
8d:8b:8d:cb:e5:de:7c:88:d7:af:4f:88:5d:f9:80:2a:e1:0f:
ae:d3:56:f8:d4:b8:32:a7:34:74:40:79:d9:55:a6:35:99:d0:
3b:f9:fa:e1:5b:4b:2f:bf:aa:e3:40:cd:2f:6a:ed:12:f6:10:
a1:01:42:a6:8e:73:17:31:b1:10:54:0d:18:a8:c3:e8:4e:34:
c9:29:6b:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:58 2024 by rpki-client on console-fra.rpki-client.org