Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/0482c8-6fbf-481c-b5cb-a13b2f116521/1/hS9MFciV6vj5zQfgX8JZFj60x7Y.roa
File: hS9MFciV6vj5zQfgX8JZFj60x7Y.roa (raw, json)
Hash identifier: HHeuuCO+Nwr7C6INFnOq1IYUfV4tlZZp1RaFobyqW6A=
Subject key identifier: 85:2F:4C:15:C8:95:EA:F8:F9:CD:07:E0:5F:C2:59:16:3E:B4:C7:B6
Certificate issuer: /CN=9e888901024e8c6b27174da9e03dc8a09dcb8833
Certificate serial: 01856F5DDA2FC2DFAF6A5240ABC9B6575135
Authority key identifier: 9E:88:89:01:02:4E:8C:6B:27:17:4D:A9:E0:3D:C8:A0:9D:CB:88:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/noiJAQJOjGsnF02p4D3IoJ3LiDM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/0482c8-6fbf-481c-b5cb-a13b2f116521/1/hS9MFciV6vj5zQfgX8JZFj60x7Y.roa
Signing time: Sun 01 Jan 2023 22:04:59 +0000
ROA not before: Sun 01 Jan 2023 22:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207582
IP address blocks: 185.248.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:5d:da:2f:c2:df:af:6a:52:40:ab:c9:b6:57:51:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e888901024e8c6b27174da9e03dc8a09dcb8833
Validity
Not Before: Jan 1 22:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=852f4c15c895eaf8f9cd07e05fc259163eb4c7b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:45:20:1e:f3:78:b2:81:e6:b9:89:c6:f4:59:
fa:50:6f:c7:2d:fa:3c:1b:04:b4:40:d5:58:72:41:
04:6f:ef:7b:a9:aa:6f:37:ed:6e:48:27:6b:01:89:
25:7b:ec:f1:07:6f:85:c1:3d:08:0e:d0:42:42:b1:
82:ec:6c:e0:34:ec:5d:ba:97:91:17:10:54:af:85:
d3:b1:ea:ca:e8:7e:f3:e3:76:ee:86:8c:42:e4:48:
ac:23:fe:9d:c3:53:2c:13:7e:b2:08:c5:70:9b:8d:
93:2c:07:0b:8c:d1:c5:34:3f:d9:89:f2:2b:b8:bc:
2b:6a:d6:04:d0:12:dc:cb:16:cd:da:15:28:e1:8c:
1f:dc:78:0b:13:97:72:31:12:fb:ef:9e:72:8e:a5:
aa:92:f0:cb:ac:c9:be:1b:28:30:24:e3:2e:34:b0:
34:9f:0f:0f:58:44:f8:79:f1:c3:b8:50:2b:1d:34:
f0:0b:93:08:1b:7c:39:f3:97:75:71:4f:89:32:ec:
70:93:71:0e:af:dc:7f:6c:82:cc:d1:c6:37:ff:30:
59:b7:04:8a:57:75:30:c5:ee:ae:57:70:96:3d:bc:
7e:56:11:8b:1e:6a:1c:5c:a4:2b:78:99:0e:4f:a7:
8d:2c:1f:b7:07:71:b2:d6:39:62:28:85:ed:7c:1f:
2c:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:2F:4C:15:C8:95:EA:F8:F9:CD:07:E0:5F:C2:59:16:3E:B4:C7:B6
X509v3 Authority Key Identifier:
keyid:9E:88:89:01:02:4E:8C:6B:27:17:4D:A9:E0:3D:C8:A0:9D:CB:88:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/noiJAQJOjGsnF02p4D3IoJ3LiDM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/0482c8-6fbf-481c-b5cb-a13b2f116521/1/hS9MFciV6vj5zQfgX8JZFj60x7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/0482c8-6fbf-481c-b5cb-a13b2f116521/1/noiJAQJOjGsnF02p4D3IoJ3LiDM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.59.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:03:ea:27:c6:80:59:d3:5b:c4:c5:e8:4c:b9:3b:53:09:4a:
0f:12:3d:08:c2:cd:c1:67:a7:fd:f9:78:15:b6:21:6c:8d:13:
a9:9e:12:11:53:ef:31:22:65:37:45:95:45:5f:07:69:26:79:
0c:86:84:39:3e:fe:b5:84:7f:a4:4d:55:b6:22:33:40:b9:42:
81:f5:b8:4e:f9:37:30:81:46:c5:8a:60:d5:8d:98:34:21:93:
a3:64:85:dd:0c:43:9f:0a:c4:20:40:40:3b:ce:b5:f9:f7:55:
04:ac:d2:62:c9:e6:99:2f:ee:45:67:46:10:12:ae:7f:7f:7b:
19:87:44:97:dd:c6:8e:8b:c6:a6:d0:c2:e5:4a:1a:53:37:67:
b5:4f:86:36:f9:87:b6:11:14:de:a4:ac:af:aa:b4:19:dc:08:
26:3e:05:72:eb:77:0e:0a:d1:60:9c:09:f2:d6:0f:26:d6:eb:
d9:44:11:6a:7b:58:d4:40:4d:6b:ac:40:bd:64:71:1d:8a:d3:
6b:a9:df:79:7a:77:a4:22:29:37:97:f0:ec:37:9a:3c:6a:13:
60:e3:96:1d:e5:54:1c:21:87:28:dc:12:93:c0:85:da:16:68:
8b:04:15:1b:76:66:ce:6f:6d:5f:67:c6:08:78:0d:36:5e:80:
11:a9:ef:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:31 2024 by rpki-client on console-ams.rpki-client.org