Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/0_cXlCcMH_zSkJSLCCiDtJdXrpg.roa
File: 0_cXlCcMH_zSkJSLCCiDtJdXrpg.roa (raw, json)
Hash identifier: Nm5+7TyHLHR1qOClqyLAhIpBV0V/uY8iADZChXpIw0k=
Subject key identifier: D3:F7:17:94:27:0C:1F:FC:D2:90:94:8B:08:28:83:B4:97:57:AE:98
Certificate issuer: /CN=4a7209f8b7ed4fa9bfb278880c29f98d6a96b63c
Certificate serial: 01856F0B70B45A99C3AB704F23B5C35BD373
Authority key identifier: 4A:72:09:F8:B7:ED:4F:A9:BF:B2:78:88:0C:29:F9:8D:6A:96:B6:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SnIJ-LftT6m_sniIDCn5jWqWtjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/0_cXlCcMH_zSkJSLCCiDtJdXrpg.roa
Signing time: Sun 01 Jan 2023 20:34:58 +0000
ROA not before: Sun 01 Jan 2023 20:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208976
IP address blocks: 185.245.63.0/24 maxlen: 24
185.245.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:0b:70:b4:5a:99:c3:ab:70:4f:23:b5:c3:5b:d3:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a7209f8b7ed4fa9bfb278880c29f98d6a96b63c
Validity
Not Before: Jan 1 20:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3f71794270c1ffcd290948b082883b49757ae98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ae:1d:de:88:7c:78:a3:98:4b:d7:f5:d4:23:
c2:68:a5:ae:fa:ff:ad:c2:74:7f:8d:2e:4c:0e:f3:
c8:a9:e5:30:22:a6:ed:bf:4e:ae:8d:b5:9f:01:6a:
40:56:6f:4e:20:c3:ac:f6:7c:c7:17:73:bd:c3:dc:
4e:80:65:f8:f0:3a:5e:2a:b4:19:b3:55:3c:c1:93:
a7:cf:8f:0c:9c:18:64:da:52:eb:63:ab:9f:e4:a4:
91:4c:ba:f9:6b:76:e6:4c:a3:00:ca:f7:07:bf:de:
9b:d2:ab:d3:5b:ed:75:ee:5d:be:8d:f8:1b:83:7b:
8f:97:2b:f0:59:15:73:eb:42:9a:e4:d2:78:8a:cc:
bc:a8:2f:d1:a6:4b:74:f9:a6:75:b6:66:43:cc:aa:
69:a6:ef:10:f8:72:71:01:92:69:62:fc:3b:f3:63:
21:a5:ae:6c:be:37:38:19:dc:24:ab:5a:df:f0:64:
3c:c8:a0:00:87:df:9b:46:e4:9c:dd:dc:b1:f5:49:
07:7f:28:61:ab:ef:d3:f1:4d:5b:c3:ea:1f:38:0f:
f6:10:eb:6a:2a:3f:2b:fa:cf:1d:0c:e0:0e:e7:92:
e1:54:09:87:db:0b:dc:c7:14:27:ff:37:21:da:0a:
27:df:cc:c0:d2:dc:1b:a9:eb:14:f4:f9:aa:4e:a5:
ca:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:F7:17:94:27:0C:1F:FC:D2:90:94:8B:08:28:83:B4:97:57:AE:98
X509v3 Authority Key Identifier:
keyid:4A:72:09:F8:B7:ED:4F:A9:BF:B2:78:88:0C:29:F9:8D:6A:96:B6:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SnIJ-LftT6m_sniIDCn5jWqWtjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/0_cXlCcMH_zSkJSLCCiDtJdXrpg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/SnIJ-LftT6m_sniIDCn5jWqWtjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.62.0/23
Signature Algorithm: sha256WithRSAEncryption
56:09:d1:41:d8:bd:7a:0f:5a:3f:bc:59:41:23:5d:b1:06:a9:
63:92:d2:fa:c1:7b:d7:6c:4a:54:7b:1d:e1:0e:65:14:e0:a1:
99:52:52:5f:c2:87:01:da:1a:5e:6f:47:c7:cf:1f:58:c1:80:
54:a6:3c:8e:d0:70:b7:d0:b5:75:10:ce:97:0b:56:c4:a0:4e:
99:44:17:c1:53:fe:ec:0b:29:7b:5a:b8:1e:9c:ae:09:fb:e4:
c4:bc:6d:2f:68:c4:d2:a8:b8:a9:97:c3:45:06:3b:02:db:19:
27:75:dd:fa:8c:d8:4a:4c:e2:fb:5d:b0:ee:87:37:ee:f1:59:
0a:ab:14:cf:8e:68:c6:3e:9b:b2:8c:f3:03:9d:da:7a:1d:da:
ff:01:73:fb:c9:29:5b:d2:b0:4c:18:53:4f:b3:c5:05:6a:de:
9e:6b:b7:2e:a5:b7:e3:91:79:2a:a0:bb:87:a4:33:7c:2a:1c:
f0:a7:94:c1:ca:e1:ef:fa:3c:56:5c:4e:90:46:a2:4a:76:dd:
07:1c:dd:63:16:c2:95:fb:d8:b6:0f:31:96:f4:6c:78:8c:35:
32:1b:38:74:5f:46:03:92:f0:1f:09:7e:bb:57:62:9d:76:d7:
c9:bf:34:ed:ec:39:d5:cc:6a:5b:ac:ec:39:a3:83:3d:4f:7b:
dc:cb:40:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:42 2024 by rpki-client on console-ams.rpki-client.org