Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/uskg5tNKlkHJ-akkrdJC5euRMuM.roa
File: uskg5tNKlkHJ-akkrdJC5euRMuM.roa (raw, json)
Hash identifier: wsI4IX8p6ABQDz4d7dnKFlAFxu2k0xy7GeyTCpfYAUI=
Subject key identifier: BA:C9:20:E6:D3:4A:96:41:C9:F9:A9:24:AD:D2:42:E5:EB:91:32:E3
Certificate issuer: /CN=4a7209f8b7ed4fa9bfb278880c29f98d6a96b63c
Certificate serial: 0879249C
Authority key identifier: 4A:72:09:F8:B7:ED:4F:A9:BF:B2:78:88:0C:29:F9:8D:6A:96:B6:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SnIJ-LftT6m_sniIDCn5jWqWtjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/uskg5tNKlkHJ-akkrdJC5euRMuM.roa
Signing time: Tue 05 Apr 2022 07:26:17 +0000
ROA not before: Tue 05 Apr 2022 07:26:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208976
IP address blocks: 185.245.63.0/24 maxlen: 24
185.245.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142156956 (0x879249c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a7209f8b7ed4fa9bfb278880c29f98d6a96b63c
Validity
Not Before: Apr 5 07:26:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bac920e6d34a9641c9f9a924add242e5eb9132e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:c6:14:e8:24:79:50:cb:7d:40:3b:36:de:ec:
38:4c:98:ba:a1:5e:e5:ee:78:1b:c0:5f:3d:a3:b9:
45:b4:b9:e3:98:9e:f1:a5:ea:7c:06:df:a6:8d:79:
20:c1:4c:25:97:0d:7f:2a:ed:0e:f2:19:07:37:9e:
25:fc:aa:57:20:b5:9e:03:d1:d6:c8:af:65:e6:59:
d8:15:3d:5e:ff:33:3c:4c:23:8d:79:c9:c7:d4:d4:
cb:da:6c:b7:0d:7e:c1:c1:75:35:79:39:65:01:c7:
26:2f:a6:6a:bd:ee:43:11:9f:09:03:a9:24:19:e8:
a5:2d:bf:2a:7f:da:35:4d:63:7e:67:6d:8d:b3:28:
9d:d9:2a:5e:00:cf:24:0d:c4:06:02:b3:f0:74:5f:
fd:7c:7f:dc:cd:45:4d:fe:05:ad:e8:5d:89:ec:94:
cb:67:f7:33:eb:99:67:d6:85:a8:3e:ae:78:a5:ea:
81:e8:4f:76:d5:2b:30:3b:dd:3d:63:a7:8b:0f:f7:
4d:4d:68:5d:36:26:ac:ed:bd:d6:87:bd:eb:d4:8e:
75:18:92:2b:67:43:a6:91:4c:af:37:da:2a:ec:56:
10:6f:2b:46:0d:46:a7:08:d7:c8:1b:2e:d8:cb:bb:
ca:ee:7e:db:4e:02:18:80:70:a0:52:25:b0:31:e7:
20:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C9:20:E6:D3:4A:96:41:C9:F9:A9:24:AD:D2:42:E5:EB:91:32:E3
X509v3 Authority Key Identifier:
keyid:4A:72:09:F8:B7:ED:4F:A9:BF:B2:78:88:0C:29:F9:8D:6A:96:B6:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SnIJ-LftT6m_sniIDCn5jWqWtjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/uskg5tNKlkHJ-akkrdJC5euRMuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/46d595-9b69-48bd-bd01-c240c9afd149/1/SnIJ-LftT6m_sniIDCn5jWqWtjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.245.62.0/23
Signature Algorithm: sha256WithRSAEncryption
67:ec:74:e9:f9:7c:42:49:b5:94:86:81:92:51:e2:fa:57:c8:
d8:6d:84:b9:df:b5:a3:78:96:02:01:e6:be:c4:88:10:30:36:
3f:83:f7:ec:ee:d1:af:1a:94:b5:7a:44:0d:94:c2:c0:d4:fa:
ce:c0:42:09:4d:cf:f2:b8:5d:60:b9:82:64:5e:4e:50:be:b5:
65:3c:de:af:53:cd:45:ce:1a:6f:52:c4:93:4b:6c:1f:83:b8:
ee:9c:0a:08:f3:4b:25:62:b9:aa:c1:4a:75:73:7b:12:86:0a:
79:0b:5b:bf:8e:fd:2c:29:7c:46:d9:af:dc:d4:b8:75:c6:29:
0e:a5:5e:1c:9a:9d:c5:21:86:dd:15:fb:f6:4d:6f:d0:61:21:
3a:0d:d4:f7:23:8b:ee:b1:03:20:bf:3c:59:71:9c:cf:d4:68:
9a:0d:bd:cc:e6:19:4f:cf:b5:81:aa:7f:87:7c:a7:8a:0a:dd:
d2:df:16:e2:7f:cd:bc:5e:bf:4a:1b:e1:b1:28:f5:7f:e7:5f:
30:b7:ec:7f:e9:43:74:77:94:9c:29:5b:db:b1:dd:ec:31:df:
ff:a9:22:a4:29:1d:16:4f:66:dd:32:3c:2d:cd:54:8e:98:d9:
84:b3:ac:ea:7c:2b:7b:9d:ef:64:dd:b0:a2:85:c4:36:94:41:
1c:20:2d:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:48 2024 by rpki-client on console-fra.rpki-client.org