Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/8d9f9c-29d6-44af-973e-99ca01beab76/1/8XdT8UkdLrjgYPNmr-8NXGWXygM.roa
File: 8XdT8UkdLrjgYPNmr-8NXGWXygM.roa (raw, json)
Hash identifier: BpGoTU3DE2bKVN/C/sierstI2ijHPd03uJZ8ag+D+o8=
Subject key identifier: F1:77:53:F1:49:1D:2E:B8:E0:60:F3:66:AF:EF:0D:5C:65:97:CA:03
Certificate issuer: /CN=cda420de08d5d3834a90acbb9fc8727d6fcc9607
Certificate serial: 2B7E
Authority key identifier: CD:A4:20:DE:08:D5:D3:83:4A:90:AC:BB:9F:C8:72:7D:6F:CC:96:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaQg3gjV04NKkKy7n8hyfW_Mlgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/8d9f9c-29d6-44af-973e-99ca01beab76/1/8XdT8UkdLrjgYPNmr-8NXGWXygM.roa
Signing time: Wed 04 May 2022 06:53:57 +0000
ROA not before: Wed 04 May 2022 06:53:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52000
IP address blocks: 185.170.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11134 (0x2b7e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cda420de08d5d3834a90acbb9fc8727d6fcc9607
Validity
Not Before: May 4 06:53:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f17753f1491d2eb8e060f366afef0d5c6597ca03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b8:f4:83:d7:41:97:75:d1:76:77:46:5d:07:
82:e7:d2:0a:49:f4:21:40:6a:f5:ef:ae:ec:8e:cc:
06:34:18:cb:8e:96:d5:90:b7:bb:c8:f3:a5:e2:1d:
73:a1:ca:21:f4:b0:b5:4c:cd:88:31:c4:fd:34:4e:
cd:33:02:29:f1:aa:f2:36:0b:41:51:a5:1b:02:76:
62:26:0a:d2:63:42:87:58:1d:b8:51:48:b0:97:ce:
47:35:5c:2a:4a:a6:93:04:c3:02:48:e5:40:d1:51:
ab:92:39:c1:be:2e:85:7d:c3:da:00:0e:78:47:24:
df:9a:46:21:ca:fd:02:bf:ea:55:c6:9b:69:fb:db:
0d:a5:82:31:60:54:a6:60:52:7c:7a:e8:6e:9c:7d:
0d:b9:38:55:38:bf:7a:9f:d9:60:52:04:97:c8:15:
33:6c:f7:11:f1:90:c0:6f:f7:2a:89:5b:ec:d0:42:
b7:d0:ee:fb:04:64:5a:05:b2:5d:65:55:9e:50:2c:
e2:ea:8a:90:bf:94:7f:47:db:14:6b:6c:91:fd:a0:
b4:d5:fa:c5:41:4b:2e:66:6e:4b:78:64:35:7b:39:
bb:18:8f:24:9e:28:b9:17:92:11:7c:83:21:5f:23:
c5:dc:7f:39:dd:1e:3c:7f:4b:86:aa:b2:9b:78:1c:
4b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:77:53:F1:49:1D:2E:B8:E0:60:F3:66:AF:EF:0D:5C:65:97:CA:03
X509v3 Authority Key Identifier:
keyid:CD:A4:20:DE:08:D5:D3:83:4A:90:AC:BB:9F:C8:72:7D:6F:CC:96:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaQg3gjV04NKkKy7n8hyfW_Mlgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/8d9f9c-29d6-44af-973e-99ca01beab76/1/8XdT8UkdLrjgYPNmr-8NXGWXygM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/8d9f9c-29d6-44af-973e-99ca01beab76/1/zaQg3gjV04NKkKy7n8hyfW_Mlgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.10.0/24
Signature Algorithm: sha256WithRSAEncryption
54:25:c6:7d:7f:98:bc:c6:ec:02:a6:60:9a:04:4b:35:c0:26:
04:68:af:dd:d5:15:fe:d0:f4:6a:7a:75:18:5d:e8:e2:94:6f:
20:c6:73:76:dc:83:7e:61:c9:98:0b:ea:9e:ea:e1:c8:6f:b0:
a7:f5:14:43:3b:5e:94:86:c2:11:12:41:7f:9d:84:92:c0:f7:
5d:30:3e:62:c5:8d:60:bc:27:8e:e0:72:a0:84:90:fa:9d:a9:
92:53:d3:42:37:a8:06:9a:59:13:c8:e9:d9:8e:67:29:85:92:
36:ee:17:75:a1:9d:fb:4f:b9:eb:4f:b1:0b:7d:6d:3e:4c:d8:
19:cb:cf:7e:b3:35:7c:c0:56:ca:93:37:b4:86:dc:51:98:73:
34:ff:68:cc:06:b4:94:19:1a:e1:a0:a2:4f:4e:d7:06:a7:92:
aa:d4:7d:8b:c4:e9:53:15:ad:71:6d:9d:2f:42:7e:25:40:c4:
3d:67:bd:7d:9e:a0:8a:39:f1:d6:43:4a:84:13:87:c9:af:2f:
4e:17:f2:90:c0:7e:cc:e2:ac:4d:21:06:f1:6e:9e:f8:4d:ee:
42:a8:48:58:11:11:f5:3a:5b:e6:de:12:0b:15:3b:b2:da:66:
e9:b7:85:62:f9:73:43:a0:80:19:7b:3c:0a:19:47:09:86:a7:
6b:5f:74:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:47 2024 by rpki-client on console-ams.rpki-client.org