Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/8d9f9c-29d6-44af-973e-99ca01beab76/1/zrK8rWRQIj1txhmhOZJ8Nprrt8E.roa
File: zrK8rWRQIj1txhmhOZJ8Nprrt8E.roa (raw, json)
Hash identifier: RYQLFNFRgbjEtAoImfPxL9bo2YQB+8BdkJ3unT+kFKU=
Subject key identifier: CE:B2:BC:AD:64:50:22:3D:6D:C6:19:A1:39:92:7C:36:9A:EB:B7:C1
Certificate issuer: /CN=cda420de08d5d3834a90acbb9fc8727d6fcc9607
Certificate serial: 01856F9DD305127FD56F19CD4DF87291FB2B
Authority key identifier: CD:A4:20:DE:08:D5:D3:83:4A:90:AC:BB:9F:C8:72:7D:6F:CC:96:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaQg3gjV04NKkKy7n8hyfW_Mlgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/8d9f9c-29d6-44af-973e-99ca01beab76/1/zrK8rWRQIj1txhmhOZJ8Nprrt8E.roa
Signing time: Sun 01 Jan 2023 23:14:52 +0000
ROA not before: Sun 01 Jan 2023 23:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208626
IP address blocks: 185.170.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:d3:05:12:7f:d5:6f:19:cd:4d:f8:72:91:fb:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cda420de08d5d3834a90acbb9fc8727d6fcc9607
Validity
Not Before: Jan 1 23:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ceb2bcad6450223d6dc619a139927c369aebb7c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:ae:3f:65:3e:19:6b:bd:44:b8:ac:dd:82:07:
4a:7e:53:63:ca:0c:68:18:b8:1c:95:96:7e:5c:bc:
ba:aa:11:6d:1f:bf:5e:ee:8a:bd:a3:db:4e:30:14:
61:d3:58:0a:1a:31:c0:04:ae:4c:3e:eb:4c:47:18:
1c:40:a2:88:f9:71:74:23:2c:60:ea:8c:fd:e0:67:
78:fd:e5:c3:43:db:84:f1:8e:7c:ab:a6:a6:8c:85:
02:78:a3:8e:2f:29:e5:95:c7:6d:b0:6a:c9:09:b0:
77:d5:d8:51:84:ae:5c:29:09:48:79:ba:34:40:9f:
51:8c:cb:00:b9:0d:ff:e1:8c:14:e7:79:aa:db:80:
92:a1:60:6b:3a:77:cd:0d:0a:39:4b:7f:5b:f0:2c:
b5:8b:11:83:31:59:26:c9:4b:a3:6f:98:73:5d:a1:
93:e9:bf:cd:f0:b5:ce:8c:7f:22:fd:ed:3e:1d:64:
4d:c4:38:42:e0:4e:fc:c5:76:ea:d3:6c:07:92:ad:
38:49:a7:dd:f0:c7:dd:6f:cb:69:92:3b:99:2e:2e:
50:68:e2:33:5f:7f:9f:b9:54:5b:c9:77:d3:f9:32:
48:39:3f:30:6f:4f:4b:9f:35:26:df:07:72:40:f1:
23:60:dd:64:8c:d4:ab:17:c7:5e:7c:9b:b6:11:88:
e0:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:B2:BC:AD:64:50:22:3D:6D:C6:19:A1:39:92:7C:36:9A:EB:B7:C1
X509v3 Authority Key Identifier:
keyid:CD:A4:20:DE:08:D5:D3:83:4A:90:AC:BB:9F:C8:72:7D:6F:CC:96:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaQg3gjV04NKkKy7n8hyfW_Mlgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/8d9f9c-29d6-44af-973e-99ca01beab76/1/zrK8rWRQIj1txhmhOZJ8Nprrt8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/8d9f9c-29d6-44af-973e-99ca01beab76/1/zaQg3gjV04NKkKy7n8hyfW_Mlgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.170.10.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:c7:42:79:dc:62:af:48:3f:aa:2c:ae:1c:30:98:53:4e:45:
0e:86:0c:da:f2:a2:c3:fb:13:16:07:05:e0:94:48:88:5e:4a:
a4:c0:d7:68:3e:fc:98:37:a3:1c:e9:8e:8b:ef:de:16:b7:f1:
52:74:9f:05:b7:8e:88:fe:51:e7:79:f1:c6:8a:d5:3b:32:82:
7e:83:03:e2:6d:32:32:a9:64:de:11:72:1f:18:04:2b:f3:17:
d5:28:87:d9:68:47:54:84:d9:e6:7a:de:d3:f8:db:74:5e:33:
8b:a3:dc:c3:35:3a:ec:6c:85:50:44:c3:ab:d7:10:b9:b6:d3:
a8:26:2c:e6:9c:5d:da:15:06:46:32:a8:6f:b1:d9:e1:a2:dc:
87:2f:a1:c0:d4:70:32:5d:c3:97:a8:83:2b:86:71:87:4f:a4:
af:b9:de:89:fa:10:d8:74:7c:64:f2:11:8e:19:dd:2c:00:32:
cf:10:e2:64:0c:4e:9d:ed:f8:72:c3:58:f5:9d:f6:eb:38:13:
ac:f6:de:a5:2c:83:e3:22:d4:07:47:db:ab:19:d0:2c:88:61:
76:8f:2a:f3:78:4b:b3:f6:05:ce:da:ae:c9:81:6f:9b:54:b3:
12:9c:c5:30:bd:b6:86:bc:e2:2d:b5:ba:e3:b9:86:e4:f8:07:
92:b5:a3:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:34 2024 by rpki-client on console-fra.rpki-client.org