Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/2b95ed-9882-42fa-a9f5-ad80e756d256/1/D2yl4Cfzs7xUxdBdmC7L3Kct0p8.roa
File: D2yl4Cfzs7xUxdBdmC7L3Kct0p8.roa (raw, json)
Hash identifier: 2xJNQh0ZUj1YrfS0ZAGyOEMoSTmPkODefQmQKXAsh3E=
Subject key identifier: 0F:6C:A5:E0:27:F3:B3:BC:54:C5:D0:5D:98:2E:CB:DC:A7:2D:D2:9F
Certificate issuer: /CN=2b3840b5d3c3525981c8616166679de920e350f5
Certificate serial: 0E738F68
Authority key identifier: 2B:38:40:B5:D3:C3:52:59:81:C8:61:61:66:67:9D:E9:20:E3:50:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KzhAtdPDUlmByGFhZmed6SDjUPU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/2b95ed-9882-42fa-a9f5-ad80e756d256/1/D2yl4Cfzs7xUxdBdmC7L3Kct0p8.roa
Signing time: Sat 01 Jan 2022 02:01:06 +0000
ROA not before: Sat 01 Jan 2022 02:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212376
IP address blocks: 185.184.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242454376 (0xe738f68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3840b5d3c3525981c8616166679de920e350f5
Validity
Not Before: Jan 1 02:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f6ca5e027f3b3bc54c5d05d982ecbdca72dd29f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b1:cd:21:29:65:ea:40:d5:8c:e7:65:b4:32:
13:48:7c:5c:8d:b9:82:5d:7b:1e:4a:92:76:0c:c8:
1b:16:3c:2a:6c:56:0a:b9:1f:df:a8:37:b1:f9:d5:
50:d3:ce:c9:6f:49:f5:9c:94:5b:62:ae:7e:8c:81:
b0:5d:3f:81:0d:52:2c:7d:c3:39:44:69:32:c3:61:
75:01:0a:63:b7:09:ef:45:b0:e1:92:e2:ba:29:90:
3a:eb:69:39:d1:99:07:77:fc:55:d0:45:b1:df:f5:
4c:b7:f4:c1:6c:23:ed:0c:07:20:ab:af:16:99:4a:
79:c8:1a:77:1e:f8:73:7c:55:7c:3d:93:66:e1:ae:
f7:05:58:e3:72:aa:f9:d5:1b:f7:1d:00:6b:15:5c:
7e:4f:21:06:95:10:a2:0e:83:1d:d1:c5:62:40:cf:
5b:85:22:e5:79:df:89:c5:e0:af:8a:4d:4d:42:02:
33:c0:1d:74:d6:7a:bc:ec:5f:7f:8b:83:e6:35:3b:
b4:3a:4b:90:26:a6:7e:c8:18:8b:2c:f6:b1:d3:76:
55:6b:b8:c4:57:3e:a5:fc:57:39:da:e3:64:03:cc:
32:bc:de:87:ba:ab:8f:6b:65:d2:8b:76:e6:aa:34:
2b:7c:31:89:d0:4a:db:a3:99:a5:7e:52:59:99:0f:
c9:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:6C:A5:E0:27:F3:B3:BC:54:C5:D0:5D:98:2E:CB:DC:A7:2D:D2:9F
X509v3 Authority Key Identifier:
keyid:2B:38:40:B5:D3:C3:52:59:81:C8:61:61:66:67:9D:E9:20:E3:50:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KzhAtdPDUlmByGFhZmed6SDjUPU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2b95ed-9882-42fa-a9f5-ad80e756d256/1/D2yl4Cfzs7xUxdBdmC7L3Kct0p8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/2b95ed-9882-42fa-a9f5-ad80e756d256/1/KzhAtdPDUlmByGFhZmed6SDjUPU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.184.196.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:6d:f5:5e:74:70:9b:f7:55:d6:c9:f9:84:81:5d:ca:47:21:
44:79:bd:09:ff:e3:6e:78:14:a5:51:07:b0:e8:c2:a1:52:4a:
22:a6:c5:97:a5:16:11:1f:7d:00:8b:38:e5:c8:a7:a7:a5:a4:
34:88:a9:04:fd:c2:f7:a1:c2:16:8d:d7:2c:ac:a6:05:3b:5a:
dc:3d:fb:3d:4c:a5:dd:a3:6e:6d:f2:d8:9e:21:dc:99:9d:60:
4c:cd:0e:27:73:db:7d:d2:12:29:85:99:ac:c8:1a:6a:8d:fd:
fd:01:6d:f3:2f:d4:bb:1f:fe:f7:df:0a:5e:21:33:1b:3a:15:
1f:16:b0:42:48:3b:62:86:3a:a3:e7:e0:e8:89:c0:fd:ad:2a:
05:d8:78:e6:16:2f:23:c2:87:23:cf:b7:f9:85:19:6e:70:30:
9f:19:0a:35:52:4a:be:60:00:74:76:24:73:84:0e:37:7f:50:
80:7a:5d:fc:08:4b:22:50:39:ca:25:94:03:85:e8:a8:5e:19:
c2:2f:a1:43:97:36:a3:d5:9d:b1:d5:6d:e4:0a:16:ac:fc:5c:
66:11:7c:57:27:4d:b7:bf:67:1c:c0:09:59:22:49:39:e4:1a:
01:eb:23:25:07:a1:97:9a:d0:64:7e:89:af:e8:04:e8:9e:db:
35:57:f6:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:54 2024 by rpki-client on console-fra.rpki-client.org