Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/Ofe8TPOJTT7N16lzIpMbZR_0qac.roa
File: Ofe8TPOJTT7N16lzIpMbZR_0qac.roa (raw, json)
Hash identifier: SIQ1BKl+OGfZglAEQOuvwY6q/42+cwE2p6eYHvdn9UA=
Subject key identifier: 39:F7:BC:4C:F3:89:4D:3E:CD:D7:A9:73:22:93:1B:65:1F:F4:A9:A7
Certificate issuer: /CN=04d9e5b0f9d1a7fdd3e6bc12e817e673a09ea193
Certificate serial: CFC5D0
Authority key identifier: 04:D9:E5:B0:F9:D1:A7:FD:D3:E6:BC:12:E8:17:E6:73:A0:9E:A1:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNnlsPnRp_3T5rwS6Bfmc6CeoZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/Ofe8TPOJTT7N16lzIpMbZR_0qac.roa
Signing time: Sat 01 Jan 2022 12:03:40 +0000
ROA not before: Sat 01 Jan 2022 12:03:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.241.244.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13616592 (0xcfc5d0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d9e5b0f9d1a7fdd3e6bc12e817e673a09ea193
Validity
Not Before: Jan 1 12:03:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39f7bc4cf3894d3ecdd7a97322931b651ff4a9a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:b2:9d:02:cb:29:b0:df:68:dc:7e:7a:5f:55:
99:2c:bb:9d:32:a5:96:15:e1:5f:58:07:82:79:bb:
f4:86:78:06:9a:12:0d:aa:8a:fd:b1:66:a8:bd:17:
48:f9:e7:2a:b6:9c:9a:a8:61:83:5e:4a:e0:50:72:
cb:99:d5:a8:a0:96:04:eb:40:ff:24:f1:01:c5:31:
1e:55:25:e0:be:98:7b:6a:29:23:36:ff:ff:67:07:
30:b9:aa:ae:ce:29:d0:a5:93:17:c1:cd:16:8a:42:
39:0b:6f:e3:f5:fe:9b:0d:06:0e:03:82:40:56:82:
22:29:86:a0:48:4a:c2:bd:36:75:22:16:74:1b:a6:
9a:c8:ba:bb:43:36:7e:dc:02:96:6e:7e:03:92:f9:
71:e9:1e:22:a1:07:b4:0c:3e:95:d2:c8:d9:d1:7f:
39:3e:b7:f8:99:69:58:a5:63:0a:aa:5e:5f:43:34:
96:90:18:69:19:df:a1:b7:78:1d:21:db:74:5f:c2:
84:30:88:ec:8c:c4:0b:3b:f9:66:56:3f:03:1a:a6:
37:60:63:62:cf:1b:30:74:35:67:09:2b:72:58:06:
15:d5:3e:23:20:dd:10:1e:d4:38:ec:90:09:82:c8:
8b:0e:4a:4b:c1:58:3f:4e:e6:cb:06:e6:49:a1:cb:
ab:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:F7:BC:4C:F3:89:4D:3E:CD:D7:A9:73:22:93:1B:65:1F:F4:A9:A7
X509v3 Authority Key Identifier:
keyid:04:D9:E5:B0:F9:D1:A7:FD:D3:E6:BC:12:E8:17:E6:73:A0:9E:A1:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNnlsPnRp_3T5rwS6Bfmc6CeoZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/Ofe8TPOJTT7N16lzIpMbZR_0qac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/BNnlsPnRp_3T5rwS6Bfmc6CeoZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.244.0/22
Signature Algorithm: sha256WithRSAEncryption
74:52:ca:86:b8:ee:e0:ec:71:78:56:e9:3b:49:3f:d0:c7:73:
c9:54:85:60:68:c2:29:a4:73:42:d4:b0:ff:5b:10:16:2f:5d:
90:bd:f5:a6:50:96:9e:5d:a6:67:5d:c9:ea:fe:3c:d5:c6:6a:
01:80:71:b3:e0:b8:7c:59:db:45:d3:c7:37:07:a1:9a:6b:19:
d8:aa:23:45:0d:66:b4:c9:b1:01:6c:46:bc:93:c0:4e:3c:1c:
d0:9b:07:db:e7:6d:c2:dd:ef:d8:b5:e7:37:e6:59:c7:15:84:
37:b7:66:92:86:83:65:ea:b7:6d:5e:dd:33:2d:22:29:e7:d0:
b4:eb:df:a9:2b:30:88:e8:cf:2a:82:6e:64:cb:c5:e9:a8:e2:
63:41:b3:bb:9b:ab:ad:fe:1e:a8:e3:5c:04:1f:83:33:22:92:
77:b0:30:67:98:51:19:a3:e3:ca:16:1f:a6:7c:97:3d:fd:01:
d0:58:48:9b:aa:83:6b:72:e7:92:9b:19:f5:8b:4c:2d:4f:46:
4f:e9:d6:89:eb:ac:46:c2:e6:f9:02:c0:05:af:01:31:2c:4c:
1f:a3:8e:a3:9f:91:cf:4f:50:88:13:ad:2a:8d:e9:ed:75:0a:
cd:8c:87:b7:b8:1f:4a:54:c0:f3:6c:58:51:a1:5f:a3:ca:cc:
3a:8d:6b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:12 2024 by rpki-client on console-fra.rpki-client.org