Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/Qenmh6Wbf--bfNAszIu3hUzjxq8.roa
File: Qenmh6Wbf--bfNAszIu3hUzjxq8.roa (raw, json)
Hash identifier: o8C5tZ2Jl3V3SPDQ2i/A5h3G8CNebM28OJMYvyBEXtc=
Subject key identifier: 41:E9:E6:87:A5:9B:7F:EF:9B:7C:D0:2C:CC:8B:B7:85:4C:E3:C6:AF
Certificate issuer: /CN=04d9e5b0f9d1a7fdd3e6bc12e817e673a09ea193
Certificate serial: 0185711E4B047AA1604A7CB48726F2655F64
Authority key identifier: 04:D9:E5:B0:F9:D1:A7:FD:D3:E6:BC:12:E8:17:E6:73:A0:9E:A1:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNnlsPnRp_3T5rwS6Bfmc6CeoZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/Qenmh6Wbf--bfNAszIu3hUzjxq8.roa
Signing time: Mon 02 Jan 2023 06:14:48 +0000
ROA not before: Mon 02 Jan 2023 06:14:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35404
IP address blocks: 185.241.244.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:4b:04:7a:a1:60:4a:7c:b4:87:26:f2:65:5f:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04d9e5b0f9d1a7fdd3e6bc12e817e673a09ea193
Validity
Not Before: Jan 2 06:14:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=41e9e687a59b7fef9b7cd02ccc8bb7854ce3c6af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:54:d6:2e:38:f5:86:b8:58:55:82:3e:1f:cd:
f0:cb:82:21:00:f7:0d:75:97:48:fd:f5:d7:93:c1:
50:04:5f:91:10:18:46:1f:76:e4:8c:8b:eb:3a:be:
11:34:af:13:dd:cf:44:55:37:58:25:3e:33:0a:ad:
1b:66:46:5f:0c:d5:91:a1:8a:5c:24:df:a4:04:ee:
e8:4e:d6:4e:cc:e9:a2:24:90:8d:f0:25:08:a6:28:
79:dc:1e:9b:ce:01:e7:ca:94:5a:e4:2a:3b:a8:2a:
a9:da:31:41:b0:40:f7:3f:1f:38:28:9a:79:5d:dc:
04:4b:3c:e6:09:7f:54:18:e3:39:0f:b9:c3:19:31:
10:12:cd:b7:63:63:61:07:e7:b9:1a:16:29:e8:50:
8d:84:ae:ba:85:37:44:15:48:7f:58:fe:d1:06:59:
32:f1:68:27:06:1a:47:4b:fe:ee:93:23:9b:18:a0:
8d:4d:48:69:1d:99:d6:29:79:0f:ea:b5:30:48:8a:
ca:e2:55:ee:3a:d3:06:92:e7:5b:5b:d4:bd:aa:c8:
2d:ca:f3:af:66:9b:c9:ab:a5:16:08:2d:3d:ce:4a:
af:c3:aa:4f:31:5a:a1:8d:82:9d:4c:66:c2:af:c0:
c4:29:ec:7c:d7:be:ad:a2:33:8e:c8:53:84:da:8c:
b8:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:E9:E6:87:A5:9B:7F:EF:9B:7C:D0:2C:CC:8B:B7:85:4C:E3:C6:AF
X509v3 Authority Key Identifier:
keyid:04:D9:E5:B0:F9:D1:A7:FD:D3:E6:BC:12:E8:17:E6:73:A0:9E:A1:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNnlsPnRp_3T5rwS6Bfmc6CeoZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/Qenmh6Wbf--bfNAszIu3hUzjxq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/07dd67-e8c0-46b6-829c-e4c27d2e2376/1/BNnlsPnRp_3T5rwS6Bfmc6CeoZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.241.244.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:9f:e5:75:1f:9c:77:e0:1f:e5:4a:73:d7:a8:48:ab:9b:a7:
fd:41:ae:52:3b:44:ac:74:ab:cb:5f:f6:3b:3f:46:3b:d4:0f:
78:f5:49:0a:6a:a3:0c:f7:97:79:66:10:04:60:bc:24:81:0d:
76:30:ce:58:dc:e7:38:32:dc:c2:08:72:fb:3f:5d:79:63:e0:
3a:29:67:2c:87:88:c0:1b:ea:24:1f:18:bf:d3:54:f8:72:45:
87:e6:da:20:e1:a9:9d:da:cd:7c:72:06:61:13:bb:62:4e:55:
36:47:19:32:2a:8c:ad:b1:6a:84:48:a6:d0:3a:f3:b9:1b:e2:
f6:11:c6:3e:b7:ad:0f:0f:84:7a:fd:37:ed:86:ea:f9:b8:14:
d9:bd:51:9b:b0:05:7f:47:f5:d4:94:96:5f:da:1b:8e:4d:53:
cb:f0:cc:47:4c:1d:22:ee:e2:9c:bb:42:3a:74:50:07:f3:2a:
df:b7:d0:0e:66:56:78:97:f7:8d:5e:db:4f:25:cd:60:25:3b:
5c:be:cc:62:2b:40:20:f7:90:00:49:ee:33:df:44:c9:cc:0a:
23:fa:4b:f3:e7:cd:20:e1:77:6b:ef:91:52:4a:2c:18:db:3f:
a1:04:8c:f1:4f:76:09:6b:23:51:1d:45:de:dc:a0:36:66:00:
2f:b0:27:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 25 14:29:43 2023 by rpki-client on console-fra.rpki-client.org