Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/21582f-511a-4af3-8028-e2d88376d44d/1/drVqU_Vpmz-z6cf-_Yh_QMSHlIU.roa
File: drVqU_Vpmz-z6cf-_Yh_QMSHlIU.roa (raw, json)
Hash identifier: 76l3u/CdWdKIXf3RrbNYYjiW4qH+r6ZG7IgKjEdxHjU=
Subject key identifier: 76:B5:6A:53:F5:69:9B:3F:B3:E9:C7:FE:FD:88:7F:40:C4:87:94:85
Certificate issuer: /CN=03d17bc7ebebdcc9f1b3fdb55ad122e7062243e2
Certificate serial: 01857230EAD7C41D0550346874B93228919A
Authority key identifier: 03:D1:7B:C7:EB:EB:DC:C9:F1:B3:FD:B5:5A:D1:22:E7:06:22:43:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A9F7x-vr3Mnxs_21WtEi5wYiQ-I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/21582f-511a-4af3-8028-e2d88376d44d/1/drVqU_Vpmz-z6cf-_Yh_QMSHlIU.roa
Signing time: Mon 02 Jan 2023 11:14:46 +0000
ROA not before: Mon 02 Jan 2023 11:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.151.146.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:30:ea:d7:c4:1d:05:50:34:68:74:b9:32:28:91:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03d17bc7ebebdcc9f1b3fdb55ad122e7062243e2
Validity
Not Before: Jan 2 11:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=76b56a53f5699b3fb3e9c7fefd887f40c4879485
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:fd:ba:c7:3a:d5:8e:31:da:4f:80:e2:c9:7f:
a5:0d:d5:7b:17:f2:a0:20:3e:e1:3d:f9:3f:80:52:
c3:16:1f:b2:96:c4:50:72:de:2e:70:31:0e:db:e9:
53:3f:4d:78:ac:cb:b0:1a:20:ac:40:62:f7:41:10:
0c:f4:d5:9d:67:9b:9d:5e:1f:75:3d:02:f1:5c:e7:
87:97:be:63:03:f0:19:6b:1f:cd:27:25:5d:8f:59:
d5:8f:d7:b2:95:ad:47:7b:ba:cb:48:8b:a2:16:77:
60:04:92:df:69:9e:47:05:10:a6:ed:fa:0a:ff:ad:
98:04:65:c8:fe:47:dc:dd:09:a4:19:4f:87:3d:b6:
df:b2:cd:de:f1:10:44:80:97:25:74:4b:d2:76:4d:
e4:95:ca:33:40:6b:22:86:de:c7:a2:07:a9:42:1b:
54:77:20:0d:94:19:10:c5:17:eb:03:95:3f:29:11:
b6:aa:0d:93:11:fd:c0:38:c4:62:73:6c:0f:41:55:
9c:4b:ef:2f:d2:24:2e:6e:57:6e:74:b1:85:3c:15:
a8:1b:9a:fa:6b:35:14:4a:b3:9f:04:6b:1a:8b:b6:
ed:50:d7:c0:7e:31:28:ff:a5:de:76:9f:22:a9:5e:
61:b7:2a:45:5d:7f:cc:fe:c2:f9:41:7b:c3:cd:04:
96:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:B5:6A:53:F5:69:9B:3F:B3:E9:C7:FE:FD:88:7F:40:C4:87:94:85
X509v3 Authority Key Identifier:
keyid:03:D1:7B:C7:EB:EB:DC:C9:F1:B3:FD:B5:5A:D1:22:E7:06:22:43:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A9F7x-vr3Mnxs_21WtEi5wYiQ-I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/21582f-511a-4af3-8028-e2d88376d44d/1/drVqU_Vpmz-z6cf-_Yh_QMSHlIU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/21582f-511a-4af3-8028-e2d88376d44d/1/A9F7x-vr3Mnxs_21WtEi5wYiQ-I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.146.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:2d:de:3c:6c:0f:c8:94:d9:12:a3:02:60:33:72:4e:01:14:
15:89:c8:f6:81:c0:4c:5e:f5:c4:73:13:22:ce:c3:02:30:a0:
95:e1:9c:c3:5d:7e:6b:50:08:3c:35:15:24:a9:a9:96:b9:1a:
cb:ce:f7:6e:98:4e:18:7c:e9:b1:c0:6c:28:8d:89:f9:b8:c0:
68:67:4e:2f:0a:fa:4d:4d:d3:ae:78:5d:ed:8d:c8:0c:ff:bc:
55:23:1d:0e:eb:a9:0e:2d:01:35:16:f5:82:11:82:05:c3:b2:
22:81:27:e3:4e:1f:fb:32:7f:60:f6:24:9b:61:1c:b1:27:b2:
ad:66:e0:8d:66:04:b7:48:6c:52:1e:39:a0:2b:40:f2:9f:5a:
c4:44:00:72:92:14:7a:32:b2:95:2e:f5:c9:23:7a:32:98:a1:
fe:4c:2a:16:58:61:ba:04:81:46:89:75:ba:47:de:08:fe:aa:
d9:b6:92:c6:b6:4f:84:5e:1e:42:a5:ca:5e:95:c3:4e:97:1a:
4e:6a:14:10:0e:09:a1:25:43:f7:db:c8:e3:5f:cb:b3:6a:34:
c0:6a:e8:79:d0:38:c3:b0:61:aa:c5:32:7e:d0:88:06:94:74:
56:73:21:df:16:75:30:6a:fa:34:68:9b:7c:5f:7b:2c:15:f4:
05:b0:4f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:13 2024 by rpki-client on console-fra.rpki-client.org