Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/0a3e12-bfc5-4b45-9fc5-37a1f61aecf1/1/p2RneU6waIH_3t5QzxBTUgroQaQ.roa
File: p2RneU6waIH_3t5QzxBTUgroQaQ.roa (raw, json)
Hash identifier: a4EIh6bQ54f9MIPH/W868pF3KErS2QLPaviy5UWwHKc=
Subject key identifier: A7:64:67:79:4E:B0:68:81:FF:DE:DE:50:CF:10:53:52:0A:E8:41:A4
Certificate issuer: /CN=23523198ae37c02061f45c679daf3e337c285573
Certificate serial: 018CC79517C4556996A7A2C4FC8729AEBB0C
Authority key identifier: 23:52:31:98:AE:37:C0:20:61:F4:5C:67:9D:AF:3E:33:7C:28:55:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I1IxmK43wCBh9Fxnna8-M3woVXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/0a3e12-bfc5-4b45-9fc5-37a1f61aecf1/1/p2RneU6waIH_3t5QzxBTUgroQaQ.roa
Signing time: Tue 02 Jan 2024 00:31:26 +0000
ROA not before: Tue 02 Jan 2024 00:31:26 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62240
IP address blocks: 185.81.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:95:17:c4:55:69:96:a7:a2:c4:fc:87:29:ae:bb:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23523198ae37c02061f45c679daf3e337c285573
Validity
Not Before: Jan 2 00:31:26 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a76467794eb06881ffdede50cf1053520ae841a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6b:40:e2:7b:77:81:9d:cc:6c:13:f3:94:a2:
0c:7c:54:90:b6:0c:e0:16:83:56:da:08:d3:17:b9:
3c:09:2d:ad:fa:61:6b:db:6b:9a:08:64:9e:47:23:
5b:bd:3d:79:14:1a:5f:d3:35:a9:07:99:d9:42:d1:
76:63:5e:d7:d7:bb:d5:ab:70:b2:03:83:da:78:a7:
b3:c3:0c:5c:b9:1d:14:a1:b2:90:62:3b:04:3a:1e:
50:6d:0e:99:70:77:d0:49:7a:2a:07:d8:df:fd:60:
db:a7:02:45:7d:f5:15:6a:a8:0a:ac:92:a8:47:e0:
2c:31:c7:5d:46:4e:88:16:bc:7b:53:95:89:48:1c:
1c:94:fa:dd:ec:d1:68:4c:c3:1a:fe:a2:26:42:19:
9d:b3:f1:88:6c:55:6e:74:e3:ac:f9:c3:1c:a7:19:
6f:c6:63:e5:fe:65:a2:cb:dc:f4:77:2e:f7:de:b1:
af:f3:d9:c2:29:62:32:ed:31:4d:7f:ab:3e:92:46:
81:53:b6:02:91:6a:0b:45:53:24:ff:1a:8d:aa:d7:
f8:52:1f:44:b5:ee:34:52:c0:0e:17:c5:53:1e:66:
6a:6f:54:94:fd:a3:75:69:5b:10:32:d0:6f:45:fb:
78:b9:f3:dd:30:c9:6c:b9:14:86:99:b8:91:be:42:
5d:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:64:67:79:4E:B0:68:81:FF:DE:DE:50:CF:10:53:52:0A:E8:41:A4
X509v3 Authority Key Identifier:
keyid:23:52:31:98:AE:37:C0:20:61:F4:5C:67:9D:AF:3E:33:7C:28:55:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I1IxmK43wCBh9Fxnna8-M3woVXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0a3e12-bfc5-4b45-9fc5-37a1f61aecf1/1/p2RneU6waIH_3t5QzxBTUgroQaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/0a3e12-bfc5-4b45-9fc5-37a1f61aecf1/1/I1IxmK43wCBh9Fxnna8-M3woVXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.81.71.0/24
Signature Algorithm: sha256WithRSAEncryption
e6:7f:11:b1:6c:56:1b:e4:95:a5:a4:e1:3c:82:21:c8:76:e5:
3d:48:d3:3c:36:6d:32:42:2c:d6:18:63:42:50:f7:17:39:fb:
1d:00:b0:bd:b0:35:45:74:05:a3:11:fe:44:47:e5:a8:bf:25:
af:33:a3:8a:42:08:7c:b3:5d:92:fa:92:73:0a:34:bf:83:3d:
0f:e6:a6:7c:fe:a0:b3:56:8f:75:71:a1:f9:da:78:58:c2:cc:
7a:98:e9:92:dc:db:bb:f2:f1:8a:55:a0:56:8d:14:15:70:50:
4c:bd:3e:4a:a1:45:28:1b:1b:e3:c9:6c:19:a4:0e:a6:af:0d:
64:bd:87:3a:a2:27:c5:eb:94:41:ec:e0:d8:36:b6:4d:39:3e:
f7:eb:ee:84:17:43:7b:f5:8c:3d:d4:6d:d2:8a:bc:07:02:f4:
f1:82:7a:55:60:7e:d5:a5:c0:e0:7f:a3:a6:82:61:5a:90:f8:
dd:8c:42:71:e9:82:b3:41:16:83:f6:5e:3c:76:12:e1:e7:8c:
75:c5:93:c4:08:98:92:f2:df:4e:2e:9e:e4:e0:48:99:71:83:
e3:54:49:ac:ab:83:2b:91:63:ea:d4:6b:cb:97:56:4c:a7:56:
7a:fd:a3:7f:64:7f:70:8f:43:8c:54:1e:76:47:e1:94:a8:fd:
26:89:82:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 15 18:54:22 2024 by rpki-client on console-fra.rpki-client.org