Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/4dc07a-da6d-49fb-be8e-8eb02c23f7e5/1/D46hP9Qf1JuSUW-pfJQBWob1ekM.roa
File: D46hP9Qf1JuSUW-pfJQBWob1ekM.roa (raw, json)
Hash identifier: RnGZ8zgy2zAtSWuTrvJXB5zHdbPZtpm/4gCwSEWtABY=
Subject key identifier: 0F:8E:A1:3F:D4:1F:D4:9B:92:51:6F:A9:7C:94:01:5A:86:F5:7A:43
Certificate issuer: /CN=c0d1b3287b9d9db1af7059da10b46b61187969c4
Certificate serial: 018915E37F9FF4F6FC6E6F3C83E756CA9CFC
Authority key identifier: C0:D1:B3:28:7B:9D:9D:B1:AF:70:59:DA:10:B4:6B:61:18:79:69:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wNGzKHudnbGvcFnaELRrYRh5acQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/4dc07a-da6d-49fb-be8e-8eb02c23f7e5/1/D46hP9Qf1JuSUW-pfJQBWob1ekM.roa
Signing time: Sun 02 Jul 2023 09:16:18 +0000
ROA not before: Sun 02 Jul 2023 09:16:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212036
IP address blocks: 85.208.252.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:15:e3:7f:9f:f4:f6:fc:6e:6f:3c:83:e7:56:ca:9c:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c0d1b3287b9d9db1af7059da10b46b61187969c4
Validity
Not Before: Jul 2 09:16:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f8ea13fd41fd49b92516fa97c94015a86f57a43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:06:eb:66:b8:7c:f7:b8:1b:bc:aa:a7:83:18:
e4:fe:1d:8c:24:68:ef:7a:7e:98:8f:ff:5b:cb:21:
5e:72:40:6f:1d:b0:b9:e2:e9:27:1f:43:27:bd:5e:
6c:e8:af:13:e3:fa:88:6e:75:7a:b6:5d:4c:d3:a1:
6d:09:ad:02:02:8e:38:ab:08:8d:0e:7f:c8:d1:34:
dd:14:09:0b:c6:9b:fe:43:09:aa:e9:d1:ea:1b:a3:
2f:78:53:1c:32:d3:8f:9d:db:23:4a:86:37:0e:6a:
6c:61:c5:55:48:74:58:e4:26:1d:7f:85:a5:fb:ad:
d4:92:71:e4:f7:b9:72:3b:53:8f:ab:44:dc:67:cb:
c3:22:2a:37:77:40:92:d0:36:d2:15:4c:6b:55:dd:
f1:84:f3:d6:9b:30:0d:d1:99:19:9f:fe:2b:33:be:
e7:e4:b1:9e:57:66:92:b6:2c:a8:bb:77:0b:06:e0:
3d:84:02:7c:43:4e:2e:02:a2:8c:7b:6d:3a:ed:5d:
e0:04:a8:85:06:5e:26:07:34:ee:06:cc:a9:c7:43:
25:d8:7c:61:25:e4:e4:2a:c7:02:79:4e:02:74:f8:
f1:8d:83:ed:05:44:57:76:ce:64:85:18:12:04:07:
d2:49:8d:f9:c2:28:a8:bb:c7:17:85:e5:58:49:a1:
76:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:8E:A1:3F:D4:1F:D4:9B:92:51:6F:A9:7C:94:01:5A:86:F5:7A:43
X509v3 Authority Key Identifier:
keyid:C0:D1:B3:28:7B:9D:9D:B1:AF:70:59:DA:10:B4:6B:61:18:79:69:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wNGzKHudnbGvcFnaELRrYRh5acQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4dc07a-da6d-49fb-be8e-8eb02c23f7e5/1/D46hP9Qf1JuSUW-pfJQBWob1ekM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/4dc07a-da6d-49fb-be8e-8eb02c23f7e5/1/wNGzKHudnbGvcFnaELRrYRh5acQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.208.252.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:e2:c4:78:5d:aa:05:b3:1e:f0:21:92:f7:19:22:6f:d4:07:
89:8e:63:57:83:4a:19:ec:da:e7:66:48:29:b0:42:e5:d5:d7:
8d:de:61:f4:6b:7e:6e:4f:55:63:2f:75:cf:dd:e3:f2:9a:20:
92:5c:60:28:67:c3:37:82:da:7b:39:bf:72:c8:4d:35:ec:16:
69:28:2e:19:87:84:28:a5:74:66:f0:89:00:7d:7d:04:c0:63:
1e:71:94:ab:2e:f0:7d:2c:87:b3:a3:af:4d:78:70:05:58:dd:
4e:b2:25:92:dd:5b:fb:55:5d:98:21:b3:99:1b:fa:40:57:89:
1c:03:74:90:83:2a:78:27:18:22:37:a3:d7:22:03:22:45:0f:
d0:7e:89:f4:c9:31:b2:71:75:a8:66:a4:3e:72:f0:a7:ce:dd:
bc:3d:52:b9:26:8b:c0:f8:1c:46:07:06:60:17:2a:d2:ed:38:
08:68:48:b1:5b:20:2e:14:2c:6e:dc:70:b9:a7:46:59:55:ab:
8a:79:ce:a8:82:5a:38:36:cd:3e:46:9c:af:a0:b2:7d:74:a4:
a3:fa:0a:ed:c4:6a:ae:01:b8:6d:5f:bc:d8:37:b3:74:1e:44:
d0:b0:76:68:ab:fe:45:94:26:fb:28:b4:7d:26:3e:ea:97:e4:
9a:b9:a3:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:04 2024 by rpki-client on console-ams.rpki-client.org