Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/361f6d-ae67-4291-afba-05d2aa84d2c0/1/NaKqvXMlOtzDrK-bDwaDASdEqNc.roa
File: NaKqvXMlOtzDrK-bDwaDASdEqNc.roa (raw, json)
Hash identifier: gLQATcdiULYkAgEjaBM9+27t4k5aTE8lCklhYg2DOU4=
Subject key identifier: 35:A2:AA:BD:73:25:3A:DC:C3:AC:AF:9B:0F:06:83:01:27:44:A8:D7
Certificate issuer: /CN=a00e26ebb44d2a496a42f8cd8619bf8d86ce4ed0
Certificate serial: 018DBF6C
Authority key identifier: A0:0E:26:EB:B4:4D:2A:49:6A:42:F8:CD:86:19:BF:8D:86:CE:4E:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oA4m67RNKklqQvjNhhm_jYbOTtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/361f6d-ae67-4291-afba-05d2aa84d2c0/1/NaKqvXMlOtzDrK-bDwaDASdEqNc.roa
Signing time: Sat 01 Jan 2022 05:56:08 +0000
ROA not before: Sat 01 Jan 2022 05:56:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44285
IP address blocks: 185.233.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26066796 (0x18dbf6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00e26ebb44d2a496a42f8cd8619bf8d86ce4ed0
Validity
Not Before: Jan 1 05:56:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35a2aabd73253adcc3acaf9b0f0683012744a8d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:32:72:62:bd:3e:57:41:4f:33:44:b6:c0:a7:
a3:14:e1:66:80:b1:e0:4e:fd:ea:e8:86:88:98:aa:
94:34:3e:72:b5:8c:78:5e:09:8a:0b:36:30:5a:67:
96:8a:4f:2c:97:f2:94:9b:2b:ed:ba:e4:5e:24:cc:
e5:dd:90:a1:06:c8:bd:c2:77:ab:da:1e:29:65:d8:
56:8c:fd:95:1c:62:15:b4:20:13:3d:c9:e7:75:12:
db:97:0e:18:9d:9d:90:4a:ed:59:c5:cb:94:62:dc:
69:a5:6c:8d:bc:2c:eb:c6:8a:d1:ea:e0:bc:5b:dd:
06:32:30:27:6f:4e:d0:5d:12:dd:1a:ab:7a:16:5e:
4a:3b:92:09:ce:93:2d:1c:71:37:06:70:69:89:8f:
0c:85:c9:ac:81:85:4f:b1:ac:d0:20:fb:aa:51:14:
75:93:92:a8:5d:67:86:e7:58:9d:7a:fb:83:74:55:
3d:c9:9a:bd:3d:a2:66:b4:61:14:40:bf:86:92:ca:
64:a3:2a:b2:ea:f0:25:a5:f6:52:41:57:70:e5:ff:
9c:20:fc:85:ff:b9:2f:a6:24:f9:19:f0:c4:e6:33:
eb:65:56:21:a9:fb:a0:74:3d:99:19:e6:3f:2a:0a:
c6:63:47:fd:b2:ab:86:0b:00:2c:56:20:67:34:de:
91:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A2:AA:BD:73:25:3A:DC:C3:AC:AF:9B:0F:06:83:01:27:44:A8:D7
X509v3 Authority Key Identifier:
keyid:A0:0E:26:EB:B4:4D:2A:49:6A:42:F8:CD:86:19:BF:8D:86:CE:4E:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oA4m67RNKklqQvjNhhm_jYbOTtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/361f6d-ae67-4291-afba-05d2aa84d2c0/1/NaKqvXMlOtzDrK-bDwaDASdEqNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/361f6d-ae67-4291-afba-05d2aa84d2c0/1/oA4m67RNKklqQvjNhhm_jYbOTtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.131.0/24
Signature Algorithm: sha256WithRSAEncryption
47:6a:7e:17:f3:f5:b0:ce:a5:71:a1:2d:54:61:fa:46:8f:11:
88:a2:bb:2e:18:e9:88:15:f8:20:39:d0:08:96:d2:87:fb:3c:
a9:ee:94:b2:48:31:35:e8:9e:e6:22:9a:17:1d:e9:49:26:af:
b9:bf:23:d3:ae:85:43:e5:99:89:c6:d9:8d:87:ee:7e:a7:97:
9c:e1:c0:87:51:53:dc:3e:1d:c3:1f:4f:35:8e:8f:41:72:ea:
59:92:2f:3d:c4:58:50:6b:35:fe:0a:16:6b:39:ed:63:47:6e:
55:3f:68:7e:7d:5f:25:61:2e:57:de:68:d8:01:cc:82:69:d7:
a2:9f:f9:5d:da:6e:9b:0b:fc:03:97:ee:7f:17:78:1e:b1:26:
e4:36:fa:0e:d1:24:3a:b1:f3:78:0a:c8:66:5e:cd:84:e4:d4:
cb:97:b0:d8:4a:35:93:5f:e7:c0:0f:b3:91:a9:a9:2e:26:4b:
36:c4:3b:8c:9b:55:40:7b:d9:de:b0:ee:52:8b:b8:d0:64:27:
55:71:64:28:d5:3c:5a:de:5e:25:4d:2d:2f:61:9f:a4:47:5d:
33:ae:b2:54:a0:21:70:83:60:c3:62:fa:41:64:31:c6:1a:52:
9a:70:9f:10:de:92:6f:e1:45:70:5e:0c:d4:dd:4b:89:f1:a3:
bb:e7:66:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:17 2024 by rpki-client on console-fra.rpki-client.org