Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/361f6d-ae67-4291-afba-05d2aa84d2c0/1/qg8kWaoBEv0NpRtPVcJahL-7v6I.roa
File: qg8kWaoBEv0NpRtPVcJahL-7v6I.roa (raw, json)
Hash identifier: CXkxcW8NhKUqIo6ZNSVLR9UNbiLKweUWDoOL0tIc3C0=
Subject key identifier: AA:0F:24:59:AA:01:12:FD:0D:A5:1B:4F:55:C2:5A:84:BF:BB:BF:A2
Certificate issuer: /CN=a00e26ebb44d2a496a42f8cd8619bf8d86ce4ed0
Certificate serial: 01856CC141481D66B56AE6DDC3079E50D00B
Authority key identifier: A0:0E:26:EB:B4:4D:2A:49:6A:42:F8:CD:86:19:BF:8D:86:CE:4E:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oA4m67RNKklqQvjNhhm_jYbOTtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/361f6d-ae67-4291-afba-05d2aa84d2c0/1/qg8kWaoBEv0NpRtPVcJahL-7v6I.roa
Signing time: Sun 01 Jan 2023 09:54:42 +0000
ROA not before: Sun 01 Jan 2023 09:54:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44285
IP address blocks: 185.233.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:c1:41:48:1d:66:b5:6a:e6:dd:c3:07:9e:50:d0:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a00e26ebb44d2a496a42f8cd8619bf8d86ce4ed0
Validity
Not Before: Jan 1 09:54:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aa0f2459aa0112fd0da51b4f55c25a84bfbbbfa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:77:dd:3c:dd:ff:32:b3:d9:ad:48:d3:22:8e:
fb:96:8b:ce:2d:9b:4c:db:27:50:4e:ce:98:06:34:
00:ca:c0:b7:0f:c9:bf:84:88:28:ae:55:2c:4f:7b:
96:b4:de:58:fe:13:93:5b:a7:a5:0e:29:93:ee:59:
c9:0c:37:cc:c2:b5:6a:de:62:89:5e:0a:b4:1f:52:
7e:74:e2:52:e8:7f:99:5e:49:28:02:88:51:87:3c:
07:98:fd:d6:54:44:5e:83:99:37:fd:dc:9a:89:79:
f4:8d:ed:05:4f:5b:f1:80:28:5e:19:05:f6:df:b1:
a6:ee:29:22:d4:bf:70:a7:0d:45:03:ec:79:ba:70:
5e:56:ac:7a:d9:52:83:07:a8:c2:3e:a9:d7:43:af:
c8:50:5d:cf:bb:b9:22:46:99:f6:a4:35:ba:b3:49:
2f:4f:af:88:91:5f:a3:87:9c:ca:e5:9d:38:a4:6e:
17:7e:00:4c:b5:df:74:a2:5e:c5:33:5f:83:5b:2a:
25:b0:9d:3d:91:d9:f2:61:8a:01:22:b8:16:a8:e7:
36:5e:36:73:1b:d4:46:ea:52:26:17:c1:de:d6:d8:
ee:9d:58:ef:9d:8e:33:f1:ef:8f:a9:34:6e:e7:a2:
14:79:ef:08:f7:ac:46:28:73:ae:74:34:6c:80:07:
3f:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:0F:24:59:AA:01:12:FD:0D:A5:1B:4F:55:C2:5A:84:BF:BB:BF:A2
X509v3 Authority Key Identifier:
keyid:A0:0E:26:EB:B4:4D:2A:49:6A:42:F8:CD:86:19:BF:8D:86:CE:4E:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oA4m67RNKklqQvjNhhm_jYbOTtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/361f6d-ae67-4291-afba-05d2aa84d2c0/1/qg8kWaoBEv0NpRtPVcJahL-7v6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/361f6d-ae67-4291-afba-05d2aa84d2c0/1/oA4m67RNKklqQvjNhhm_jYbOTtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.233.131.0/24
Signature Algorithm: sha256WithRSAEncryption
09:7c:1f:59:d0:62:0f:26:7f:4b:c7:5f:e8:45:a5:fe:44:b0:
98:35:b0:92:f9:92:27:78:e7:4c:32:71:2f:6c:5d:70:51:15:
93:70:1f:17:a7:71:07:06:05:85:bf:cb:e5:23:a0:d9:58:99:
34:db:44:3e:ea:e4:dd:dd:4c:55:4d:1a:92:07:b1:0d:4e:78:
8d:47:32:de:56:bc:b7:b0:b7:b1:d0:0f:3a:62:95:d4:78:c0:
9a:71:fa:d7:fe:41:42:2f:a3:00:4c:26:55:2e:6a:7a:69:42:
d0:a0:eb:62:b8:44:af:ff:9f:c0:93:16:b5:47:94:88:4c:f6:
1a:a7:a6:b7:3e:19:01:ee:2e:db:a2:b2:7f:c0:da:79:6c:8d:
73:8c:a7:33:03:28:6a:68:a9:4c:b8:8a:cb:16:bd:37:34:23:
a8:8e:78:54:d6:44:e8:06:31:27:a1:b6:fa:86:f3:d3:e0:2e:
77:a7:85:a3:dd:a4:b4:23:e2:9f:99:06:6b:cd:f7:3f:99:de:
60:ce:79:f3:7d:3a:b3:ab:87:79:11:bd:d7:5d:d0:65:bb:08:
d4:b3:4d:32:0a:d8:58:cd:1f:e4:74:04:82:de:4f:a3:7f:80:
76:85:6b:b5:9d:bb:c0:d8:4f:be:fe:7f:59:f7:55:39:47:da:
ca:5b:2f:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:16 2024 by rpki-client on console-ams.rpki-client.org