Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/KM0Ktcvnm3S92OAPul7zF5et5aI.roa
File: KM0Ktcvnm3S92OAPul7zF5et5aI.roa (raw, json)
Hash identifier: 9zzpmHOwRFJUL0EyH1QDdl1qAG9YR/iduGHvsOQTnuc=
Subject key identifier: 28:CD:0A:B5:CB:E7:9B:74:BD:D8:E0:0F:BA:5E:F3:17:97:AD:E5:A2
Certificate issuer: /CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Certificate serial: 01841E27CC1307161B95A01E199449C35082
Authority key identifier: FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/KM0Ktcvnm3S92OAPul7zF5et5aI.roa
Signing time: Fri 28 Oct 2022 10:33:55 +0000
ROA not before: Fri 28 Oct 2022 10:33:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44771
IP address blocks: 185.149.155.0/24 maxlen: 24
185.149.153.0/24 maxlen: 24
185.149.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1e:27:cc:13:07:16:1b:95:a0:1e:19:94:49:c3:50:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Validity
Not Before: Oct 28 10:33:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=28cd0ab5cbe79b74bdd8e00fba5ef31797ade5a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:35:f9:46:1f:14:76:4b:2e:31:67:33:34:3d:
6b:44:8f:f4:cf:92:ac:35:70:68:ef:b5:e9:0c:32:
c3:ef:a8:21:9d:3b:1f:76:9b:5f:a1:16:8d:75:08:
f3:fa:3d:94:0a:a4:e4:89:51:c1:65:9e:54:1f:ed:
c3:82:31:11:09:ea:fe:09:73:ff:c1:6b:df:73:f8:
7b:9e:4f:ca:f2:be:3b:93:60:8d:f3:1e:36:86:1c:
cb:aa:e5:4e:37:7d:1e:ae:1e:cf:b0:73:1f:ef:42:
0f:76:92:ed:2c:e6:e0:8a:50:9f:0e:0a:19:9a:d1:
47:33:7d:ee:c0:95:3e:20:1f:bf:58:06:33:b4:7b:
8b:85:76:b3:39:63:75:de:c7:1d:47:4d:58:2d:f1:
fb:34:79:fe:11:e4:f9:80:a6:6d:a4:11:ee:16:6c:
b2:9f:ba:96:42:67:a2:6b:52:5e:d4:ba:1d:bb:4d:
72:25:f1:49:5f:f8:45:41:cb:27:48:33:21:cd:2d:
80:47:2d:95:8f:b2:28:f7:37:11:07:dd:44:d9:9b:
52:83:f8:73:32:2a:4a:fb:06:46:98:29:60:88:f3:
c5:e3:9a:6c:43:84:e9:e6:d1:c0:63:28:2b:af:4a:
33:a6:47:7a:6b:ad:b0:b7:42:b0:ff:a5:92:cd:bd:
07:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CD:0A:B5:CB:E7:9B:74:BD:D8:E0:0F:BA:5E:F3:17:97:AD:E5:A2
X509v3 Authority Key Identifier:
keyid:FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/KM0Ktcvnm3S92OAPul7zF5et5aI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/_FtT36gxYJPBcrQxWSLvF-ZfBR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.153.0-185.149.155.255
Signature Algorithm: sha256WithRSAEncryption
4d:2a:89:67:b7:2b:63:bc:46:3c:4e:2b:66:3a:fc:ed:6a:0d:
72:eb:6a:0d:d0:4d:de:a5:a4:9a:1a:dc:67:8a:5c:52:eb:01:
28:a7:13:90:50:af:62:92:42:91:ed:fb:8c:0a:ad:f5:2a:11:
3a:da:ff:1e:f1:29:d9:ec:59:07:68:32:9b:43:6e:db:27:d0:
2c:d4:af:47:1b:1f:9b:4f:44:3a:11:d4:ef:bc:ca:7d:67:22:
a2:f0:f1:b2:fc:d2:e7:3a:2d:8f:d7:6d:8f:a3:31:e0:c5:d6:
5c:b8:b3:ff:21:7c:80:2a:f3:62:2e:3d:00:87:40:10:9e:f8:
ce:0a:69:60:a9:b8:3e:df:74:6c:87:34:41:d3:e5:a8:aa:07:
d0:86:03:81:ba:8f:2d:56:3f:9a:1a:d5:c8:85:25:ad:11:37:
12:5f:a7:e1:fa:c2:06:60:05:4d:d2:8a:71:f9:bd:08:98:51:
e7:b3:bc:5b:1f:b4:8f:11:d8:09:1b:16:ae:c8:dc:f8:67:46:
d9:6b:50:37:e4:ea:32:a2:a5:b6:72:02:8e:dd:92:59:5a:b4:
76:e4:80:39:77:6d:22:c0:0d:1f:a0:58:7a:07:8c:8c:53:45:
b2:7b:1d:ba:b0:83:49:aa:b6:a3:f7:da:5c:52:27:23:d9:84:
e1:5f:58:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:18 2024 by rpki-client on console-fra.rpki-client.org