Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/tBsNvhHl_jLEv9fSMTcBoBZoOIM.roa
File: tBsNvhHl_jLEv9fSMTcBoBZoOIM.roa (raw, json)
Hash identifier: OiK/2MY8Zfc/FQ7SGEeuSKcaGGxseRicL/kKncRJxzg=
Subject key identifier: B4:1B:0D:BE:11:E5:FE:32:C4:BF:D7:D2:31:37:01:A0:16:68:38:83
Certificate issuer: /CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Certificate serial: 01841E27C0E938A885BA7843CDAC36C260F5
Authority key identifier: FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/tBsNvhHl_jLEv9fSMTcBoBZoOIM.roa
Signing time: Fri 28 Oct 2022 10:33:52 +0000
ROA not before: Fri 28 Oct 2022 10:33:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13194
IP address blocks: 185.149.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1e:27:c0:e9:38:a8:85:ba:78:43:cd:ac:36:c2:60:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fc5b53dfa8316093c172b4315922ef17e65f051d
Validity
Not Before: Oct 28 10:33:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b41b0dbe11e5fe32c4bfd7d2313701a016683883
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:08:e5:a0:d3:22:1c:ec:50:cf:53:b8:1e:8d:
0f:22:af:41:2b:48:ca:fc:ff:b0:52:f4:a7:3c:7f:
23:21:9d:b1:8f:b6:12:e7:d1:cc:1b:94:86:4e:72:
07:8c:f3:e9:b4:ca:b9:00:07:18:9c:d5:96:a9:d3:
ae:c7:6a:99:f5:31:1a:89:cd:44:7c:41:28:30:3c:
be:87:be:24:98:65:f4:6a:ea:e4:91:1a:ee:83:03:
6d:91:cd:53:2a:d0:b2:3a:3c:9b:b2:af:3a:e3:2a:
7f:e7:1f:ba:b7:b8:73:1e:e8:3c:c8:4d:10:9a:e2:
3a:49:c0:4c:88:46:85:82:aa:fe:37:93:40:b4:fb:
d5:e3:c8:37:82:64:b1:c9:00:c4:42:f4:83:fa:37:
a9:a8:a8:02:06:e7:75:47:7b:42:16:b8:11:46:25:
c9:ae:04:cf:44:9d:f3:90:7b:a2:41:93:36:8f:54:
d6:f6:ed:3f:52:53:b4:8e:bb:e6:86:98:53:a3:07:
a1:7e:8a:87:1f:48:d7:cc:6c:57:58:f7:a7:58:b4:
97:ab:7f:51:cd:bb:91:55:80:61:21:a1:8e:6b:ff:
43:eb:95:5d:ce:11:ce:95:73:48:c3:32:a5:5a:06:
a8:fd:a1:76:07:fc:cc:9f:c5:3d:d9:12:a0:6b:e2:
a5:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:1B:0D:BE:11:E5:FE:32:C4:BF:D7:D2:31:37:01:A0:16:68:38:83
X509v3 Authority Key Identifier:
keyid:FC:5B:53:DF:A8:31:60:93:C1:72:B4:31:59:22:EF:17:E6:5F:05:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_FtT36gxYJPBcrQxWSLvF-ZfBR0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/tBsNvhHl_jLEv9fSMTcBoBZoOIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/5d56e5-838a-43f3-b52c-14efc982867f/1/_FtT36gxYJPBcrQxWSLvF-ZfBR0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.149.153.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:7b:2e:7f:2e:8a:9d:b1:87:0d:fd:61:cf:b9:28:cd:93:d8:
f6:67:32:b6:5d:d4:14:9d:82:15:b4:1f:87:e9:6d:6e:58:72:
48:08:dd:c8:36:7d:25:08:e1:ef:5b:58:8c:7e:43:1c:2c:e0:
e6:86:dd:e7:5d:c8:e9:44:06:1d:96:35:4f:04:d0:a0:f1:78:
fd:88:b1:68:44:c6:54:be:59:34:7f:70:e6:16:f0:0f:f2:29:
4f:c4:70:cf:60:94:f6:36:0f:48:67:e5:f3:b3:8b:bd:d8:81:
e3:58:ce:c7:07:a5:af:03:cf:59:73:ab:55:74:04:50:6a:96:
3f:77:99:42:78:98:65:8b:3b:ff:ec:ee:3f:60:1c:d1:d0:86:
ea:fe:ff:85:ef:7d:e6:10:09:21:5c:38:63:9e:9c:88:77:a1:
32:22:c0:6a:30:38:0c:5c:fe:de:88:9c:08:28:0f:a0:d1:3e:
62:4f:d3:85:49:82:38:e8:f1:28:dc:9d:0b:8a:dd:6b:f5:30:
38:29:3c:f2:d8:c7:c9:64:c3:b6:0e:9b:64:12:ec:7c:f7:81:
07:27:54:b7:4b:03:4b:c8:d3:ec:e6:79:50:79:b2:c4:4a:8d:
f5:f0:41:56:e1:b9:20:e1:c0:1e:e5:11:f4:2b:a0:77:53:2f:
a8:8e:a4:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:19 2024 by rpki-client on console-fra.rpki-client.org