Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/460f98-96e4-40bb-9fab-e320849b2a98/1/pX3JydfR4Zsi3vInonfF5joVdUA.roa
File: pX3JydfR4Zsi3vInonfF5joVdUA.roa (raw, json)
Hash identifier: a1XkQqlu7NA6uNfKmDMk9cKEdFaNo8jjVjNTqAqYhIs=
Subject key identifier: A5:7D:C9:C9:D7:D1:E1:9B:22:DE:F2:27:A2:77:C5:E6:3A:15:75:40
Certificate issuer: /CN=8e87e9a228f1e24cdd07ea44a503104d41a26fd2
Certificate serial: 018570799D72FF364E205879E649753634B8
Authority key identifier: 8E:87:E9:A2:28:F1:E2:4C:DD:07:EA:44:A5:03:10:4D:41:A2:6F:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jofpoijx4kzdB-pEpQMQTUGib9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/460f98-96e4-40bb-9fab-e320849b2a98/1/pX3JydfR4Zsi3vInonfF5joVdUA.roa
Signing time: Mon 02 Jan 2023 03:14:56 +0000
ROA not before: Mon 02 Jan 2023 03:14:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 213328
IP address blocks: 185.83.124.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:9d:72:ff:36:4e:20:58:79:e6:49:75:36:34:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e87e9a228f1e24cdd07ea44a503104d41a26fd2
Validity
Not Before: Jan 2 03:14:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a57dc9c9d7d1e19b22def227a277c5e63a157540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:eb:31:bb:c3:01:62:87:25:de:fb:50:3c:2c:
30:a1:31:87:0f:38:f7:af:f4:1f:3a:09:a4:a2:f1:
62:e8:3f:6a:5b:29:2f:40:3a:01:0b:f5:3d:a9:3a:
90:9b:4a:0e:4f:a3:a5:46:43:32:6d:3f:b6:5f:7d:
da:0d:7b:ec:73:e9:19:aa:fe:47:91:19:6b:f9:8f:
c8:65:be:0a:c4:76:94:3a:52:6e:a4:49:c0:e3:4a:
12:fc:87:4b:6f:de:10:56:4e:bb:57:fb:68:9b:1e:
5d:99:89:d9:d0:10:e3:c6:44:40:16:cd:4c:7f:72:
23:0c:5b:2e:0b:1c:e7:88:14:a8:ac:55:c8:33:d2:
b9:26:58:2b:ab:64:78:c9:ce:f8:17:06:d7:32:54:
55:69:6f:94:0d:c0:22:85:49:0c:7b:dd:ab:4b:fd:
74:40:57:dc:6a:f6:44:0e:75:d6:21:f6:56:61:0a:
59:59:0b:1d:f8:32:82:94:86:f6:c8:33:c0:e7:92:
61:8d:5b:4d:82:cb:aa:3a:3c:e9:ef:39:c8:13:d5:
69:bc:d0:26:33:82:d0:0f:c5:f8:ef:f1:3f:9a:37:
3b:63:8e:75:24:a2:47:d4:66:dd:2a:66:5d:6e:78:
de:d8:32:10:60:68:05:b3:bc:d9:99:c7:7b:36:b5:
59:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:7D:C9:C9:D7:D1:E1:9B:22:DE:F2:27:A2:77:C5:E6:3A:15:75:40
X509v3 Authority Key Identifier:
keyid:8E:87:E9:A2:28:F1:E2:4C:DD:07:EA:44:A5:03:10:4D:41:A2:6F:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jofpoijx4kzdB-pEpQMQTUGib9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/460f98-96e4-40bb-9fab-e320849b2a98/1/pX3JydfR4Zsi3vInonfF5joVdUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/460f98-96e4-40bb-9fab-e320849b2a98/1/jofpoijx4kzdB-pEpQMQTUGib9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.83.124.0/23
Signature Algorithm: sha256WithRSAEncryption
60:a6:3a:55:84:27:84:6c:0b:17:b9:b4:22:48:c9:5b:ee:a8:
ae:f4:8f:4e:de:49:3f:4f:c1:67:d4:dc:cc:39:ca:49:e3:54:
53:9e:56:27:38:b5:61:75:26:71:e8:8a:30:e0:76:0e:f7:74:
20:c9:e6:03:1c:85:83:86:b6:d3:f7:65:fe:a4:c9:57:aa:ed:
b7:25:b8:a0:8e:de:ff:b3:84:0f:44:3f:d1:d9:31:da:5f:9f:
92:c9:66:3d:04:e7:2e:a2:08:b0:92:2b:0c:71:66:1f:0e:e4:
da:46:99:d8:b8:00:84:ee:91:10:5c:27:ab:2c:fb:91:90:29:
9b:67:55:55:58:bf:9c:4f:14:48:fe:55:46:78:4b:ec:1d:d5:
04:3c:d8:57:8e:c5:d9:4f:d4:c5:6e:ab:02:ec:e2:51:5b:a9:
a5:29:d5:ca:fa:26:ba:24:fb:25:fa:fd:dc:15:4d:0b:83:6f:
94:3c:19:d7:66:7c:23:76:a8:cf:b5:1a:ad:42:0d:d0:24:a6:
e9:1c:cc:85:b4:08:35:a5:57:ff:0c:85:94:ea:93:49:73:f9:
dc:de:a6:e8:32:03:66:72:18:4b:47:3c:20:48:43:ef:e0:53:
d2:fa:72:fe:42:37:b3:39:a2:ee:7f:f6:b3:51:56:a8:e1:b9:
85:33:b7:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:48 2024 by rpki-client on console-ams.rpki-client.org