Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/oyDKdwQpUGGUfHYjt2mwb-U-QOE.roa
File: oyDKdwQpUGGUfHYjt2mwb-U-QOE.roa (raw, json)
Hash identifier: 0l0Jr58UPvE0zvocsYx7rJb/KRpdqHDaQgS2XNujXCw=
Subject key identifier: A3:20:CA:77:04:29:50:61:94:7C:76:23:B7:69:B0:6F:E5:3E:40:E1
Certificate issuer: /CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Certificate serial: 01831DF082D2E9AD108ABF3F787661050F2A
Authority key identifier: 85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/oyDKdwQpUGGUfHYjt2mwb-U-QOE.roa
Signing time: Thu 08 Sep 2022 16:30:44 +0000
ROA not before: Thu 08 Sep 2022 16:30:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398343
IP address blocks: 185.212.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1d:f0:82:d2:e9:ad:10:8a:bf:3f:78:76:61:05:0f:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=85c3f6a9e8550c090bc3b257f72b8f65b69a9f61
Validity
Not Before: Sep 8 16:30:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a320ca7704295061947c7623b769b06fe53e40e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:21:d8:16:ff:74:ac:ba:b8:bd:d8:65:2f:32:
b1:29:fb:9f:b8:85:39:ba:b0:0e:16:3f:ca:86:55:
31:85:d5:f9:a1:f7:62:e8:ce:a1:7f:49:ea:50:7f:
fc:71:a8:11:ea:03:dc:66:34:d8:d0:1f:f1:53:4a:
3a:0f:c6:cc:3b:9e:f4:32:b7:f9:38:89:64:4c:db:
23:48:12:01:13:05:1a:e8:6b:38:73:e7:fb:83:b2:
2d:79:90:ee:3c:ae:73:95:85:43:86:1d:9b:55:a4:
ca:95:db:77:cc:ac:09:ae:14:a4:c5:92:f0:0a:a1:
61:63:a8:99:71:d8:f9:ad:d8:a4:21:6a:7e:2e:7b:
ae:d5:31:88:d3:66:f6:4d:d9:3f:0f:c1:81:d3:38:
70:ac:28:aa:eb:15:5c:e6:d9:d5:d0:f9:26:90:02:
fc:22:f4:d3:cc:11:40:6a:37:a5:b0:f6:12:47:96:
2c:66:e7:6d:f6:ff:3a:9f:48:48:a5:4b:e3:b5:30:
44:5f:46:aa:5e:00:5b:cc:64:05:d0:60:48:6e:67:
ae:dc:1c:af:0b:d4:ac:8f:90:a0:75:60:5d:aa:7e:
44:b2:b7:30:56:66:95:29:fd:6f:1e:86:d1:d1:5e:
6b:5e:5d:18:56:1a:c6:b5:56:57:0f:6e:bf:65:a1:
b9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:20:CA:77:04:29:50:61:94:7C:76:23:B7:69:B0:6F:E5:3E:40:E1
X509v3 Authority Key Identifier:
keyid:85:C3:F6:A9:E8:55:0C:09:0B:C3:B2:57:F7:2B:8F:65:B6:9A:9F:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hcP2qehVDAkLw7JX9yuPZbaan2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/oyDKdwQpUGGUfHYjt2mwb-U-QOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/da/524ba5-096d-47ff-a8f4-dc8a2d9ec6f3/1/hcP2qehVDAkLw7JX9yuPZbaan2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.119.0/24
Signature Algorithm: sha256WithRSAEncryption
69:2a:f0:4d:4a:f2:63:c3:ea:80:dc:d5:5f:2b:77:72:e7:a0:
a0:ed:1d:2c:4f:d1:54:a1:c6:38:0f:34:b3:38:82:b3:4a:f6:
4d:3e:be:fd:a0:8d:17:d9:1c:fc:a3:fb:1e:7d:e6:88:5b:7a:
ce:3f:de:6f:eb:64:56:43:6d:47:49:49:3f:59:8f:4e:ee:a2:
b2:b0:b1:46:8a:80:f6:8a:27:13:ad:ac:59:e3:7d:c5:c9:85:
40:7e:82:fc:39:37:48:e6:a9:cd:7b:27:43:43:0d:e4:6f:d9:
15:e3:7f:d0:88:1b:3c:bc:24:e4:62:fa:16:28:a1:f3:06:e8:
24:00:3a:1d:8a:be:e5:9b:a9:49:49:56:0e:e8:ae:d0:0b:4d:
10:a4:7e:dd:84:7c:64:f7:a2:20:b4:dc:81:b1:12:f8:e7:15:
d2:98:e8:fa:e2:a5:5d:db:6d:ef:b0:86:bf:bd:fc:37:95:bf:
23:55:1a:a5:ba:14:a2:96:a7:9a:90:ac:84:e6:69:d0:1e:3b:
af:d8:64:ce:5d:08:c5:e5:bb:e3:4a:1b:a5:87:7f:8d:31:49:
3f:41:5c:84:c7:b1:c3:c5:18:f9:33:9a:b8:07:dd:7a:7d:10:
a1:96:02:e3:db:8c:48:4e:c0:02:84:69:68:65:fb:9c:26:1d:
25:63:36:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:24 2024 by rpki-client on console-ams.rpki-client.org