Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/b23fe7-3028-434f-a2eb-b629b7a00128/1/THNzXdMCGTvaDOyGNTtN0b27pms.roa
File: THNzXdMCGTvaDOyGNTtN0b27pms.roa (raw, json)
Hash identifier: eSkVlbN8giIpsTE2i57vhfxZ0kN9BZOvTJ3VkKodDOI=
Subject key identifier: 4C:73:73:5D:D3:02:19:3B:DA:0C:EC:86:35:3B:4D:D1:BD:BB:A6:6B
Certificate issuer: /CN=2a8b209318ce0f479c4edadbb63c935b28dbb21b
Certificate serial: 76B98E
Authority key identifier: 2A:8B:20:93:18:CE:0F:47:9C:4E:DA:DB:B6:3C:93:5B:28:DB:B2:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KosgkxjOD0ecTtrbtjyTWyjbshs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/b23fe7-3028-434f-a2eb-b629b7a00128/1/THNzXdMCGTvaDOyGNTtN0b27pms.roa
Signing time: Sat 01 Jan 2022 01:01:09 +0000
ROA not before: Sat 01 Jan 2022 01:01:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 109.205.188.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7780750 (0x76b98e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a8b209318ce0f479c4edadbb63c935b28dbb21b
Validity
Not Before: Jan 1 01:01:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c73735dd302193bda0cec86353b4dd1bdbba66b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:b5:f8:64:48:4b:35:4f:63:0c:e5:2b:b2:fd:
d9:01:ea:0f:fe:4e:ad:da:21:6d:49:5c:1e:cf:f5:
3f:f7:45:62:ee:f1:61:da:9f:e3:aa:79:1b:49:ff:
39:49:99:9c:60:cb:41:64:b8:46:b9:b5:ea:71:d2:
87:73:50:af:af:e0:99:1c:f8:1d:9a:64:47:88:d5:
69:53:f8:62:49:18:22:da:15:6e:17:05:c5:1d:02:
bf:1d:61:50:3e:a3:d3:73:7d:af:61:8a:e8:6b:da:
a7:07:b6:1e:3a:00:96:54:eb:ca:5e:93:83:57:e2:
8e:5b:4c:9e:af:a7:dd:75:84:e8:62:32:21:f2:7b:
e2:4f:13:b0:d5:94:5c:36:f3:32:9d:3d:7d:d6:92:
26:53:d9:b8:87:e4:11:bf:60:f7:b8:89:05:cf:79:
28:3a:1d:26:86:92:df:fe:d7:79:0a:31:d4:99:75:
46:8f:19:4b:c8:73:90:90:af:6f:7d:fb:68:f5:69:
ba:da:d2:ab:ec:de:64:f3:81:d9:45:e4:6c:b6:51:
e5:d1:72:c8:8a:32:3f:a8:e1:4e:99:07:c9:ab:6b:
a0:12:a6:fb:e5:dd:ed:df:ad:59:4c:1f:86:ef:79:
49:5c:61:8f:81:3a:a4:06:75:e8:11:6e:b3:a8:ce:
ad:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:73:73:5D:D3:02:19:3B:DA:0C:EC:86:35:3B:4D:D1:BD:BB:A6:6B
X509v3 Authority Key Identifier:
keyid:2A:8B:20:93:18:CE:0F:47:9C:4E:DA:DB:B6:3C:93:5B:28:DB:B2:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KosgkxjOD0ecTtrbtjyTWyjbshs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b23fe7-3028-434f-a2eb-b629b7a00128/1/THNzXdMCGTvaDOyGNTtN0b27pms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b23fe7-3028-434f-a2eb-b629b7a00128/1/KosgkxjOD0ecTtrbtjyTWyjbshs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.188.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:b6:6e:6b:db:c4:55:3a:65:58:41:2e:6a:e8:0f:ad:a5:8a:
77:ed:98:d1:93:23:af:1c:18:ca:f8:c5:63:c1:89:2c:91:f5:
9d:7f:14:f4:c1:32:65:56:15:7b:d5:af:a0:c9:67:fa:f4:e2:
9f:9a:0c:ce:20:b1:51:e4:00:f3:dd:2b:42:ec:79:e8:ec:b2:
88:41:50:ad:2f:fc:d7:d0:6a:e1:3f:5a:7d:83:ca:a2:8e:c2:
8e:9c:66:3a:27:e3:26:ce:07:fb:55:17:ed:37:be:a7:89:ef:
8a:88:03:f3:94:56:28:de:69:cc:c9:ea:f2:c9:06:b7:43:f8:
0d:47:65:74:17:a8:e9:be:66:81:b0:26:ab:d3:21:e6:72:08:
c1:81:ea:06:ff:53:a5:a5:a1:7f:71:91:31:46:08:a9:11:a8:
b4:6d:a6:dc:3c:63:87:dd:c1:a7:07:01:1d:b0:b9:f4:cb:54:
55:b4:22:95:c8:57:2a:72:c0:81:2d:02:eb:45:16:0c:d3:0b:
f1:75:43:9c:23:02:16:4d:5e:7b:10:49:95:4f:ce:9d:19:74:
65:3f:b6:de:84:ca:c2:eb:3b:88:c7:a4:04:a1:10:cb:db:be:
5e:28:40:d4:26:53:7f:e9:0b:bc:87:23:7b:65:e3:3e:ef:a2:
e3:79:24:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:20 2024 by rpki-client on console-fra.rpki-client.org