Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/DNqBtq0qwHEifuy63iEMmI-G1Z4.roa
File: DNqBtq0qwHEifuy63iEMmI-G1Z4.roa (raw, json)
Hash identifier: S78LCmtUPQrIGJGjNbKCxQ1ZnJ4uaE172A9HXsyAktY=
Subject key identifier: 0C:DA:81:B6:AD:2A:C0:71:22:7E:EC:BA:DE:21:0C:98:8F:86:D5:9E
Certificate issuer: /CN=28642ab1790b7f5f359068e9fbb72641c5413079
Certificate serial: 01857169AB267E2B1760A0815C7352702561
Authority key identifier: 28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/DNqBtq0qwHEifuy63iEMmI-G1Z4.roa
Signing time: Mon 02 Jan 2023 07:37:08 +0000
ROA not before: Mon 02 Jan 2023 07:37:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3561
IP address blocks: 185.218.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:ab:26:7e:2b:17:60:a0:81:5c:73:52:70:25:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28642ab1790b7f5f359068e9fbb72641c5413079
Validity
Not Before: Jan 2 07:37:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0cda81b6ad2ac071227eecbade210c988f86d59e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:60:88:18:f1:f4:e3:2b:5d:2b:ee:32:81:c4:
48:f5:0d:63:10:ac:0b:72:54:6e:74:20:e3:e1:67:
99:ca:ed:b1:90:95:31:1b:1b:1a:77:ae:30:85:ed:
b6:fb:7d:7b:5e:35:04:11:ea:e5:4a:39:0f:c7:f4:
82:9d:a8:ca:dc:33:89:d1:0d:e0:22:88:43:19:b1:
88:0f:e9:65:05:7a:54:ab:c1:2b:2c:9b:7f:7a:ce:
10:d4:34:95:ac:5d:29:c9:95:e3:88:e5:79:7d:bd:
a0:3d:6e:95:ec:cc:22:7b:73:2a:9c:db:44:14:c5:
60:f9:b1:39:c3:8f:ba:37:ae:29:e8:2a:ff:1b:e1:
b1:c8:59:73:a7:48:5e:8f:e4:5c:bd:3a:83:a9:0b:
eb:14:5d:9b:22:8b:34:58:61:2d:29:e5:ac:be:ce:
ef:21:46:d3:e6:cf:bb:11:e3:38:30:a6:a0:db:c6:
11:1d:60:3d:a7:ef:0d:68:1b:6b:d0:7b:29:c8:fd:
36:f7:1a:bb:d9:f0:c6:94:62:9a:89:03:11:dd:1d:
a7:d0:ab:0d:96:61:aa:a4:f2:f2:d3:48:16:95:eb:
0b:63:f3:2b:6d:bb:c0:ff:38:f7:bb:f2:8f:f4:2f:
77:97:31:c5:e6:be:5e:de:b5:d4:e4:77:90:91:70:
fc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:DA:81:B6:AD:2A:C0:71:22:7E:EC:BA:DE:21:0C:98:8F:86:D5:9E
X509v3 Authority Key Identifier:
keyid:28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/DNqBtq0qwHEifuy63iEMmI-G1Z4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/KGQqsXkLf181kGjp-7cmQcVBMHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.184.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:65:bd:19:e3:16:71:67:a7:95:57:dd:b3:be:ad:3b:53:06:
8d:37:3a:15:4b:10:aa:ff:3d:33:0e:b7:d0:f8:23:d6:b7:48:
66:97:60:76:23:cc:ca:a0:c7:62:f1:49:23:02:a3:f7:8c:93:
7f:0a:8c:bf:ba:10:02:7a:e6:84:29:80:fd:92:1e:4c:82:a3:
f5:3b:69:07:49:05:11:dd:d5:54:51:90:4d:a0:11:0c:26:08:
55:0e:75:fa:6e:b6:01:ce:fc:53:9d:46:bc:00:f3:04:1e:bc:
9e:50:f2:8c:f5:f8:89:42:16:9a:48:42:f6:b1:72:21:4d:78:
43:2a:21:7a:ea:f4:bd:f0:28:e0:14:4c:80:53:18:e4:ab:a8:
1a:fc:95:29:64:47:c8:a7:e4:7c:d9:06:36:1c:03:bc:e7:cb:
d2:35:33:6f:38:8b:81:68:8c:1d:9c:d3:1a:f9:0e:ef:0f:2f:
8e:b4:fa:8e:99:34:14:03:99:7d:b6:a7:50:0b:d3:a5:10:c1:
d0:c5:75:aa:01:cb:0c:47:31:3a:e3:50:e1:62:9b:6b:89:08:
2f:0a:3d:41:a3:4d:00:d5:58:92:c2:93:85:29:3a:3d:af:fb:
c1:8f:30:79:c5:83:ed:62:fe:4e:56:4f:c8:91:22:2d:e0:a9:
a3:fb:b8:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:43 2024 by rpki-client on console-fra.rpki-client.org