Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/lbYSgScTm_bNbchz558_6DG871A.roa
File: lbYSgScTm_bNbchz558_6DG871A.roa (raw, json)
Hash identifier: TN6ZvadQQNKyFafaj3EKtNWmp4tRnE+xFZUraeZctrI=
Subject key identifier: 95:B6:12:81:27:13:9B:F6:CD:6D:C8:73:E7:9F:3F:E8:31:BC:EF:50
Certificate issuer: /CN=28642ab1790b7f5f359068e9fbb72641c5413079
Certificate serial: 018CC3B6BE57A0F3C50340B54CF1AF9E0842
Authority key identifier: 28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/lbYSgScTm_bNbchz558_6DG871A.roa
Signing time: Mon 01 Jan 2024 06:29:42 +0000
ROA not before: Mon 01 Jan 2024 06:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 202470
IP address blocks: 185.218.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:be:57:a0:f3:c5:03:40:b5:4c:f1:af:9e:08:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28642ab1790b7f5f359068e9fbb72641c5413079
Validity
Not Before: Jan 1 06:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=95b6128127139bf6cd6dc873e79f3fe831bcef50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:6c:e9:67:b6:e7:01:c7:58:8d:23:5a:8e:90:
b0:fb:b7:7f:0d:35:17:97:77:f5:d2:2d:0d:c6:4e:
bc:74:e0:79:54:c9:f2:5f:8e:f9:6a:a2:5f:cc:22:
ac:7b:a0:e0:a2:20:dd:b3:0f:7d:a8:4c:7c:b6:d2:
0a:24:a2:4d:b1:e2:e1:9c:ef:a2:5d:87:dd:7d:d1:
ce:28:52:2c:5f:55:57:aa:c0:60:64:28:0f:1d:0a:
df:2a:90:b8:92:66:74:5c:23:28:fa:36:04:93:c3:
12:58:a0:a6:5a:27:3c:29:19:eb:f0:b6:70:c8:ac:
d9:e2:6e:31:47:87:7f:00:c0:df:b8:42:fe:63:09:
90:8b:29:33:d6:19:97:56:6a:84:72:0e:8e:7b:e4:
b6:5a:96:25:36:5a:b6:f0:a2:9a:5b:3e:4d:c3:e4:
a7:4c:46:3c:97:e8:2c:e2:00:7b:82:80:df:40:c9:
b7:85:1b:60:81:57:e2:d6:b2:02:ae:fc:68:79:75:
84:87:30:1d:47:f4:1a:7e:c5:0a:ff:02:c0:4f:4a:
4d:89:71:93:ef:ea:8f:f2:de:a8:6b:24:9a:88:c7:
19:f6:d1:d2:1c:6a:31:4e:97:48:d8:f1:5e:2d:b1:
b0:4d:f7:ab:91:77:ec:a4:d2:ab:19:91:26:d5:c6:
9a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:B6:12:81:27:13:9B:F6:CD:6D:C8:73:E7:9F:3F:E8:31:BC:EF:50
X509v3 Authority Key Identifier:
keyid:28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/lbYSgScTm_bNbchz558_6DG871A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/KGQqsXkLf181kGjp-7cmQcVBMHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.184.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:8d:33:6d:d4:63:aa:76:60:a6:ca:5b:ea:98:17:d2:32:d0:
ad:ae:31:36:92:5b:50:7f:20:7b:a7:1a:e7:9c:a1:61:79:3c:
25:40:90:e5:b9:96:c1:de:82:c4:4b:13:77:22:62:7a:50:c6:
c3:77:d3:ec:f8:8e:d3:31:f4:8d:65:71:be:b4:da:97:96:38:
74:1b:3b:8c:dd:f7:be:dd:04:cf:ed:fd:15:f8:47:f1:1b:f9:
ff:aa:e0:24:b1:49:1f:80:13:16:f0:b9:84:68:da:50:e3:e8:
7f:3c:e1:a9:82:8a:00:07:d8:a4:32:bf:2b:8b:30:a6:be:7f:
68:28:34:05:67:9a:e6:67:9e:79:2e:14:05:5d:8b:4c:45:36:
0d:e2:0a:8d:9d:0e:4e:b2:cb:76:9c:43:4c:39:e5:69:74:c1:
57:76:de:03:05:9e:68:04:19:83:2f:ed:83:70:7a:3d:0b:c1:
67:bf:36:9b:05:0f:0f:32:8c:e8:23:6f:2f:fa:c7:ff:9a:05:
46:fb:31:50:9d:68:f9:99:84:40:20:0e:43:ec:d9:c9:da:77:
7a:06:d1:d8:0d:e8:05:af:13:d2:30:58:af:ca:22:80:6f:c2:
b9:6e:47:d1:57:2c:9d:11:7c:9b:30:b9:0e:75:a1:cf:bf:ca:
ab:4f:03:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:28 2024 by rpki-client on console-ams.rpki-client.org