Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/rq7pn8sNhsglpqSyAhgBdOt-W00.roa
File: rq7pn8sNhsglpqSyAhgBdOt-W00.roa (raw, json)
Hash identifier: n2HWC6+01hRaJpYeYvHZCyb2hv5ETBUs+rynMHVDW8w=
Subject key identifier: AE:AE:E9:9F:CB:0D:86:C8:25:A6:A4:B2:02:18:01:74:EB:7E:5B:4D
Certificate issuer: /CN=28642ab1790b7f5f359068e9fbb72641c5413079
Certificate serial: D04E4A
Authority key identifier: 28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/rq7pn8sNhsglpqSyAhgBdOt-W00.roa
Signing time: Sat 01 Jan 2022 07:58:28 +0000
ROA not before: Sat 01 Jan 2022 07:58:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202470
IP address blocks: 185.218.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13651530 (0xd04e4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28642ab1790b7f5f359068e9fbb72641c5413079
Validity
Not Before: Jan 1 07:58:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aeaee99fcb0d86c825a6a4b202180174eb7e5b4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:5f:99:89:e7:d0:4f:df:89:6e:f2:1c:39:31:
ce:cf:75:61:12:05:6b:10:5d:b3:ab:67:e4:e8:2a:
eb:9f:de:65:ed:58:f9:c4:c7:81:c5:3b:98:34:c7:
25:bb:7d:0f:5a:1e:11:b1:cb:87:ff:9a:3e:47:21:
60:5c:c0:69:d7:8d:ac:93:f5:24:39:d0:38:dd:23:
8a:58:c7:91:c9:09:26:20:6f:d2:83:9d:bc:1c:aa:
93:47:ac:df:d9:04:30:aa:b9:46:b6:93:1c:9d:30:
a3:7d:3f:c1:4b:a2:a0:81:b4:14:24:00:ea:c9:2a:
d5:87:15:47:d3:6b:09:97:d1:d5:33:91:2d:73:dc:
df:bf:39:54:43:2e:a0:52:12:c8:e5:c3:a9:8c:15:
25:04:66:50:9a:09:a7:5f:98:b6:9d:aa:df:fd:74:
2b:c7:31:55:a6:6c:76:ba:3d:c9:24:5a:4c:de:f9:
fc:47:8a:fb:a8:a0:c4:ac:55:d8:4a:37:7c:98:06:
c0:7d:a3:ba:8c:39:cc:0a:f8:62:c9:f5:d0:6c:43:
39:b0:33:c7:01:c7:e4:a9:d5:2d:05:11:8e:fc:ad:
b0:e8:ba:77:70:5c:43:2c:db:23:dc:75:61:4e:a3:
63:f2:fd:d6:9c:b6:aa:bd:65:32:87:ce:3a:f9:f7:
fb:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:AE:E9:9F:CB:0D:86:C8:25:A6:A4:B2:02:18:01:74:EB:7E:5B:4D
X509v3 Authority Key Identifier:
keyid:28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/rq7pn8sNhsglpqSyAhgBdOt-W00.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/KGQqsXkLf181kGjp-7cmQcVBMHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.184.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:2f:45:93:61:90:e5:6b:eb:61:32:23:76:a2:15:52:db:35:
2f:5b:ea:1c:b6:82:9f:41:8a:3a:e2:5a:4c:9e:16:e6:16:7d:
74:70:4d:4d:80:18:a2:b4:66:ae:8b:50:2e:92:72:fd:7a:bd:
b4:61:74:24:72:af:60:e0:42:75:f0:23:3b:ca:83:4e:9b:5c:
52:56:c3:72:72:84:43:e5:3d:2d:37:af:c7:b7:05:a8:0e:06:
5a:0a:61:60:14:6c:95:51:d2:8e:9d:e3:dd:be:d9:7d:40:6e:
5f:a2:20:52:b5:35:ce:aa:88:e4:8e:d9:eb:be:fe:92:3b:22:
f0:d8:21:cf:fa:0e:23:24:01:a8:3e:6d:a4:e6:38:a3:9b:ce:
cf:84:aa:9c:d8:c8:a9:bb:9b:65:b3:b7:ac:c9:16:0d:bd:12:
1d:24:b0:c6:ff:63:a3:33:1a:be:be:7c:6f:10:1e:ba:1c:7a:
5e:14:69:9b:44:f9:1a:97:03:dd:44:e9:69:42:fc:3c:56:bb:
a2:28:0b:4b:86:16:ec:31:79:81:28:d7:91:63:0c:f4:ca:ca:
1c:87:3b:71:ac:97:18:10:d8:18:9b:c7:bc:d8:0a:98:0b:77:
ac:fd:bf:c4:f4:9f:f6:7d:19:49:16:b3:17:d5:3c:0f:2d:99:
a9:06:72:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:43 2024 by rpki-client on console-fra.rpki-client.org