Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/saGplsDgiJeNhPps3tJYWRr5Ml0.roa
File: saGplsDgiJeNhPps3tJYWRr5Ml0.roa (raw, json)
Hash identifier: fzs1Lt849nOeCLvf/4xY4XLCnJ10DUvFKZDQr0uFqnw=
Subject key identifier: B1:A1:A9:96:C0:E0:88:97:8D:84:FA:6C:DE:D2:58:59:1A:F9:32:5D
Certificate issuer: /CN=28642ab1790b7f5f359068e9fbb72641c5413079
Certificate serial: 018CC3B6BE11BCA039815D126858D1F6C271
Authority key identifier: 28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/saGplsDgiJeNhPps3tJYWRr5Ml0.roa
Signing time: Mon 01 Jan 2024 06:29:42 +0000
ROA not before: Mon 01 Jan 2024 06:29:42 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 3561
IP address blocks: 185.218.184.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c3:b6:be:11:bc:a0:39:81:5d:12:68:58:d1:f6:c2:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28642ab1790b7f5f359068e9fbb72641c5413079
Validity
Not Before: Jan 1 06:29:42 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b1a1a996c0e088978d84fa6cded258591af9325d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:dd:45:4d:bb:ff:c5:14:17:c3:92:d0:a9:78:
43:3e:ef:60:d7:7b:e3:aa:e7:1e:8f:f0:f0:f1:8b:
da:7f:7d:cd:55:4d:0e:d7:89:36:bc:23:4b:be:55:
e4:b2:37:28:cc:24:25:92:8c:7a:47:d9:76:71:94:
e5:2b:84:bf:53:9f:a6:22:09:a1:fc:64:01:5d:81:
ee:62:ca:bc:6d:ff:35:79:47:1e:67:1d:ad:2c:dd:
af:86:99:8a:ea:5e:f9:c4:d9:a1:c9:d6:a1:43:f7:
ee:7d:9b:ba:95:75:a5:cf:f5:20:de:52:0d:3b:97:
1e:d0:6d:4d:56:f4:c7:ee:74:36:5d:52:8e:71:06:
0a:77:45:66:0f:0a:0e:5f:56:c5:b2:a7:ea:2b:5d:
93:01:90:66:8a:8b:a5:d7:c4:2d:bc:9b:87:6f:6b:
d2:45:74:82:9e:dd:6e:46:67:6a:da:46:01:f5:6c:
6a:66:9b:a5:0e:ad:67:0c:61:5e:38:dd:7f:1f:e4:
67:fd:1f:71:82:87:11:29:bb:51:6d:d3:4f:5f:f4:
88:63:72:ad:b4:87:ef:97:70:84:a7:a5:c9:85:5d:
81:53:0e:28:3b:ca:88:9c:03:c1:e5:09:91:28:8b:
63:96:32:84:dc:72:47:5c:d9:51:41:73:4c:da:98:
8c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:A1:A9:96:C0:E0:88:97:8D:84:FA:6C:DE:D2:58:59:1A:F9:32:5D
X509v3 Authority Key Identifier:
keyid:28:64:2A:B1:79:0B:7F:5F:35:90:68:E9:FB:B7:26:41:C5:41:30:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGQqsXkLf181kGjp-7cmQcVBMHk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/saGplsDgiJeNhPps3tJYWRr5Ml0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/c059d9-0d30-40b3-814b-491a0b5d223f/1/KGQqsXkLf181kGjp-7cmQcVBMHk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.184.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:bd:6a:71:3e:b2:98:21:72:1b:44:74:84:c6:05:07:30:f4:
f6:db:69:62:3b:7a:82:81:70:54:7c:1a:b9:68:06:b6:f4:af:
4b:66:f0:f0:d0:82:c1:a0:b3:58:79:a9:85:bc:3d:47:3a:15:
27:46:0c:4d:f2:35:d7:99:66:d8:57:b1:f6:97:cf:b1:dc:eb:
fb:64:e9:57:96:78:ae:3e:ff:60:ab:86:9b:89:79:4a:6d:e7:
a7:b3:1f:3b:0c:9c:7b:c3:24:43:6a:01:57:6b:d9:26:78:fc:
67:e9:ed:0f:31:d1:d1:53:e1:0a:90:62:f9:16:34:3e:01:5c:
e4:e2:17:2d:cc:21:e3:7d:a4:34:be:ab:02:d1:21:47:30:26:
49:3a:29:8e:8c:8d:41:72:89:8f:8a:99:61:73:ec:e7:78:71:
4d:f7:a4:e8:e4:37:be:0a:35:ac:df:75:2a:0d:a0:45:be:d8:
e2:43:94:39:1b:b6:5e:69:9c:f6:14:9c:15:ba:0e:36:a5:83:
24:e6:75:a2:10:5f:9a:f3:29:94:21:7f:ea:30:e0:0f:74:a6:
d5:fd:86:07:f1:5c:7f:b7:1d:46:12:e2:ac:d4:5c:13:ca:bd:
ba:44:c2:f4:61:92:71:22:22:20:3e:cb:d1:b0:01:92:7c:cd:
ad:9e:e3:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:28 2024 by rpki-client on console-ams.rpki-client.org