Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/18b1a0-9dcf-43ef-b3fc-2bbfbe1f86a8/1/9I_XpyfBSNfU4RNRYkC4IoS47zg.roa
File: 9I_XpyfBSNfU4RNRYkC4IoS47zg.roa (raw, json)
Hash identifier: ArVSUiMfPArkenkygTbFXr0hAd+HpYUOWE7iIIQqdQ4=
Subject key identifier: F4:8F:D7:A7:27:C1:48:D7:D4:E1:13:51:62:40:B8:22:84:B8:EF:38
Certificate issuer: /CN=7f7554c170db4c29ac0cc123516ffb6c92fea9cf
Certificate serial: 58B20E
Authority key identifier: 7F:75:54:C1:70:DB:4C:29:AC:0C:C1:23:51:6F:FB:6C:92:FE:A9:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f3VUwXDbTCmsDMEjUW_7bJL-qc8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/18b1a0-9dcf-43ef-b3fc-2bbfbe1f86a8/1/9I_XpyfBSNfU4RNRYkC4IoS47zg.roa
Signing time: Sat 01 Jan 2022 01:53:41 +0000
ROA not before: Sat 01 Jan 2022 01:53:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201435
IP address blocks: 185.72.52.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5812750 (0x58b20e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f7554c170db4c29ac0cc123516ffb6c92fea9cf
Validity
Not Before: Jan 1 01:53:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f48fd7a727c148d7d4e113516240b82284b8ef38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:6a:26:ef:30:2d:0d:2f:d1:60:2c:8f:75:5b:
d9:9e:84:38:75:f8:c1:3a:a1:7f:37:ce:ce:dc:d7:
b9:7b:2e:07:86:6e:d4:6a:5f:1b:df:ac:ed:de:66:
54:96:87:2e:3e:75:41:a8:5a:39:94:6d:32:d3:e5:
54:92:6a:0a:e8:d9:9f:ef:61:ff:2b:26:24:47:ef:
66:4a:ae:d2:c0:62:d3:2e:4b:77:21:38:8e:91:b9:
d6:47:08:69:1f:05:43:07:48:58:1f:16:88:c3:5e:
c3:73:8e:ae:1d:77:06:1f:0d:14:b4:97:6e:db:08:
ea:a7:a6:c2:5f:b2:c7:91:4d:54:2e:bf:21:ca:bf:
1f:cf:11:ca:79:2d:d5:d6:d8:ce:31:20:ef:d0:11:
d8:e4:c9:9a:de:49:54:b2:7a:2e:41:24:c0:f4:c9:
24:4c:52:16:ae:f6:bb:70:d0:a2:8e:33:2b:b7:db:
03:15:23:43:4e:36:bf:2b:f1:d6:38:9c:f3:45:de:
d5:84:9c:14:ff:53:b8:d4:f2:b2:10:0d:0d:13:fd:
97:75:e6:77:72:3e:75:79:74:62:04:d4:db:06:4f:
f5:50:10:ae:0e:f1:ae:60:da:3d:be:92:43:ad:18:
ac:9f:66:66:4b:c2:34:45:54:2b:66:a7:73:68:ac:
09:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:8F:D7:A7:27:C1:48:D7:D4:E1:13:51:62:40:B8:22:84:B8:EF:38
X509v3 Authority Key Identifier:
keyid:7F:75:54:C1:70:DB:4C:29:AC:0C:C1:23:51:6F:FB:6C:92:FE:A9:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3VUwXDbTCmsDMEjUW_7bJL-qc8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/18b1a0-9dcf-43ef-b3fc-2bbfbe1f86a8/1/9I_XpyfBSNfU4RNRYkC4IoS47zg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/18b1a0-9dcf-43ef-b3fc-2bbfbe1f86a8/1/f3VUwXDbTCmsDMEjUW_7bJL-qc8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.72.52.0/23
Signature Algorithm: sha256WithRSAEncryption
12:55:57:a1:0c:f7:9d:d1:e0:11:7c:8f:0d:18:dd:ba:2f:f6:
9d:9b:80:c4:a6:85:4b:70:c9:2a:c6:60:23:70:eb:c7:98:6d:
bc:25:3c:72:5f:b7:47:bc:b8:85:e4:2c:9a:da:47:83:39:d0:
69:a1:4f:f2:e5:7c:a8:ac:10:15:3b:ab:ec:4a:b0:cf:2e:42:
70:70:b8:44:36:68:13:66:0c:1c:22:ab:2c:e2:f1:ff:89:1f:
75:c3:b8:b4:15:93:d8:d9:90:32:36:e2:c0:f6:f6:9b:a8:89:
49:e2:2e:d9:26:29:67:57:04:b4:a2:74:d3:70:05:b0:d5:bc:
7a:d2:24:05:5f:aa:4c:f3:a1:fc:a3:3b:37:b6:43:50:d5:53:
19:b7:b0:0a:33:42:d1:d6:f6:b3:98:61:01:fe:11:4b:c9:50:
17:9b:64:bf:e4:da:30:e6:cc:61:64:71:78:b0:56:d0:ce:01:
cb:bf:01:c8:75:1c:6c:ca:1d:1e:91:b1:3b:59:f0:75:c5:cc:
1a:6a:47:63:1f:24:b0:cc:bd:42:52:c8:6d:16:f7:a3:48:bf:
f8:00:8c:0c:14:8a:61:db:9c:3a:48:60:30:35:bb:ef:14:15:
74:2d:b8:21:25:8f:e5:b3:37:a1:c2:54:5f:8e:13:29:43:27:
d2:25:22:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:23 2024 by rpki-client on console-ams.rpki-client.org