Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/06aa59-c694-4d0f-bc36-4fdbcb305d9d/1/uajxMGGWx4MGmHew-WmC7J6FOj8.roa
File: uajxMGGWx4MGmHew-WmC7J6FOj8.roa (raw, json)
Hash identifier: HNTeR/DKXB6ff19WPa5OESRqXraW7+ds1xJeftGClJ8=
Subject key identifier: B9:A8:F1:30:61:96:C7:83:06:98:77:B0:F9:69:82:EC:9E:85:3A:3F
Certificate issuer: /CN=4caf0f7635a96eff5b73f216d8fe77cc4e2a0a8e
Certificate serial: 018CC8017110DD32391E14E6D90803900EB6
Authority key identifier: 4C:AF:0F:76:35:A9:6E:FF:5B:73:F2:16:D8:FE:77:CC:4E:2A:0A:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TK8PdjWpbv9bc_IW2P53zE4qCo4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/06aa59-c694-4d0f-bc36-4fdbcb305d9d/1/uajxMGGWx4MGmHew-WmC7J6FOj8.roa
Signing time: Tue 02 Jan 2024 02:29:46 +0000
ROA not before: Tue 02 Jan 2024 02:29:46 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58075
IP address blocks: 185.96.148.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:71:10:dd:32:39:1e:14:e6:d9:08:03:90:0e:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4caf0f7635a96eff5b73f216d8fe77cc4e2a0a8e
Validity
Not Before: Jan 2 02:29:46 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b9a8f1306196c783069877b0f96982ec9e853a3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:c4:2c:a1:dc:da:34:5a:67:df:f2:b0:b6:89:
c6:d1:e6:c0:c5:37:5e:47:4e:1f:95:44:8e:58:60:
a8:a8:38:a1:39:c5:67:be:d5:48:0f:40:39:76:8d:
e7:9f:df:55:66:d1:ee:e1:11:4e:01:7d:85:fb:49:
1a:07:d6:93:30:06:ef:c4:ae:59:e2:8b:b3:56:f2:
51:95:05:d5:e2:8e:b6:76:70:14:f6:3c:19:d1:49:
1a:e3:b5:00:a9:af:e2:88:b4:54:3a:08:37:ba:04:
2d:f4:51:14:7f:33:7f:13:fb:3f:4d:d7:2d:5f:6f:
2d:03:a1:19:67:d5:33:c8:73:8c:0f:75:61:37:ea:
9b:cb:14:3e:02:09:56:3b:74:60:1c:ca:b6:87:27:
f5:1c:ce:85:4c:1e:b9:2b:71:5d:5c:5a:7d:f5:cd:
3c:3a:9a:b2:d7:89:3b:f7:5d:bf:d2:af:f8:8b:93:
94:c6:93:ab:29:7a:5f:a0:3d:a7:28:11:b3:27:ab:
99:bc:8b:62:d0:be:3f:10:7b:07:c0:4d:71:25:26:
15:a3:a8:7f:44:63:41:44:72:96:5d:63:1a:24:b7:
51:44:51:94:a8:9c:8a:d2:a6:f1:38:8c:ea:72:ea:
98:bd:22:16:cb:a9:89:db:2a:c3:39:48:a7:b2:71:
6f:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A8:F1:30:61:96:C7:83:06:98:77:B0:F9:69:82:EC:9E:85:3A:3F
X509v3 Authority Key Identifier:
keyid:4C:AF:0F:76:35:A9:6E:FF:5B:73:F2:16:D8:FE:77:CC:4E:2A:0A:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TK8PdjWpbv9bc_IW2P53zE4qCo4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/06aa59-c694-4d0f-bc36-4fdbcb305d9d/1/uajxMGGWx4MGmHew-WmC7J6FOj8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/06aa59-c694-4d0f-bc36-4fdbcb305d9d/1/TK8PdjWpbv9bc_IW2P53zE4qCo4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.96.148.0/22
Signature Algorithm: sha256WithRSAEncryption
34:4f:57:c0:86:ea:a4:46:f5:91:09:cf:b5:09:9f:6f:28:03:
0a:37:b9:a9:da:13:49:ea:2d:9b:3a:98:ad:ce:9b:8b:45:e2:
a0:36:39:f5:d8:11:40:fd:5e:7d:18:4f:12:cf:2c:36:c5:3f:
fe:46:b4:16:d7:f0:7a:73:d8:a2:a4:69:ae:82:be:4d:28:e0:
e3:ad:50:e1:88:b3:62:9b:d3:71:00:4b:62:9e:be:18:f7:e2:
d7:43:cb:2d:20:fb:0b:ee:d2:16:53:3b:8a:8d:28:98:fc:f6:
ef:85:ee:d3:40:e6:52:1d:56:f9:c7:fe:60:62:6a:76:0a:86:
56:ec:a3:c9:70:32:58:ae:84:99:a8:2b:2f:e1:d0:4b:7a:b5:
70:ff:ab:aa:c8:a1:c8:b7:66:b5:03:14:7a:6b:74:3c:0a:9f:
82:ed:a7:a9:a9:e4:95:92:90:72:1d:53:b8:d8:80:b1:c3:aa:
69:f9:ab:b4:38:98:f0:7e:52:20:3f:48:f6:eb:49:5e:1e:f4:
62:52:e6:48:24:cd:8d:45:55:72:36:cd:f4:e5:69:3c:6f:b6:
05:a0:ed:8d:fe:32:80:ba:fe:42:be:97:a6:68:c1:95:0f:33:
a2:a7:37:84:79:e4:c7:ce:9a:7b:f9:98:04:d9:66:98:94:9c:
c9:6d:f2:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 9 15:05:14 2024 by rpki-client on console-ams.rpki-client.org