Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/e1142e-0946-42a1-ab7e-7e9ec007c81d/1/07aczdaf086z73LodXjr0wtNkcs.roa
File: 07aczdaf086z73LodXjr0wtNkcs.roa (raw, json)
Hash identifier: e5GcAEjLRxhKc8Tu2tV8S/d4e13LqjyxTk8oQbKWwdg=
Subject key identifier: D3:B6:9C:CD:D6:9F:D3:CE:B3:EF:72:E8:75:78:EB:D3:0B:4D:91:CB
Certificate issuer: /CN=e528a9e9aa3564769fca2551e3d02d231dc73cef
Certificate serial: 01856F9DD4C12CD7748F3FC9FB075F1A75C3
Authority key identifier: E5:28:A9:E9:AA:35:64:76:9F:CA:25:51:E3:D0:2D:23:1D:C7:3C:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Sip6ao1ZHafyiVR49AtIx3HPO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/e1142e-0946-42a1-ab7e-7e9ec007c81d/1/07aczdaf086z73LodXjr0wtNkcs.roa
Signing time: Sun 01 Jan 2023 23:14:52 +0000
ROA not before: Sun 01 Jan 2023 23:14:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15626
IP address blocks: 185.253.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:d4:c1:2c:d7:74:8f:3f:c9:fb:07:5f:1a:75:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e528a9e9aa3564769fca2551e3d02d231dc73cef
Validity
Not Before: Jan 1 23:14:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d3b69ccdd69fd3ceb3ef72e87578ebd30b4d91cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ad:84:b0:d4:c5:df:79:68:ed:52:80:27:e2:
c4:3f:45:f6:3b:e7:00:04:10:cb:51:ca:d9:19:c3:
c0:23:2c:6c:d6:4d:ef:9d:d2:d7:98:1d:07:36:5b:
2d:f5:22:28:5b:6b:45:cd:e9:4a:d9:9f:d1:71:a1:
f0:61:98:1a:32:5b:08:c7:72:b7:33:09:e2:af:49:
76:dc:e7:22:63:74:c4:2d:50:e5:e6:d2:99:11:81:
cc:5a:c1:56:fb:9f:1b:bc:4e:a7:1b:f5:cf:c0:91:
7a:2d:32:3e:8a:83:68:27:8d:26:9a:98:ed:a8:41:
1a:3b:7a:9c:0c:ae:ed:31:d2:2f:d2:c9:d6:b3:e9:
43:5c:0c:52:3c:5c:b6:64:03:bc:ea:e2:2f:af:b4:
8f:e2:43:b7:e4:02:fd:8a:5a:1b:0d:bb:8d:14:2a:
9a:47:55:4e:73:a4:b1:bc:11:46:f2:03:a3:1a:6a:
f4:43:e9:9f:08:e7:50:29:e8:94:fc:2d:75:6a:0e:
75:47:f9:41:19:ed:d9:9d:bb:9e:94:c3:83:fa:9f:
de:99:47:cc:d5:e5:78:fe:b8:87:36:4d:93:a9:fe:
e9:06:b7:5b:16:74:b2:8c:37:8b:1c:c7:a7:7f:a4:
04:f0:80:ad:7f:29:7a:ec:90:cd:a6:43:c9:af:72:
07:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B6:9C:CD:D6:9F:D3:CE:B3:EF:72:E8:75:78:EB:D3:0B:4D:91:CB
X509v3 Authority Key Identifier:
keyid:E5:28:A9:E9:AA:35:64:76:9F:CA:25:51:E3:D0:2D:23:1D:C7:3C:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Sip6ao1ZHafyiVR49AtIx3HPO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/e1142e-0946-42a1-ab7e-7e9ec007c81d/1/07aczdaf086z73LodXjr0wtNkcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/e1142e-0946-42a1-ab7e-7e9ec007c81d/1/5Sip6ao1ZHafyiVR49AtIx3HPO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.253.0.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:6e:04:71:64:04:01:2a:35:18:a0:43:ff:e2:a1:25:41:ba:
36:07:dc:21:0f:6e:95:9d:e9:3b:33:66:b1:bf:34:0e:1a:72:
96:66:40:49:45:f4:60:4a:64:e1:0e:d9:53:00:6b:69:90:61:
03:3f:17:11:e9:8a:85:75:20:11:be:d6:7d:a3:52:0a:c5:b3:
04:87:ac:d7:60:7d:2a:60:e5:00:9d:7c:4b:9b:db:89:45:3b:
d1:21:30:cf:98:0d:8f:26:ff:2a:4f:6c:83:59:85:ec:d0:fb:
46:f2:f7:e5:b6:63:e7:55:3d:ee:f0:d4:5c:75:de:93:e7:73:
22:38:68:86:1c:ad:5e:8c:ab:a0:6b:fc:a0:cb:cf:66:96:3b:
bf:18:e3:96:3d:11:17:8a:61:64:af:8f:15:ab:1c:9c:0e:85:
71:09:e5:3d:9a:2d:19:fd:ae:4b:f0:92:d7:07:4b:3c:b7:7a:
c5:3b:35:30:e6:22:25:31:db:0f:ca:a3:75:d7:00:d3:c3:3b:
8c:b0:47:1f:d2:4a:9e:2a:47:bd:0c:5a:1e:2b:5f:de:75:9b:
ce:5a:3a:c9:3a:e7:51:a7:9e:b3:88:30:78:44:21:25:ed:30:
2a:1d:fc:ef:b8:1e:3e:7a:32:5a:d3:77:3c:f3:f3:06:82:fa:
6b:c0:6c:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 13 14:50:33 2023 by rpki-client on console-fra.rpki-client.org