Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/zUCeYYdnRREpsqRDmpUjA_ZrA9g.roa
File: zUCeYYdnRREpsqRDmpUjA_ZrA9g.roa (raw, json)
Hash identifier: NuLTqYbKM93QBqNv5WsUGkCge/GAzorqPbTFb8U1lUg=
Subject key identifier: CD:40:9E:61:87:67:45:11:29:B2:A4:43:9A:95:23:03:F6:6B:03:D8
Certificate issuer: /CN=e2f68414fcaca07c813555e53691dba84e3988c8
Certificate serial: 018CC726A702E669FDB6842DBE9369793B45
Authority key identifier: E2:F6:84:14:FC:AC:A0:7C:81:35:55:E5:36:91:DB:A8:4E:39:88:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4vaEFPysoHyBNVXlNpHbqE45iMg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/zUCeYYdnRREpsqRDmpUjA_ZrA9g.roa
Signing time: Mon 01 Jan 2024 22:30:48 +0000
ROA not before: Mon 01 Jan 2024 22:30:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206476
IP address blocks: 185.255.184.0/22 maxlen: 24
185.137.224.0/22 maxlen: 24
2a07:780::/29 maxlen: 48
2a0c:bcc0::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:26:a7:02:e6:69:fd:b6:84:2d:be:93:69:79:3b:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2f68414fcaca07c813555e53691dba84e3988c8
Validity
Not Before: Jan 1 22:30:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=cd409e618767451129b2a4439a952303f66b03d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1c:aa:06:5a:10:c5:d5:f8:28:57:25:ce:49:
3b:44:44:6d:5e:8d:f6:ca:d8:30:ad:2f:a4:93:d5:
d3:cf:49:41:7d:5c:14:84:ad:69:e8:d2:50:23:b1:
ea:18:31:32:03:3e:8a:26:46:83:b8:7f:0f:e6:13:
49:a2:58:65:23:fe:63:08:2b:f8:0c:e9:98:fd:5d:
0d:02:29:04:49:61:b4:a0:83:70:74:b3:85:07:db:
19:26:00:be:88:55:e7:9c:1e:ab:50:ff:da:ec:f2:
41:52:f9:9e:da:07:38:69:6b:87:9c:a0:c5:b1:9f:
af:81:87:ca:d5:bc:84:e5:84:ed:9b:7a:df:00:a9:
ec:a2:fa:9e:e0:a0:50:1e:c5:5c:a1:82:ee:a3:4f:
c4:d1:bb:a7:fb:d3:9f:6d:50:d9:b1:a5:5f:63:ff:
e1:62:43:a1:6e:47:71:18:03:0f:f9:9e:03:ac:67:
12:21:3d:e2:fa:c6:d8:50:b9:fb:f0:95:ef:37:5c:
48:ab:40:67:d5:7a:29:5a:61:03:d6:fa:05:de:02:
f5:c2:44:18:ec:d0:ba:26:51:51:3d:1a:56:6e:61:
45:88:50:5e:4f:a7:fd:9b:52:54:81:87:6c:dd:ce:
d4:46:40:54:1a:a1:bd:16:1e:70:91:28:ae:57:c0:
b7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:40:9E:61:87:67:45:11:29:B2:A4:43:9A:95:23:03:F6:6B:03:D8
X509v3 Authority Key Identifier:
keyid:E2:F6:84:14:FC:AC:A0:7C:81:35:55:E5:36:91:DB:A8:4E:39:88:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4vaEFPysoHyBNVXlNpHbqE45iMg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/zUCeYYdnRREpsqRDmpUjA_ZrA9g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/273487-889a-43fe-a56e-4b48f59ec155/1/4vaEFPysoHyBNVXlNpHbqE45iMg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.137.224.0/22
185.255.184.0/22
IPv6:
2a07:780::/29
2a0c:bcc0::/29
Signature Algorithm: sha256WithRSAEncryption
6d:13:81:53:ac:11:10:71:c4:e3:5b:eb:95:eb:78:f8:f0:77:
ed:55:27:44:4a:4e:6b:3a:e2:6d:4b:7f:2f:63:49:d8:1c:16:
7c:f9:af:3b:8b:a7:67:ee:2a:07:bc:a0:c6:f8:66:e1:9e:1b:
87:5c:42:c0:07:4b:6a:a9:2d:66:48:53:bd:ae:d6:87:8d:5b:
e5:08:17:2e:8c:a0:a1:49:12:ca:78:aa:8a:c7:31:1b:a5:3c:
03:0e:c4:33:29:00:24:80:58:57:9c:b0:fd:9b:21:04:c7:c9:
23:76:e2:96:41:42:b8:1a:0c:22:aa:23:df:cd:39:9a:4b:53:
43:ef:57:0b:5e:e8:73:db:6a:33:84:0e:42:40:53:1b:bd:1f:
d2:c4:74:e7:ab:c6:63:d8:3a:0e:4a:41:c2:e4:72:8a:d4:47:
09:4b:66:1b:dc:59:6b:5a:8c:73:51:43:5b:7b:cf:72:be:8a:
18:24:0a:6a:d1:54:b4:81:36:19:59:6f:d2:93:91:f5:a6:57:
bc:d9:cc:ad:23:93:bb:e7:7d:c5:cc:3a:c7:f4:66:04:d9:b2:
59:a9:9c:32:87:62:98:72:cb:05:54:c1:ef:29:e1:10:62:53:
d2:0e:db:90:e2:06:25:02:2f:ec:11:2a:8b:6c:86:ae:2f:99:
7b:79:b1:f4
-----BEGIN CERTIFICATE-----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Generated at Fri Oct 4 18:58:46 2024 by rpki-client on console-fra.rpki-client.org