Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/JSg59Gm640r8dWgml9Co1-rQrCY.roa
File: JSg59Gm640r8dWgml9Co1-rQrCY.roa (raw, json)
Hash identifier: VyAs8rr5DwgnaSj4kXkWUxShzrI9I8yRYtnITz9N27E=
Subject key identifier: 25:28:39:F4:69:BA:E3:4A:FC:75:68:26:97:D0:A8:D7:EA:D0:AC:26
Certificate issuer: /CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Certificate serial: 018571BA0C7AE0FB317CAAD50CE257E378D8
Authority key identifier: 9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/JSg59Gm640r8dWgml9Co1-rQrCY.roa
Signing time: Mon 02 Jan 2023 09:04:56 +0000
ROA not before: Mon 02 Jan 2023 09:04:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211166
IP address blocks: 185.34.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:0c:7a:e0:fb:31:7c:aa:d5:0c:e2:57:e3:78:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9daa9f14f97d4dad8c004c253a5e1ce7c7dd7c4b
Validity
Not Before: Jan 2 09:04:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=252839f469bae34afc75682697d0a8d7ead0ac26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:5d:90:66:8c:a3:2b:97:c2:f5:9d:ab:b3:02:
f0:34:d3:db:9e:bb:7f:7c:25:b1:9b:2c:f2:05:7d:
ad:a7:12:be:18:5e:1f:6e:93:c1:2e:2b:3a:da:4e:
c8:10:35:db:0a:cb:d5:f1:d4:99:e8:5b:44:b2:8b:
45:47:af:b2:af:a8:d2:59:15:10:3b:aa:27:d4:b8:
7e:60:59:db:64:df:9a:ad:05:94:cd:55:40:73:77:
8c:94:c2:9d:9c:3f:77:f7:32:d0:66:24:0b:c7:50:
f3:cb:04:f9:a2:01:06:c4:ce:65:4b:b7:20:f4:88:
d2:c5:dc:a0:b0:a7:ea:f8:a2:52:f0:55:7a:8d:08:
f5:97:8a:15:de:92:ba:3f:92:37:4c:36:db:12:6e:
e8:1b:bb:88:e9:31:7d:0b:5e:6b:fe:c3:98:14:90:
6f:85:25:41:a3:f8:9b:b7:e8:6b:af:3f:14:1b:79:
cd:e4:7c:24:d6:68:58:ef:f5:28:56:ef:18:98:28:
8e:c5:87:f5:3d:3f:60:73:0f:fa:a4:61:01:12:82:
d8:b0:bb:11:b6:ba:4b:8f:a1:46:30:b9:50:9e:9d:
a5:52:04:58:83:b0:a3:6f:0d:de:bc:f8:4a:83:c7:
88:36:c4:3f:62:f5:18:70:37:b9:5f:a5:78:52:f9:
0b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:28:39:F4:69:BA:E3:4A:FC:75:68:26:97:D0:A8:D7:EA:D0:AC:26
X509v3 Authority Key Identifier:
keyid:9D:AA:9F:14:F9:7D:4D:AD:8C:00:4C:25:3A:5E:1C:E7:C7:DD:7C:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/naqfFPl9Ta2MAEwlOl4c58fdfEs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/JSg59Gm640r8dWgml9Co1-rQrCY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/dfd605-10da-46a2-9677-41401008a70c/1/naqfFPl9Ta2MAEwlOl4c58fdfEs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.101.0/24
Signature Algorithm: sha256WithRSAEncryption
89:4e:d1:d5:b3:24:6c:82:22:9b:c6:6e:b2:f0:79:c7:b9:a6:
87:c9:35:91:ab:45:03:4c:61:03:11:fc:e3:34:d2:d2:ba:0b:
7a:35:9d:46:bb:77:e4:99:a7:6c:c7:c9:59:c3:01:e3:fd:65:
21:1d:53:42:70:9b:0d:e5:e4:a6:8d:79:45:71:3c:08:d1:63:
f2:af:6b:44:ac:11:b8:06:13:60:48:f6:6b:9b:c3:9e:20:8f:
d0:d3:94:e7:cd:db:47:91:29:4c:d3:f0:db:1b:f2:dd:c5:3e:
f2:a5:fe:32:79:63:74:74:12:5a:30:de:9d:16:c8:e1:b3:0b:
af:07:2f:b0:99:e6:05:76:72:5a:64:19:f1:00:70:0d:9d:f9:
a5:16:53:93:a4:27:00:ce:b0:1b:67:78:ff:3e:cc:b6:46:30:
b9:61:a6:28:64:cd:a8:e9:3a:0f:f1:19:85:16:41:b2:d6:e2:
c0:83:89:6f:08:45:e2:6c:f1:23:0b:dc:83:39:9a:40:ba:49:
e4:9c:e9:86:80:cd:aa:ca:24:92:0a:00:44:f7:3a:da:81:d2:
a3:d3:ad:f9:a8:7b:98:28:cc:61:f3:7a:59:d7:83:5a:2d:86:
2f:9c:df:b6:91:a2:a6:cd:dd:f3:2a:81:03:bb:96:de:c8:16:
e2:0d:aa:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Dec 18 01:18:21 2023 by rpki-client on console-fra.rpki-client.org