Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/9a99c1-0da8-411c-a3a5-6c0e45bc3ff1/1/tus38BBz-DO92U9nmpTXEA1Kyg0.roa
File: tus38BBz-DO92U9nmpTXEA1Kyg0.roa (raw, json)
Hash identifier: 49bLHr3IIPcbqI/hZfkGYWfQXg68J9w7b4yOvZysIV0=
Subject key identifier: B6:EB:37:F0:10:73:F8:33:BD:D9:4F:67:9A:94:D7:10:0D:4A:CA:0D
Certificate issuer: /CN=d8f7db18449bc00ae614312cd56d7dc78a05aa27
Certificate serial: 077DC38E
Authority key identifier: D8:F7:DB:18:44:9B:C0:0A:E6:14:31:2C:D5:6D:7D:C7:8A:05:AA:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2PfbGESbwArmFDEs1W19x4oFqic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/9a99c1-0da8-411c-a3a5-6c0e45bc3ff1/1/tus38BBz-DO92U9nmpTXEA1Kyg0.roa
Signing time: Sat 01 Jan 2022 05:52:51 +0000
ROA not before: Sat 01 Jan 2022 05:52:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44205
IP address blocks: 185.115.120.0/22 maxlen: 22
2a06:7600::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125682574 (0x77dc38e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d8f7db18449bc00ae614312cd56d7dc78a05aa27
Validity
Not Before: Jan 1 05:52:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b6eb37f01073f833bdd94f679a94d7100d4aca0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:11:e8:34:6a:72:7f:9d:8c:dd:29:6d:8f:04:
91:01:2d:b7:37:e6:a0:5c:72:31:04:74:97:ae:c7:
40:ce:1d:cb:fc:f3:51:b3:35:07:ae:22:71:0d:a7:
6e:3b:37:9f:35:75:42:62:6c:0f:49:4c:05:e6:af:
17:d5:31:5f:fb:28:80:4e:9d:ca:7a:77:1a:c4:51:
fc:99:73:d2:df:ca:97:cb:8e:3f:a5:42:b5:46:c7:
36:3d:3f:a5:b2:10:36:4b:23:fc:78:57:8b:05:3d:
0b:5d:38:b6:a6:d6:e9:b3:29:a7:ea:ef:bf:d5:2f:
e1:be:59:53:79:93:9b:af:0e:3f:ad:9f:3a:d4:49:
38:9e:1f:81:03:c9:3a:4e:3f:51:82:26:0f:be:e6:
60:10:53:c3:f6:0d:97:86:b9:80:52:a6:b2:d6:5c:
c2:f9:db:99:52:60:17:ae:a2:14:21:0d:f0:a1:a4:
54:fc:a8:45:23:5d:d4:2b:e0:dd:03:55:1f:1e:d1:
24:55:83:d6:3b:a4:70:b7:f2:e9:ce:b7:4d:21:c7:
cb:8b:1e:6c:30:e4:a5:50:d2:e9:f9:dc:f8:18:eb:
ee:18:2b:59:2a:00:bf:82:94:7d:c3:02:c8:ee:e2:
3a:9c:ed:7c:2f:0d:01:73:8b:b4:3a:3a:51:c2:5f:
db:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:EB:37:F0:10:73:F8:33:BD:D9:4F:67:9A:94:D7:10:0D:4A:CA:0D
X509v3 Authority Key Identifier:
keyid:D8:F7:DB:18:44:9B:C0:0A:E6:14:31:2C:D5:6D:7D:C7:8A:05:AA:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2PfbGESbwArmFDEs1W19x4oFqic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/9a99c1-0da8-411c-a3a5-6c0e45bc3ff1/1/tus38BBz-DO92U9nmpTXEA1Kyg0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/9a99c1-0da8-411c-a3a5-6c0e45bc3ff1/1/2PfbGESbwArmFDEs1W19x4oFqic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.115.120.0/22
IPv6:
2a06:7600::/29
Signature Algorithm: sha256WithRSAEncryption
50:90:20:5a:34:5c:68:1e:58:2f:a2:06:eb:8f:9a:f4:2c:f0:
95:d6:2a:98:7e:88:b0:80:e8:23:52:3f:4d:91:a0:6b:d5:b0:
a8:32:16:56:c9:a1:6b:15:a0:a6:b4:43:a0:76:2f:9e:28:e7:
22:a9:f8:7f:19:75:ba:e8:90:56:cd:f2:6c:06:70:28:f2:32:
7e:3e:46:01:9f:41:da:b4:29:c1:00:e0:7c:08:24:bf:32:3b:
32:c3:95:14:f1:ca:48:18:c4:8c:9d:12:37:f7:75:5e:50:b1:
04:cc:7f:bf:ed:1b:96:50:94:d6:06:6a:fd:78:d2:b7:51:9b:
2f:d1:57:c9:e0:e9:89:e0:a3:1f:11:11:17:e1:38:bb:f7:38:
92:5c:89:c7:47:07:5b:80:8a:a1:79:ed:2c:5a:dc:fb:9d:8d:
7c:0a:87:6f:3b:39:1f:e2:e5:f7:2d:e6:a0:ec:24:cb:c4:c8:
d0:9d:42:27:55:61:95:d9:77:70:e2:9f:f9:08:cc:e2:61:a7:
0b:1b:7c:05:20:4d:a5:06:9b:e3:fe:d3:7a:df:70:44:ed:13:
a8:13:c0:bf:b6:bd:76:9f:b7:32:fc:cb:e2:12:4c:96:e5:c2:
c8:26:fa:32:eb:fc:4c:1f:c7:eb:3c:75:79:0d:ba:2a:b7:c4:
d6:ff:32:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:30 2024 by rpki-client on console-fra.rpki-client.org