Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/fcec5c-88ef-4d11-9754-fdbfa5b6b373/1/xiL9xlcP1Y7-Nk6AC301vg5qYQU.roa
File: xiL9xlcP1Y7-Nk6AC301vg5qYQU.roa (raw, json)
Hash identifier: of8gPb1rx7wAAF/Hl+Pk5KPxTjGX7yIQ6cwrXCa7VM0=
Subject key identifier: C6:22:FD:C6:57:0F:D5:8E:FE:36:4E:80:0B:7D:35:BE:0E:6A:61:05
Certificate issuer: /CN=71a50dd78f03c71104d5d1a26058a920724e859e
Certificate serial: 018D5F19720ED6B05C029D93F3940EA3988C
Authority key identifier: 71:A5:0D:D7:8F:03:C7:11:04:D5:D1:A2:60:58:A9:20:72:4E:85:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/caUN148DxxEE1dGiYFipIHJOhZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/fcec5c-88ef-4d11-9754-fdbfa5b6b373/1/xiL9xlcP1Y7-Nk6AC301vg5qYQU.roa
Signing time: Wed 31 Jan 2024 10:38:39 +0000
ROA not before: Wed 31 Jan 2024 10:38:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 215946
IP address blocks: 185.120.39.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5f:19:72:0e:d6:b0:5c:02:9d:93:f3:94:0e:a3:98:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=71a50dd78f03c71104d5d1a26058a920724e859e
Validity
Not Before: Jan 31 10:38:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c622fdc6570fd58efe364e800b7d35be0e6a6105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:51:d6:b7:81:0d:00:d3:96:fb:49:e3:45:cd:
3a:04:a1:a4:48:fc:01:67:33:f0:64:aa:2c:39:dc:
26:1b:ba:ff:28:67:97:77:10:f6:b2:c7:3e:6a:0f:
24:b1:90:f0:2c:99:27:56:77:85:04:75:9e:a9:53:
94:46:b0:92:59:3b:29:e8:16:f5:38:c5:21:a8:d8:
e5:44:3c:8b:d5:b2:46:5d:2b:65:f7:be:99:09:85:
b6:cd:95:7b:50:b7:31:97:c6:51:ef:99:88:2d:75:
1f:1b:e3:fc:16:ae:98:76:95:97:b6:3e:5a:de:94:
3e:d8:e7:47:9b:de:32:91:76:92:f1:2b:c1:95:2e:
bb:16:ef:82:8e:56:ea:3e:bb:5c:11:ab:51:6f:fe:
8b:8d:3f:50:93:6d:8a:c0:df:d7:82:66:b6:ce:d1:
dc:34:54:84:bd:92:0d:98:23:b3:fb:0b:65:fb:d5:
e0:73:c5:5b:9b:59:51:f9:ad:38:35:5e:d9:3e:73:
9e:a4:b7:92:ef:ea:bc:a8:3b:e1:73:73:52:a2:08:
d7:4a:16:00:7a:4b:8a:ff:91:61:cd:7a:6b:83:9c:
37:d3:28:92:21:d0:90:f2:10:23:8d:fd:06:a5:c0:
ac:37:89:d5:a4:d7:f5:51:b3:61:d4:a9:62:73:75:
6f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:22:FD:C6:57:0F:D5:8E:FE:36:4E:80:0B:7D:35:BE:0E:6A:61:05
X509v3 Authority Key Identifier:
keyid:71:A5:0D:D7:8F:03:C7:11:04:D5:D1:A2:60:58:A9:20:72:4E:85:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/caUN148DxxEE1dGiYFipIHJOhZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/fcec5c-88ef-4d11-9754-fdbfa5b6b373/1/xiL9xlcP1Y7-Nk6AC301vg5qYQU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/fcec5c-88ef-4d11-9754-fdbfa5b6b373/1/caUN148DxxEE1dGiYFipIHJOhZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.120.39.0/24
Signature Algorithm: sha256WithRSAEncryption
10:e5:b2:61:b5:98:d5:5f:41:28:45:9d:95:9a:a2:fd:d5:aa:
67:18:b9:c0:a3:9d:69:af:6b:2f:e3:81:dc:d1:8c:2d:08:6d:
a6:b4:57:d2:88:d1:73:ca:20:40:e6:e2:83:35:32:89:eb:62:
f8:0b:30:b9:a5:e2:74:5a:30:5c:1b:72:81:ed:20:07:6f:fd:
62:97:5d:27:28:0d:cc:de:c6:3d:27:bb:85:21:bf:cf:3a:2b:
ba:3c:ee:e4:3b:f7:db:32:d5:4a:6a:63:5e:eb:3c:5c:c2:e4:
0b:30:b1:c9:8f:07:cd:49:db:57:7a:33:f3:d3:a6:60:fe:93:
1a:6e:83:cb:90:e1:c7:eb:dd:e3:0a:34:0e:d9:59:38:da:d6:
4f:a2:68:7b:b8:a8:d4:b4:a8:0f:88:2c:1c:bf:2d:24:54:0b:
79:63:3c:fe:be:89:27:dc:0f:cd:24:95:24:6e:79:6b:b5:b9:
89:a0:cb:ee:95:1b:5c:76:95:a1:c6:b3:d9:86:8f:66:4e:1e:
d4:47:eb:9b:60:cb:6a:cf:b5:20:6e:76:5f:3d:13:5a:76:9b:
06:1e:e2:5b:92:16:f1:9b:13:a0:08:7c:49:c1:c6:af:ee:37:
87:30:14:b4:fe:92:21:a1:10:bd:07:06:52:f3:49:d4:90:ca:
f5:69:40:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:42 2024 by rpki-client on console-fra.rpki-client.org