Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/5d1d57-fdea-4526-ae64-82a48dfe61bd/1/hhVJugYUkAdXrR3R3Z_x-8c28uE.roa
File: hhVJugYUkAdXrR3R3Z_x-8c28uE.roa (raw, json)
Hash identifier: sKH6I6ZB5oTymXs8t09vpAVvKAPrcuLxCqT/7ctMS3A=
Subject key identifier: 86:15:49:BA:06:14:90:07:57:AD:1D:D1:DD:9F:F1:FB:C7:36:F2:E1
Certificate issuer: /CN=a1b7fffa0278ed8655ebe6482a876dfc7c9de1bc
Certificate serial: 01856E1D37B08F6AC5B9E49D436952302BCE
Authority key identifier: A1:B7:FF:FA:02:78:ED:86:55:EB:E6:48:2A:87:6D:FC:7C:9D:E1:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obf_-gJ47YZV6-ZIKodt_Hyd4bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/5d1d57-fdea-4526-ae64-82a48dfe61bd/1/hhVJugYUkAdXrR3R3Z_x-8c28uE.roa
Signing time: Sun 01 Jan 2023 16:14:46 +0000
ROA not before: Sun 01 Jan 2023 16:14:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60602
IP address blocks: 185.218.226.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:1d:37:b0:8f:6a:c5:b9:e4:9d:43:69:52:30:2b:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b7fffa0278ed8655ebe6482a876dfc7c9de1bc
Validity
Not Before: Jan 1 16:14:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=861549ba0614900757ad1dd1dd9ff1fbc736f2e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:13:61:b3:b4:46:19:e2:bf:4a:93:e6:f4:0c:
e2:3d:d1:64:c3:fd:ca:6e:39:47:1c:46:d5:d4:0b:
bb:00:c1:8d:c9:87:1d:a4:39:3b:95:e6:40:fd:de:
5f:e0:6b:f4:be:07:08:63:bb:f4:9c:78:91:c5:c4:
3d:56:67:e6:ce:f6:90:23:8a:db:7a:24:f3:6e:5c:
d7:69:e4:4f:2b:6e:0d:58:db:c4:4e:9c:b1:04:8f:
93:5e:a6:ee:81:18:09:21:27:7f:79:9d:81:3b:d1:
bc:26:2c:43:5d:4e:af:74:81:c0:49:9a:6d:29:76:
fa:c3:61:e2:2d:62:6d:56:bf:8d:88:3a:54:a1:bf:
21:43:8b:5f:fe:57:68:79:99:bc:6d:59:6b:4f:cd:
b7:2b:e7:f8:ec:70:be:67:63:5c:7e:5d:6c:63:da:
71:e0:04:e9:96:ef:2a:df:34:91:2e:48:6a:1d:3f:
c8:56:ed:4f:b6:db:05:0b:1e:3a:e7:9e:3b:16:0e:
1e:f7:5e:f9:55:12:13:97:49:1e:81:26:20:0f:d2:
24:b2:a1:58:81:e6:ee:c9:d8:db:c0:e8:ca:31:ef:
a3:5a:2a:32:6e:93:f0:1e:b3:73:fc:8e:73:11:60:
83:23:d0:ed:f1:23:b8:65:64:6f:ea:77:8b:f0:07:
ed:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:15:49:BA:06:14:90:07:57:AD:1D:D1:DD:9F:F1:FB:C7:36:F2:E1
X509v3 Authority Key Identifier:
keyid:A1:B7:FF:FA:02:78:ED:86:55:EB:E6:48:2A:87:6D:FC:7C:9D:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obf_-gJ47YZV6-ZIKodt_Hyd4bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/5d1d57-fdea-4526-ae64-82a48dfe61bd/1/hhVJugYUkAdXrR3R3Z_x-8c28uE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/5d1d57-fdea-4526-ae64-82a48dfe61bd/1/obf_-gJ47YZV6-ZIKodt_Hyd4bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.218.226.0/23
Signature Algorithm: sha256WithRSAEncryption
68:76:38:fb:4f:6f:36:8c:4c:54:78:38:b5:8b:d5:c6:58:28:
e7:ce:7e:bc:97:b5:ed:91:bd:b5:01:a3:bd:e4:ee:86:71:a8:
51:58:96:5e:29:46:23:a9:8d:f6:17:bc:fc:45:5f:62:09:57:
9d:56:5b:50:c9:f7:a6:64:50:49:9c:d5:00:ac:0a:11:8c:fd:
90:86:db:5f:0a:8a:00:b9:05:c1:7b:73:f2:dc:41:56:dd:cd:
95:08:4d:b4:4d:a0:f9:da:9c:f6:f4:b3:51:19:ff:21:7a:53:
88:6e:65:3f:f0:0c:9f:05:fa:ac:17:cb:79:7f:fa:03:64:ca:
a1:cb:4c:c5:bc:e1:5f:09:63:10:22:34:61:a4:e6:50:2e:67:
b8:1a:32:c4:87:82:5f:a9:1f:3a:7e:7f:c0:29:7b:f5:d2:cb:
50:44:6a:0e:26:29:c2:ab:bb:f7:b9:ef:8f:5b:cd:fa:3e:29:
a2:c8:4e:bf:77:c0:65:20:f6:0c:51:99:37:02:55:63:e1:6e:
aa:c2:38:9c:24:b7:e4:23:d4:af:9c:34:f1:e3:f7:d5:e7:5d:
4e:73:07:51:59:34:b9:e8:9c:1e:a2:09:8e:62:1d:78:6f:04:
e8:1c:2a:95:a8:d7:0f:81:41:58:e9:09:de:f7:4d:06:9e:05:
48:e5:b7:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:15 2024 by rpki-client on console-ams.rpki-client.org