Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/f42158-f8af-4b6c-b9ea-590bb1bd6916/1/2UqTw9DZU9M3tDPWMJLnu7juY8U.roa
File: 2UqTw9DZU9M3tDPWMJLnu7juY8U.roa (raw, json)
Hash identifier: qebP43yyoh1jp+mrCtGiH57wCJktkfWshzahzaX2y0Y=
Subject key identifier: D9:4A:93:C3:D0:D9:53:D3:37:B4:33:D6:30:92:E7:BB:B8:EE:63:C5
Certificate issuer: /CN=1a11b4c31b8eccad0d34aee1573476cb3474b66e
Certificate serial: 01856E01E1BB88989C64902D2C9E5005A87C
Authority key identifier: 1A:11:B4:C3:1B:8E:CC:AD:0D:34:AE:E1:57:34:76:CB:34:74:B6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GhG0wxuOzK0NNK7hVzR2yzR0tm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/f42158-f8af-4b6c-b9ea-590bb1bd6916/1/2UqTw9DZU9M3tDPWMJLnu7juY8U.roa
Signing time: Sun 01 Jan 2023 15:44:55 +0000
ROA not before: Sun 01 Jan 2023 15:44:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57523
IP address blocks: 185.122.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:01:e1:bb:88:98:9c:64:90:2d:2c:9e:50:05:a8:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a11b4c31b8eccad0d34aee1573476cb3474b66e
Validity
Not Before: Jan 1 15:44:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d94a93c3d0d953d337b433d63092e7bbb8ee63c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:dc:0a:33:1f:ea:d8:47:7e:3f:84:53:f2:a2:
97:2e:0f:aa:5f:44:c9:80:46:eb:cf:ad:34:ee:26:
e2:0e:40:1e:8f:5c:14:44:1a:1d:ec:19:72:b8:2e:
09:75:e9:99:61:67:82:29:35:ce:d4:ee:78:e0:f5:
62:16:54:97:cd:27:80:84:b6:5d:76:c8:77:27:21:
21:3e:fb:f8:40:d6:d1:66:04:e1:bb:14:e2:5a:a4:
16:3a:3e:7d:4b:ad:b7:c5:09:3c:77:1d:fb:52:74:
a0:7d:4b:fb:43:07:5e:f4:29:a7:21:b9:24:9b:18:
99:fe:d5:f7:9f:68:d6:a4:ca:91:66:8f:7a:c4:f4:
48:6e:ac:3b:2a:6b:c5:9d:c4:1e:b8:2a:d8:39:5f:
04:7d:07:54:c2:cb:af:d1:9d:6a:2c:04:ab:e5:a0:
0a:a5:b6:0c:95:ad:a0:f6:b5:0c:a6:78:28:fd:85:
d9:26:90:56:bb:c9:74:6f:2e:23:62:8b:d2:4c:73:
69:f0:57:be:ec:c0:4a:58:67:d2:5d:cd:a4:05:d5:
ca:0e:20:f6:2e:71:39:46:60:4f:a3:33:c7:5a:9e:
31:25:d0:3e:c3:e4:88:9a:dd:6d:fd:46:7e:d1:87:
39:47:83:95:2d:81:b3:9b:fd:15:b5:4e:37:d5:d3:
e8:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:4A:93:C3:D0:D9:53:D3:37:B4:33:D6:30:92:E7:BB:B8:EE:63:C5
X509v3 Authority Key Identifier:
keyid:1A:11:B4:C3:1B:8E:CC:AD:0D:34:AE:E1:57:34:76:CB:34:74:B6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GhG0wxuOzK0NNK7hVzR2yzR0tm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f42158-f8af-4b6c-b9ea-590bb1bd6916/1/2UqTw9DZU9M3tDPWMJLnu7juY8U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f42158-f8af-4b6c-b9ea-590bb1bd6916/1/GhG0wxuOzK0NNK7hVzR2yzR0tm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.204.0/24
Signature Algorithm: sha256WithRSAEncryption
30:77:06:48:b9:bb:af:d7:27:61:ef:04:19:3a:65:49:f1:02:
7c:a6:dc:4b:a4:b3:f3:b6:8a:0d:69:3b:43:c4:f3:9e:27:da:
55:fa:4a:bb:69:c7:17:08:8b:3a:ab:76:d7:b9:43:be:af:95:
16:96:cd:1f:ad:1a:5b:b7:65:d6:3d:8d:01:2d:1f:15:92:02:
e0:4e:67:8d:99:8c:df:1a:1d:fc:e6:88:cf:b5:df:9e:e6:b2:
e9:c8:f3:69:ab:9f:e4:0f:bb:f9:14:a5:fb:15:94:69:eb:6d:
97:82:d7:da:e7:18:2c:21:50:39:b9:24:73:d8:fa:ba:23:b4:
be:2d:28:bb:6f:65:ee:56:dc:5d:a7:c8:66:c3:b0:ef:c7:3c:
28:6b:29:09:bd:92:21:9d:2a:0d:64:94:df:70:ae:f9:8a:5b:
12:5e:d5:b9:41:8a:24:af:03:0c:95:6f:c2:4f:f7:d4:5b:ea:
5c:c4:0a:94:96:3f:b2:9d:87:27:ea:09:30:32:a2:d7:7b:5f:
08:f1:d8:ac:4c:39:5f:06:3b:a8:80:e7:d5:f2:dc:60:3f:62:
3c:f5:d0:a5:14:c1:2b:b3:21:33:3d:44:fa:ca:58:1b:c7:c0:
da:1a:a6:5e:7a:62:b5:60:74:fb:69:46:51:f6:52:88:cb:18:
a3:ab:cf:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:45 2024 by rpki-client on console-ams.rpki-client.org