Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/f42158-f8af-4b6c-b9ea-590bb1bd6916/1/XsM5U4KZ3pPiwzxLzBgHGun0qGE.roa
File: XsM5U4KZ3pPiwzxLzBgHGun0qGE.roa (raw, json)
Hash identifier: avwJxMdvcHFP3zzCj32D9MhX2OA8sgFYBuCkgzobQoY=
Subject key identifier: 5E:C3:39:53:82:99:DE:93:E2:C3:3C:4B:CC:18:07:1A:E9:F4:A8:61
Certificate issuer: /CN=1a11b4c31b8eccad0d34aee1573476cb3474b66e
Certificate serial: 0182B1185023855F15DD5A90F69D48FD117B
Authority key identifier: 1A:11:B4:C3:1B:8E:CC:AD:0D:34:AE:E1:57:34:76:CB:34:74:B6:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GhG0wxuOzK0NNK7hVzR2yzR0tm4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/f42158-f8af-4b6c-b9ea-590bb1bd6916/1/XsM5U4KZ3pPiwzxLzBgHGun0qGE.roa
Signing time: Thu 18 Aug 2022 13:15:36 +0000
ROA not before: Thu 18 Aug 2022 13:15:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57523
IP address blocks: 185.122.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b1:18:50:23:85:5f:15:dd:5a:90:f6:9d:48:fd:11:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a11b4c31b8eccad0d34aee1573476cb3474b66e
Validity
Not Before: Aug 18 13:15:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ec339538299de93e2c33c4bcc18071ae9f4a861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:8a:1b:2f:f0:90:9a:13:d7:9b:ad:b5:ce:30:
d0:e7:31:35:0e:6a:4d:95:f5:df:16:17:d7:81:eb:
9a:e5:3c:5e:84:74:43:b3:9d:d6:ab:ff:d8:0b:78:
0c:d4:f1:cb:33:18:53:9b:df:59:3f:ea:8a:bd:56:
7f:dc:70:0e:e9:aa:ea:d9:76:bb:c9:1b:2c:03:2c:
32:c7:a5:2d:3b:30:bc:9b:36:00:4e:fd:b2:3d:8b:
e5:35:a3:ca:13:90:8f:bd:5e:cb:00:7e:b5:a2:f1:
c5:28:f4:03:f8:93:9b:4d:5b:83:92:d9:93:24:9f:
42:05:0f:6d:e0:b9:2f:9b:33:ec:2b:ce:be:45:8a:
ac:8c:91:16:5f:38:8f:a5:9b:b9:da:b6:73:92:45:
aa:7d:29:bd:54:68:49:bf:ca:bf:4d:c6:ae:31:2f:
27:b0:e3:5f:44:b8:a0:ba:c0:6c:d1:e7:9b:4f:55:
8c:1d:51:9f:02:dc:e3:dc:eb:3a:85:89:ab:98:0b:
9b:28:65:fc:1e:5b:7c:a3:b4:b5:4d:36:79:64:24:
47:2c:d6:32:c6:45:be:83:04:8f:1d:6a:24:b6:0e:
7b:94:01:22:64:03:0f:3b:97:27:d4:b5:4a:b1:23:
b4:97:48:86:97:15:06:57:8d:2e:f9:ad:e4:9c:e3:
28:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:C3:39:53:82:99:DE:93:E2:C3:3C:4B:CC:18:07:1A:E9:F4:A8:61
X509v3 Authority Key Identifier:
keyid:1A:11:B4:C3:1B:8E:CC:AD:0D:34:AE:E1:57:34:76:CB:34:74:B6:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GhG0wxuOzK0NNK7hVzR2yzR0tm4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f42158-f8af-4b6c-b9ea-590bb1bd6916/1/XsM5U4KZ3pPiwzxLzBgHGun0qGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/f42158-f8af-4b6c-b9ea-590bb1bd6916/1/GhG0wxuOzK0NNK7hVzR2yzR0tm4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.122.204.0/24
Signature Algorithm: sha256WithRSAEncryption
81:73:28:70:9e:36:c5:1f:e9:58:45:f2:26:4b:60:7c:c6:bb:
b8:59:36:6c:02:36:dd:de:d9:d5:2d:e6:57:c3:ab:e2:ce:3e:
b2:48:31:c3:af:ff:2d:92:88:5a:b0:70:a1:00:5d:70:7d:d9:
d0:f1:d3:37:82:d8:35:89:0c:ca:87:c6:97:c3:99:e2:31:2d:
54:9d:3d:90:59:68:6a:af:5d:66:c5:7c:66:af:38:73:43:34:
3f:1d:2a:48:ed:23:c3:76:65:e2:e9:36:ea:38:74:0b:e9:88:
6a:8b:f1:72:0b:c3:e0:4d:55:af:03:bd:56:12:4f:41:e0:26:
29:44:29:38:88:9b:06:45:e9:d3:b4:42:18:f1:7f:62:b4:92:
c9:cc:b8:bf:10:40:8d:6d:f8:15:b2:b6:90:16:73:58:cf:ce:
d4:ee:6f:9c:b6:f9:57:bd:df:7c:ab:ea:2a:37:5f:67:e7:32:
e1:44:9b:c5:f0:2d:f7:07:07:54:97:82:58:05:44:80:0a:a3:
74:58:a0:35:06:8b:fe:0b:cf:67:63:72:ac:aa:f9:fe:eb:0f:
34:c0:af:25:f5:23:3f:ba:76:f2:cc:50:9b:8e:14:4d:95:7e:
fe:a9:1f:b3:58:13:bc:35:76:c9:30:e7:7a:ce:bd:8b:50:f3:
7e:25:93:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:45 2024 by rpki-client on console-ams.rpki-client.org