Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/dgQo6rlZ4xNIXYalRRlwj4XJ77Y.roa
File: dgQo6rlZ4xNIXYalRRlwj4XJ77Y.roa (raw, json)
Hash identifier: PEQNQCZuJIzUd6pZeFPNRfKedTdVGjngK2grDvZbtU0=
Subject key identifier: 76:04:28:EA:B9:59:E3:13:48:5D:86:A5:45:19:70:8F:85:C9:EF:B6
Certificate issuer: /CN=006e643d0b67f4b333feacdc4616d4e4f3de32cd
Certificate serial: 01857321CA2DE7EF6E18CDD23EFCA1D4CE37
Authority key identifier: 00:6E:64:3D:0B:67:F4:B3:33:FE:AC:DC:46:16:D4:E4:F3:DE:32:CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AG5kPQtn9LMz_qzcRhbU5PPeMs0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/dgQo6rlZ4xNIXYalRRlwj4XJ77Y.roa
Signing time: Mon 02 Jan 2023 15:37:52 +0000
ROA not before: Mon 02 Jan 2023 15:37:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208129
IP address blocks: 185.153.94.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:21:ca:2d:e7:ef:6e:18:cd:d2:3e:fc:a1:d4:ce:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=006e643d0b67f4b333feacdc4616d4e4f3de32cd
Validity
Not Before: Jan 2 15:37:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=760428eab959e313485d86a54519708f85c9efb6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e8:c0:70:73:59:b8:05:e1:ac:fb:22:1c:99:
20:44:d1:59:23:57:1d:54:75:37:2f:c6:62:43:51:
96:e4:d9:4f:dc:8f:86:57:7d:2d:c0:37:e5:93:ff:
ca:ef:c2:c7:f5:5e:f1:5f:22:1f:9c:5f:3a:0e:cf:
c8:fb:9c:c8:20:85:d0:61:94:dd:97:72:c7:a6:c7:
bc:2c:9b:f8:1e:39:06:55:8b:ff:80:a4:cd:39:67:
8b:3f:51:93:76:e9:3d:26:d3:66:65:8c:3a:99:f2:
44:9b:ff:2a:46:f2:2a:4e:ba:d8:38:cb:2c:c9:30:
ba:7e:9b:fd:40:30:b7:a0:02:b9:a5:c6:7e:c8:a4:
d2:20:ec:6e:1d:5e:00:c8:fc:a1:8c:28:9b:01:b0:
7d:3c:9b:5b:7c:13:3e:0c:6b:e6:63:4c:2d:9c:40:
f0:8e:28:e9:b2:4a:e1:40:ce:a8:fb:ad:53:ab:8a:
82:cb:66:b9:c6:49:0b:44:67:d5:74:e2:35:29:ae:
64:ff:fb:61:76:74:a4:26:db:21:00:9a:77:84:af:
d5:ca:84:72:b7:62:c2:97:bf:27:af:12:ca:76:21:
1a:e7:b2:0d:85:16:9d:f3:80:8e:ec:ea:73:11:7d:
c8:2a:e2:5b:c1:b5:a1:68:22:4d:dc:37:ee:55:f8:
6b:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:04:28:EA:B9:59:E3:13:48:5D:86:A5:45:19:70:8F:85:C9:EF:B6
X509v3 Authority Key Identifier:
keyid:00:6E:64:3D:0B:67:F4:B3:33:FE:AC:DC:46:16:D4:E4:F3:DE:32:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AG5kPQtn9LMz_qzcRhbU5PPeMs0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/dgQo6rlZ4xNIXYalRRlwj4XJ77Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b7aa7b-97c2-4bd8-8caa-dcce28e9346a/1/AG5kPQtn9LMz_qzcRhbU5PPeMs0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.153.94.0/24
Signature Algorithm: sha256WithRSAEncryption
73:3c:50:7a:0f:78:7a:46:99:92:cf:7b:b0:37:5f:15:67:b5:
b2:82:7f:83:97:5e:f2:97:37:dc:92:f4:10:e0:78:16:38:2a:
b3:17:4c:7b:f1:f5:28:03:67:1e:ab:d7:cf:0c:ed:ff:f4:1f:
f9:4b:c0:43:27:df:40:5c:15:9b:1c:a0:25:77:02:8b:f6:5c:
a9:65:82:b0:cf:57:18:72:3b:cb:13:37:6e:b6:37:39:bd:e4:
64:0e:8b:45:bb:5c:f3:a6:53:94:4d:d4:6e:94:59:24:a2:6d:
84:57:8e:36:28:77:25:c9:9b:3f:db:9b:f8:fd:ca:c6:27:94:
87:5e:e8:27:2d:f2:47:43:b1:19:43:e4:90:ed:bd:fb:78:c2:
c6:ad:55:9b:51:28:ae:bd:a3:7e:6f:da:04:8b:ab:96:89:5d:
8c:e8:a9:e3:fd:f4:3f:3f:d8:7d:d1:46:10:f1:5f:f8:36:fd:
09:bf:35:28:51:dd:dc:64:df:af:6f:68:1f:d6:9f:75:92:45:
8e:94:16:60:2b:01:b8:65:e4:25:ef:9c:14:72:92:7a:2e:fa:
d4:76:ec:04:52:48:fd:14:95:6e:67:91:c8:77:cf:18:a5:50:
c4:34:bf:a9:68:4d:f2:12:0a:74:2c:c3:32:af:27:5c:d6:f6:
c7:3b:81:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:58 2024 by rpki-client on console-ams.rpki-client.org