Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/028b9d-0461-44ea-b44b-48dd9291281c/1/g2VQnVqoWzJ-Tc-HZvx2HVZqmd4.roa
File: g2VQnVqoWzJ-Tc-HZvx2HVZqmd4.roa (raw, json)
Hash identifier: S+q29Rg5+QtO3z9h8XQ6qMsI8r5CYS0j9UGOyLExKHg=
Subject key identifier: 83:65:50:9D:5A:A8:5B:32:7E:4D:CF:87:66:FC:76:1D:56:6A:99:DE
Certificate issuer: /CN=0a1b5c044dcd48e1db7a619b44904a98435d85b8
Certificate serial: 01AACE5A
Authority key identifier: 0A:1B:5C:04:4D:CD:48:E1:DB:7A:61:9B:44:90:4A:98:43:5D:85:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ChtcBE3NSOHbemGbRJBKmENdhbg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/028b9d-0461-44ea-b44b-48dd9291281c/1/g2VQnVqoWzJ-Tc-HZvx2HVZqmd4.roa
Signing time: Sat 01 Jan 2022 15:55:28 +0000
ROA not before: Sat 01 Jan 2022 15:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205759
IP address blocks: 185.207.145.0/24 maxlen: 24
185.207.146.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27971162 (0x1aace5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a1b5c044dcd48e1db7a619b44904a98435d85b8
Validity
Not Before: Jan 1 15:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8365509d5aa85b327e4dcf8766fc761d566a99de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:97:15:51:86:09:5c:76:3c:49:06:c1:ac:38:
ef:bf:a2:1a:77:73:39:83:16:52:2e:2e:c7:30:37:
20:6e:5b:68:63:a2:fb:fe:5a:4d:39:60:b3:3a:f2:
0f:a0:2c:c3:38:97:0c:3c:2a:3f:3f:cc:8c:49:6e:
df:29:22:fd:1a:1b:75:08:61:12:cd:3c:65:2c:25:
12:c2:b1:94:17:b6:28:2c:f5:8d:cb:46:a9:19:76:
c6:42:25:de:9c:39:3d:b6:b7:46:27:58:ae:7e:8a:
5c:2d:b5:49:e4:05:87:ff:b7:cc:38:5f:99:25:47:
a4:31:e5:d6:6d:2f:c8:73:d1:ef:9e:70:40:d5:46:
69:2c:a1:10:9e:cf:fd:95:ad:31:8a:29:91:22:65:
9a:20:9c:a5:80:e6:1a:45:08:2f:0d:74:25:76:34:
e8:7b:dc:24:7c:5f:9c:86:28:bf:1a:7b:ee:e1:57:
32:49:6d:85:1c:39:c2:73:c3:5f:b5:de:68:a9:6d:
6a:57:87:83:56:38:77:e3:84:43:5f:aa:36:c8:99:
2c:9f:9e:23:2d:f4:43:2e:72:75:f3:a6:b7:91:74:
2c:a1:5b:c8:1d:5c:bd:7c:67:db:b0:0c:6c:9b:02:
9e:55:99:c9:b1:90:50:ef:d3:78:cd:53:72:ca:5a:
50:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:65:50:9D:5A:A8:5B:32:7E:4D:CF:87:66:FC:76:1D:56:6A:99:DE
X509v3 Authority Key Identifier:
keyid:0A:1B:5C:04:4D:CD:48:E1:DB:7A:61:9B:44:90:4A:98:43:5D:85:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ChtcBE3NSOHbemGbRJBKmENdhbg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/028b9d-0461-44ea-b44b-48dd9291281c/1/g2VQnVqoWzJ-Tc-HZvx2HVZqmd4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/028b9d-0461-44ea-b44b-48dd9291281c/1/ChtcBE3NSOHbemGbRJBKmENdhbg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.207.145.0-185.207.147.255
Signature Algorithm: sha256WithRSAEncryption
3a:e5:56:ac:38:f8:eb:fb:0d:f0:6a:bb:6b:61:67:7b:d1:df:
aa:99:34:14:61:8a:87:3c:f0:71:cd:a3:3d:8b:a9:3e:6a:a7:
53:cd:81:7d:d0:bb:b3:d6:80:a3:fd:65:42:2d:81:03:67:ce:
a8:2e:e5:6f:08:94:ca:74:f6:d2:31:37:0b:fe:86:bf:94:c0:
b7:23:36:5d:51:88:fa:c8:61:3a:71:8a:c1:e7:95:70:2a:b3:
78:1d:9e:62:a2:8e:17:bb:0c:52:56:41:f6:3f:a7:3b:96:89:
2f:60:25:24:8f:1d:4a:b4:73:3b:dd:54:e9:84:1f:73:c9:95:
69:4e:3d:db:d5:20:32:7d:4b:bf:64:40:2c:44:9d:a2:7d:21:
9e:a0:d9:74:fa:7f:12:f9:47:48:49:c8:78:93:cc:06:af:c1:
60:dd:29:26:1b:f9:a8:09:2c:02:f8:b5:82:c0:74:37:16:aa:
48:28:cc:f2:0e:e0:5c:c1:15:ed:3a:5c:d6:5a:0d:93:78:10:
67:29:ff:06:07:5a:af:e6:ac:e5:1e:ac:c5:eb:e0:33:bb:7f:
86:10:27:46:9a:3a:8e:b9:e5:cc:4e:7e:25:bd:76:93:1d:68:
d0:b6:44:15:42:56:71:70:91:b8:52:9f:ed:a5:84:a9:1f:54:
79:78:b6:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:20 2024 by rpki-client on console-fra.rpki-client.org