Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/c06dd4-6fd2-48b5-a0c6-8134a41acddd/1/pu2tn-mT4f9Y4AplpHCja5Fsh74.roa
File: pu2tn-mT4f9Y4AplpHCja5Fsh74.roa (raw, json)
Hash identifier: HGLhB3C2sgFslF+sMRvOAasgW89a7L7MFE830G9WTyQ=
Subject key identifier: A6:ED:AD:9F:E9:93:E1:FF:58:E0:0A:65:A4:70:A3:6B:91:6C:87:BE
Certificate issuer: /CN=4c63a1ffefff85f9d0247a729edff5d0fa40b4dc
Certificate serial: 01857356158179037265B6435E71A1AD577B
Authority key identifier: 4C:63:A1:FF:EF:FF:85:F9:D0:24:7A:72:9E:DF:F5:D0:FA:40:B4:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TGOh_-__hfnQJHpynt_10PpAtNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/c06dd4-6fd2-48b5-a0c6-8134a41acddd/1/pu2tn-mT4f9Y4AplpHCja5Fsh74.roa
Signing time: Mon 02 Jan 2023 16:34:59 +0000
ROA not before: Mon 02 Jan 2023 16:34:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203020
IP address blocks: 109.205.185.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:56:15:81:79:03:72:65:b6:43:5e:71:a1:ad:57:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4c63a1ffefff85f9d0247a729edff5d0fa40b4dc
Validity
Not Before: Jan 2 16:34:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6edad9fe993e1ff58e00a65a470a36b916c87be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:3e:a0:e6:33:de:e3:51:91:e2:e5:d1:3d:1d:
80:6b:2a:9f:16:37:f2:cc:09:96:13:f6:e3:15:c7:
5a:8e:fb:04:25:cc:e1:ea:d0:f7:c1:9b:72:31:ce:
16:35:31:1a:b6:1e:01:eb:eb:ff:86:7c:2e:61:c9:
50:35:49:d0:32:63:34:76:94:8b:96:f5:22:b6:0f:
27:1a:06:3d:f7:b1:c3:43:97:fe:89:21:4b:da:fd:
25:37:83:87:f8:10:a3:af:00:00:97:7c:16:9d:93:
7d:61:25:37:32:5a:a0:a7:2e:76:8b:17:b1:9a:7a:
66:19:40:17:e5:8b:56:5e:d7:df:1f:93:92:97:7d:
0e:d9:f6:ec:4f:2f:df:73:9c:8b:59:e3:74:78:91:
08:da:05:1b:6c:f9:ba:79:c6:79:4b:d6:f1:19:77:
61:06:b0:33:89:45:df:38:04:d5:92:75:21:f6:1e:
13:f3:05:6a:74:ff:00:a4:f9:f4:5e:a4:54:8a:3c:
2b:8b:a2:3f:78:54:65:5d:a0:5a:2d:1f:17:10:23:
bd:f4:d3:f6:5d:c6:c6:51:99:25:24:06:54:6d:87:
44:86:b6:fb:2c:f9:b7:82:27:a2:18:92:43:29:49:
82:e8:fa:aa:e7:ae:d5:c9:8a:a4:bf:d2:4d:7d:73:
c4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:ED:AD:9F:E9:93:E1:FF:58:E0:0A:65:A4:70:A3:6B:91:6C:87:BE
X509v3 Authority Key Identifier:
keyid:4C:63:A1:FF:EF:FF:85:F9:D0:24:7A:72:9E:DF:F5:D0:FA:40:B4:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TGOh_-__hfnQJHpynt_10PpAtNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c06dd4-6fd2-48b5-a0c6-8134a41acddd/1/pu2tn-mT4f9Y4AplpHCja5Fsh74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/c06dd4-6fd2-48b5-a0c6-8134a41acddd/1/TGOh_-__hfnQJHpynt_10PpAtNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.185.0/24
Signature Algorithm: sha256WithRSAEncryption
a4:5a:61:7d:9c:a3:70:2d:54:bf:ed:19:62:77:44:f3:bb:9f:
48:c1:25:d4:68:fb:ec:18:8f:fe:e8:b2:a0:1c:1d:20:6b:de:
14:28:87:8c:2f:cb:e7:ec:49:6b:3a:56:d5:7d:c6:2c:c8:92:
32:c1:1b:a3:25:be:4d:20:bc:fc:08:b2:a7:48:d0:3d:6c:8f:
62:90:7d:6b:a2:76:6a:6e:b9:cf:8e:4f:f4:26:b5:38:3f:33:
03:8f:dd:c7:2c:41:d4:88:8b:b4:79:b8:f9:4a:f2:39:09:8b:
4b:07:2b:68:ec:8e:91:21:7f:77:bd:80:0e:d3:59:4d:bc:43:
08:90:72:49:14:ed:18:a5:f8:e8:d9:b8:44:c4:7e:21:e4:81:
37:b8:31:90:5a:69:32:8b:b1:a6:50:ce:68:46:03:a9:f3:34:
5f:87:dd:89:4f:ca:c7:cb:62:be:93:f5:84:19:ce:b5:18:6f:
16:1f:1e:17:f6:d4:4b:ad:3f:3d:c9:bc:78:55:a6:fe:84:2f:
bc:cd:f1:af:3f:27:df:ce:96:39:37:20:9b:9b:2d:d7:c8:cc:
5a:5e:78:5f:e8:ca:55:0f:b7:60:dc:d7:4c:be:e3:d2:e7:19:
2a:a4:2a:47:74:a3:9e:53:d0:b4:27:26:f4:58:4d:16:da:9b:
9a:bc:66:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:05 2024 by rpki-client on console-ams.rpki-client.org