Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/8e516a-f205-4869-ad74-abc76df32d29/1/lLtOuHODqo2DjT5NAFbMK4alBZE.roa
File: lLtOuHODqo2DjT5NAFbMK4alBZE.roa (raw, json)
Hash identifier: 3NxzZmwyGIMYN4KIAoPJQBka04jOa1e/QmI8uzJiNsM=
Subject key identifier: 94:BB:4E:B8:73:83:AA:8D:83:8D:3E:4D:00:56:CC:2B:86:A5:05:91
Certificate issuer: /CN=9ed40182815a34979fbc68e30c4008bf99b421bf
Certificate serial: 753D95
Authority key identifier: 9E:D4:01:82:81:5A:34:97:9F:BC:68:E3:0C:40:08:BF:99:B4:21:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ntQBgoFaNJefvGjjDEAIv5m0Ib8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/8e516a-f205-4869-ad74-abc76df32d29/1/lLtOuHODqo2DjT5NAFbMK4alBZE.roa
Signing time: Sat 01 Jan 2022 03:01:20 +0000
ROA not before: Sat 01 Jan 2022 03:01:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 109.205.186.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7683477 (0x753d95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ed40182815a34979fbc68e30c4008bf99b421bf
Validity
Not Before: Jan 1 03:01:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94bb4eb87383aa8d838d3e4d0056cc2b86a50591
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:d0:07:3f:66:b0:6e:d1:eb:7e:cf:62:4b:7c:
e9:bb:0b:49:27:fb:5f:a9:1a:11:b4:d3:e0:7a:ad:
f8:15:45:95:35:d9:f7:83:33:79:d3:7d:40:1f:42:
40:7b:9e:99:3d:49:41:f0:31:91:42:48:9a:22:f2:
f1:86:15:ed:77:66:60:91:08:84:29:a1:1d:ed:28:
de:47:0d:18:cf:89:30:7d:b8:18:ec:e3:00:b4:3b:
1f:3a:b5:90:25:ea:e6:b2:f2:31:6d:46:94:75:d0:
2d:c6:46:62:29:5a:0d:8e:cb:ae:a9:4f:7b:2d:21:
bc:f4:1c:30:9b:b2:76:96:60:e4:f6:46:e5:9c:67:
25:80:63:f9:b4:7c:b3:72:8a:95:7b:c6:ce:53:84:
f5:ca:41:d3:a8:31:82:13:52:94:88:70:4d:48:65:
31:6d:05:ef:ea:f5:c0:c8:21:67:c9:64:8e:69:15:
9d:c4:73:94:f6:25:1b:c6:1f:90:26:40:8b:9f:44:
be:c3:bf:85:55:32:48:9f:e3:07:27:93:79:3c:86:
3a:00:69:bb:fc:d3:3c:d3:7e:15:2e:b0:bb:71:1c:
94:1b:22:2b:2c:92:8c:1e:1d:22:71:40:24:47:55:
17:3b:94:0b:fc:9c:f1:76:d5:dd:b6:94:18:9c:b0:
e4:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:BB:4E:B8:73:83:AA:8D:83:8D:3E:4D:00:56:CC:2B:86:A5:05:91
X509v3 Authority Key Identifier:
keyid:9E:D4:01:82:81:5A:34:97:9F:BC:68:E3:0C:40:08:BF:99:B4:21:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ntQBgoFaNJefvGjjDEAIv5m0Ib8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8e516a-f205-4869-ad74-abc76df32d29/1/lLtOuHODqo2DjT5NAFbMK4alBZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8e516a-f205-4869-ad74-abc76df32d29/1/ntQBgoFaNJefvGjjDEAIv5m0Ib8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.186.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:5f:66:32:c9:83:c6:5b:d7:db:80:16:63:d1:e9:f9:cb:75:
73:25:45:a5:e9:21:1a:7f:4a:45:4e:f3:69:3e:9c:8c:33:74:
8c:4b:7e:a2:98:f2:93:97:73:9b:14:97:83:b2:d7:2b:3f:9e:
36:88:43:eb:6e:9d:0e:ac:00:a2:f3:4a:e8:42:e1:57:79:93:
ce:87:a9:0a:c4:d5:e6:ce:bf:59:d6:8d:16:4e:f7:ca:77:64:
09:2b:48:72:cb:9a:11:eb:c1:8b:b4:2c:a0:80:9c:82:cd:f3:
66:71:5d:4d:43:2d:b2:b4:e1:20:fb:5e:f3:5f:66:cc:07:5f:
5e:88:1d:af:cd:52:58:02:a8:b1:5e:77:fb:bf:98:38:b1:d1:
a0:92:94:c9:85:10:c1:32:d8:f2:cf:ef:ee:c8:f8:0d:67:68:
ea:18:34:9c:07:aa:e5:c6:93:f3:c2:53:ea:1c:79:76:42:66:
8d:a2:33:18:d8:6c:d0:74:99:1a:d2:a0:ea:ff:05:51:a2:4f:
7c:11:d4:1b:cf:55:0f:a9:d8:2a:06:57:ce:c7:99:87:a8:27:
78:71:c8:f0:ec:03:6d:22:c6:87:15:4f:8a:23:59:17:d1:db:
da:43:fc:40:4d:ce:87:4c:1f:e0:5a:ea:99:3d:d6:34:b5:c8:
8b:48:4a:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:07 2024 by rpki-client on console-fra.rpki-client.org