Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/07ade3-be80-4a87-9617-a16aebb8c9ef/1/0daZaVn9kohnZi4AjxcLOI2dYTA.roa
File: 0daZaVn9kohnZi4AjxcLOI2dYTA.roa (raw, json)
Hash identifier: mhVNRU2/gx3nhr590ysq6mvg1YqKqke+tmcwMSUQ8lk=
Subject key identifier: D1:D6:99:69:59:FD:92:88:67:66:2E:00:8F:17:0B:38:8D:9D:61:30
Certificate issuer: /CN=cac8e29f35583b5b2a9673dd76a25903b35ec593
Certificate serial: 01905901A7D22A2FDB273391A894FE802455
Authority key identifier: CA:C8:E2:9F:35:58:3B:5B:2A:96:73:DD:76:A2:59:03:B3:5E:C5:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ysjinzVYO1sqlnPddqJZA7NexZM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/07ade3-be80-4a87-9617-a16aebb8c9ef/1/0daZaVn9kohnZi4AjxcLOI2dYTA.roa
Signing time: Thu 27 Jun 2024 09:23:19 +0000
ROA not before: Thu 27 Jun 2024 09:23:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 57112
IP address blocks: 185.127.108.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:59:01:a7:d2:2a:2f:db:27:33:91:a8:94:fe:80:24:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cac8e29f35583b5b2a9673dd76a25903b35ec593
Validity
Not Before: Jun 27 09:23:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d1d6996959fd928867662e008f170b388d9d6130
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:64:c8:a2:e8:45:d1:91:6e:96:eb:e3:db:6d:
da:0b:59:da:c8:ed:11:c8:7d:5f:ca:34:40:3f:c4:
d7:29:2a:2a:31:d4:99:0e:29:ad:48:c3:08:21:27:
aa:9f:91:d9:a0:87:23:26:35:de:ed:c8:64:c2:e9:
e7:7a:85:cc:a0:89:04:a8:6c:45:e0:7f:83:fd:2f:
36:86:c4:94:79:63:14:bf:57:cb:b4:05:ef:e5:b3:
b0:d9:c3:8f:d2:35:13:84:52:60:f1:0e:c9:ba:c3:
03:7e:b3:dc:8b:8b:8c:e8:7f:7d:5d:19:97:1d:a5:
d2:7c:c3:8f:38:57:34:cd:95:71:e8:a7:ab:8a:d9:
38:a2:a4:37:8f:e8:47:ca:00:ce:af:c2:4e:72:01:
04:05:9c:5a:70:d9:40:76:27:c0:63:95:af:9a:a6:
d4:82:7f:58:0a:42:0e:98:92:55:b5:49:63:40:b0:
71:6e:43:5e:ca:c8:f6:be:ae:53:11:12:15:6e:30:
9e:43:05:a7:f4:4b:d5:41:6c:fa:0a:8c:1c:be:b3:
74:2b:ef:5f:a4:2a:5c:4f:1b:e3:45:ff:d4:d9:4f:
3b:b5:6c:80:dc:a3:76:1a:d7:a8:85:95:37:2f:f0:
5b:d7:e1:85:df:f9:7e:47:77:3f:bc:60:f4:45:e5:
9d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:D6:99:69:59:FD:92:88:67:66:2E:00:8F:17:0B:38:8D:9D:61:30
X509v3 Authority Key Identifier:
keyid:CA:C8:E2:9F:35:58:3B:5B:2A:96:73:DD:76:A2:59:03:B3:5E:C5:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ysjinzVYO1sqlnPddqJZA7NexZM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/07ade3-be80-4a87-9617-a16aebb8c9ef/1/0daZaVn9kohnZi4AjxcLOI2dYTA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/07ade3-be80-4a87-9617-a16aebb8c9ef/1/ysjinzVYO1sqlnPddqJZA7NexZM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.127.108.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:6b:60:db:ed:5e:ff:c7:11:6a:e2:f5:05:7b:b7:6a:42:8f:
71:9d:f5:4a:11:ad:16:02:46:db:d8:46:17:ec:1b:8b:60:54:
20:9e:ef:4f:54:05:33:b6:f7:02:6d:b9:07:e6:62:52:53:b7:
0e:0d:bb:3c:64:e0:70:7f:dd:15:fc:d8:90:81:e4:d2:9d:35:
ac:e5:a1:cb:66:a4:14:80:87:92:8f:1e:21:2b:38:d8:e9:8a:
fe:a4:01:54:4f:2f:32:a9:4f:c4:bd:61:d9:b3:f3:2a:04:88:
f9:70:6c:99:39:5e:f9:45:81:c1:5f:9f:fc:fc:f0:b6:1b:c7:
cd:d8:7c:81:27:1c:a3:08:0d:77:ce:b1:45:7d:8f:31:24:a8:
f5:0b:5a:3c:8d:34:4a:42:e5:53:e2:10:23:83:be:11:08:98:
c7:72:78:ce:f6:5e:16:fe:b0:22:5d:cc:ca:9b:4d:f0:e2:4a:
24:a6:63:32:c1:f2:94:c1:8e:ef:98:cf:ea:b1:57:1b:57:6b:
a1:72:1e:d4:47:c7:4d:65:77:d1:78:1b:de:3c:d9:e3:97:6a:
3c:34:c5:e7:90:6d:4a:3f:8b:49:ef:34:77:86:a3:bf:98:05:
12:5f:4b:f9:e0:8f:82:c0:7d:77:ed:83:e4:e1:09:1d:fe:55:
52:a2:9e:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 20 12:44:32 2024 by rpki-client on console-fra.rpki-client.org