Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/5db01f-3f20-49f9-a7de-41400df54b37/1/RD7lPu67a4ACk1LVhg9_RvXbM_E.roa
File: RD7lPu67a4ACk1LVhg9_RvXbM_E.roa (raw, json)
Hash identifier: Glu921LSs5BVkDsl8H4nLN9PkaHO5TeJVdhu0Q1hxPw=
Subject key identifier: 44:3E:E5:3E:EE:BB:6B:80:02:93:52:D5:86:0F:7F:46:F5:DB:33:F1
Certificate issuer: /CN=f571716c098aa06f4703154b98ab00228b5b7d89
Certificate serial: 01868204C9EA84695C98585669E8A58F2B5D
Authority key identifier: F5:71:71:6C:09:8A:A0:6F:47:03:15:4B:98:AB:00:22:8B:5B:7D:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9XFxbAmKoG9HAxVLmKsAIotbfYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/5db01f-3f20-49f9-a7de-41400df54b37/1/RD7lPu67a4ACk1LVhg9_RvXbM_E.roa
Signing time: Fri 24 Feb 2023 06:03:17 +0000
ROA not before: Fri 24 Feb 2023 06:03:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 185.92.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:82:04:c9:ea:84:69:5c:98:58:56:69:e8:a5:8f:2b:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f571716c098aa06f4703154b98ab00228b5b7d89
Validity
Not Before: Feb 24 06:03:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=443ee53eeebb6b80029352d5860f7f46f5db33f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:e6:aa:d5:b6:f0:98:f3:31:7f:4b:5b:8a:04:
7c:2c:ee:c2:f5:e3:0c:22:c3:fc:9f:48:51:78:fe:
b1:1b:dc:80:94:87:41:2c:51:bc:f9:b5:fb:44:65:
b7:7f:ec:35:1f:84:19:ba:b3:32:3c:d2:8e:5b:e8:
6f:d3:e7:45:a6:c9:48:70:fe:24:cd:a2:cb:ab:2e:
24:d2:52:cb:48:6e:37:ea:f6:34:99:db:20:a9:3a:
e4:4c:03:ba:0d:d5:1e:ef:73:28:07:18:24:57:56:
17:5a:3d:30:25:c7:39:b4:1e:7f:f5:16:38:3a:13:
73:25:29:08:ca:d7:32:9a:eb:e6:1c:b5:f6:58:75:
34:64:51:5c:66:f3:11:13:df:0b:d1:81:35:ef:ed:
df:79:b6:b4:b4:78:22:f3:03:be:11:80:61:1f:5d:
e8:15:e5:f4:83:dd:c3:70:a8:69:26:35:1b:7d:2d:
71:34:b2:cc:05:0e:64:23:13:f0:5c:c4:8d:8a:e5:
1b:a3:c1:be:e0:42:6b:a0:c5:13:a1:b9:2a:8c:10:
37:21:3e:95:71:cd:f8:b4:f1:e8:f4:69:5e:02:cb:
36:75:5e:96:bb:1c:b0:b3:b8:e5:50:ba:83:47:3f:
30:b6:d1:48:01:d1:8a:c4:0d:e3:ae:68:f9:91:e8:
7c:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:3E:E5:3E:EE:BB:6B:80:02:93:52:D5:86:0F:7F:46:F5:DB:33:F1
X509v3 Authority Key Identifier:
keyid:F5:71:71:6C:09:8A:A0:6F:47:03:15:4B:98:AB:00:22:8B:5B:7D:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9XFxbAmKoG9HAxVLmKsAIotbfYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/5db01f-3f20-49f9-a7de-41400df54b37/1/RD7lPu67a4ACk1LVhg9_RvXbM_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/5db01f-3f20-49f9-a7de-41400df54b37/1/9XFxbAmKoG9HAxVLmKsAIotbfYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.92.209.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:28:d9:c3:62:72:9f:bf:9e:de:54:97:00:00:e4:7e:d9:7e:
21:9e:4a:b1:d8:58:8b:c4:b0:ce:97:25:90:3f:7b:60:9c:3e:
28:17:5d:ce:47:8d:01:0f:36:fb:2b:55:49:17:4f:b3:33:06:
90:ca:63:e8:00:cf:aa:33:4c:a4:94:bb:4f:17:05:ce:80:02:
71:19:58:3d:15:b4:94:62:cc:45:1a:f4:00:3c:db:f0:7f:32:
c8:1b:7c:d3:66:fe:7d:39:f4:1e:e6:b7:a0:05:04:ad:b1:c8:
82:a1:6c:35:9c:a7:ee:61:7c:64:c8:4c:5f:8d:e5:95:d4:1b:
73:3f:10:a8:a9:a1:16:57:0d:72:02:95:ef:4c:4a:a4:64:d3:
5d:8b:67:90:02:61:b1:9f:a4:23:c2:d6:57:4a:4a:81:b7:50:
3f:bc:f8:39:59:b7:3c:87:6f:fb:75:97:b5:ee:90:0c:13:c6:
c0:92:fc:0b:55:82:65:ad:06:7e:1d:24:31:23:e5:cb:11:f8:
8a:65:9c:a8:66:e2:92:17:d6:74:aa:87:03:98:87:d3:d0:59:
66:24:1b:5a:8b:11:79:c8:20:9e:91:f8:e3:b1:70:e7:c7:08:
49:aa:95:4c:2b:ff:c4:ff:a2:c0:6a:65:06:5c:18:3d:00:ee:
77:04:d4:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:53:50 2024 by rpki-client on console-ams.rpki-client.org