Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/540685-0af1-4edd-9221-1dd7b6da85e8/1/OEvSqcZEMqJsMm1cnNvk_4DrIe8.roa
File: OEvSqcZEMqJsMm1cnNvk_4DrIe8.roa (raw, json)
Hash identifier: k98b+fOvaiXAKKtJXkr97FXvRC0l2tCVvkTbNPoSPOg=
Subject key identifier: 38:4B:D2:A9:C6:44:32:A2:6C:32:6D:5C:9C:DB:E4:FF:80:EB:21:EF
Certificate issuer: /CN=ae6f136df3e8fc6538a5a0cfe838fe764a416344
Certificate serial: 018529D42664B07544EE9661F6A663A2394F
Authority key identifier: AE:6F:13:6D:F3:E8:FC:65:38:A5:A0:CF:E8:38:FE:76:4A:41:63:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rm8TbfPo_GU4paDP6Dj-dkpBY0Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/540685-0af1-4edd-9221-1dd7b6da85e8/1/OEvSqcZEMqJsMm1cnNvk_4DrIe8.roa
Signing time: Mon 19 Dec 2022 10:00:47 +0000
ROA not before: Mon 19 Dec 2022 10:00:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29119
IP address blocks: 185.248.133.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:29:d4:26:64:b0:75:44:ee:96:61:f6:a6:63:a2:39:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae6f136df3e8fc6538a5a0cfe838fe764a416344
Validity
Not Before: Dec 19 10:00:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=384bd2a9c64432a26c326d5c9cdbe4ff80eb21ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a9:66:c3:a7:6f:49:9b:a0:f7:d9:53:7e:90:
5c:2e:71:ae:b4:79:7e:c6:84:29:8d:7e:05:80:f7:
2c:99:0e:47:8e:7b:c6:9f:01:00:d2:6c:ea:88:6d:
55:be:fe:fc:24:61:4f:d8:9c:a5:01:48:41:dd:28:
86:6c:f8:17:6e:df:7b:31:76:9d:c0:28:a2:11:19:
fc:34:78:df:c8:fe:da:c2:80:7f:78:4e:97:4d:39:
11:93:54:f7:b6:57:a3:fd:17:57:25:ee:a2:7a:6f:
aa:e3:97:c2:31:04:b3:f9:26:da:db:71:98:08:6d:
88:24:2d:fa:b9:e7:e9:07:23:65:05:cc:09:4f:2e:
d4:7d:4e:ef:f9:7e:1e:06:2a:99:66:53:33:7d:00:
49:f8:a0:48:a0:65:c7:a5:5c:4e:99:8b:17:d9:77:
44:05:75:0e:48:5f:ec:97:13:0c:6f:e8:39:cf:1b:
c0:61:20:27:6e:5a:37:53:e5:7c:72:b9:bf:65:e0:
5d:06:32:60:68:c4:42:1c:5e:5f:2a:0e:29:96:dd:
91:3b:a7:cb:88:00:bc:f1:ab:c9:26:8b:4b:d3:1c:
e8:85:00:15:2b:f6:fb:75:f6:9d:57:6e:c7:1a:47:
d2:5b:a0:2d:f7:f4:22:22:97:3c:46:82:d0:38:7a:
99:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:4B:D2:A9:C6:44:32:A2:6C:32:6D:5C:9C:DB:E4:FF:80:EB:21:EF
X509v3 Authority Key Identifier:
keyid:AE:6F:13:6D:F3:E8:FC:65:38:A5:A0:CF:E8:38:FE:76:4A:41:63:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rm8TbfPo_GU4paDP6Dj-dkpBY0Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/540685-0af1-4edd-9221-1dd7b6da85e8/1/OEvSqcZEMqJsMm1cnNvk_4DrIe8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/540685-0af1-4edd-9221-1dd7b6da85e8/1/rm8TbfPo_GU4paDP6Dj-dkpBY0Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.248.133.0/24
Signature Algorithm: sha256WithRSAEncryption
60:e3:b5:35:d9:73:e2:01:2c:e6:92:b2:7c:65:4c:3c:00:46:
01:31:f1:b9:ca:e7:a6:e3:3f:02:79:aa:6f:0c:16:30:3e:04:
a9:ec:ea:5f:7a:ec:99:fe:31:09:1c:df:91:7d:9c:79:a4:ad:
b0:a2:c0:e1:14:72:1d:09:57:cc:fe:25:ef:cd:2b:f6:8e:47:
d7:60:c3:c5:eb:4d:90:0e:95:fb:83:78:a0:bf:e1:bc:1f:36:
4d:f0:a6:1e:e5:79:42:9a:3e:49:09:db:db:2e:d2:82:aa:c5:
91:4b:db:4c:56:fd:29:29:e5:12:35:06:f3:65:0a:93:ac:20:
23:5a:e2:bd:29:17:9b:84:10:b2:a9:9d:04:9b:00:f8:98:d6:
34:46:12:34:c0:77:a3:be:df:88:22:f0:0f:eb:7d:22:02:bb:
66:1e:35:4d:5e:8e:b8:0f:66:92:52:d0:55:f7:8b:0d:25:b3:
5d:5c:98:44:3c:1c:f5:03:29:7e:1f:7f:63:75:a1:de:2d:41:
cd:20:b1:9a:ad:6a:03:c2:87:f0:49:4a:d1:67:25:37:47:01:
4b:f3:97:a9:c7:6d:d3:61:b6:04:3c:ff:65:18:7d:2e:d6:05:
34:26:5c:1a:11:62:83:04:5c:fc:a2:be:93:86:07:55:4d:61:
d4:ef:5d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:35 2024 by rpki-client on console-fra.rpki-client.org