Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/3c240b-4c9a-452a-9136-e3a42ad1455d/1/hq4-uhAvxSJEB8_b96h5zplgM8w.roa
File: hq4-uhAvxSJEB8_b96h5zplgM8w.roa (raw, json)
Hash identifier: mOaBVr5lBRsR+tcjPBWYJdyQMDHGHGIUT8XtwwafFYA=
Subject key identifier: 86:AE:3E:BA:10:2F:C5:22:44:07:CF:DB:F7:A8:79:CE:99:60:33:CC
Certificate issuer: /CN=9a6c0367f6bd34afd0b7543cea0e332661d61c03
Certificate serial: 018CC80151D25E075AD1500A444D07510594
Authority key identifier: 9A:6C:03:67:F6:BD:34:AF:D0:B7:54:3C:EA:0E:33:26:61:D6:1C:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mmwDZ_a9NK_Qt1Q86g4zJmHWHAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/3c240b-4c9a-452a-9136-e3a42ad1455d/1/hq4-uhAvxSJEB8_b96h5zplgM8w.roa
Signing time: Tue 02 Jan 2024 02:29:38 +0000
ROA not before: Tue 02 Jan 2024 02:29:38 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 210135
IP address blocks: 185.201.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:51:d2:5e:07:5a:d1:50:0a:44:4d:07:51:05:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a6c0367f6bd34afd0b7543cea0e332661d61c03
Validity
Not Before: Jan 2 02:29:38 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=86ae3eba102fc5224407cfdbf7a879ce996033cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ba:5c:25:a4:97:7e:79:2b:f1:7c:3d:d9:ab:
4e:45:aa:41:46:6b:08:01:ad:16:ba:bd:bf:9b:f2:
b2:25:36:08:a9:76:c6:b9:2c:6e:86:d3:36:c6:41:
0d:29:51:83:3e:54:41:3a:1d:18:92:56:74:16:9a:
86:6f:df:bf:8c:d6:bc:55:87:43:da:b3:67:d2:16:
f2:43:f6:0f:45:c3:d6:ac:ca:68:3f:ab:ce:28:05:
53:52:02:8f:6e:9c:a8:6c:b2:a5:31:92:94:8b:b1:
d6:36:38:e1:dc:33:1a:2e:bf:51:40:7e:2a:4e:1d:
ce:a4:65:78:30:07:ed:69:3b:c5:35:12:49:91:3f:
1a:cb:61:d3:f5:08:3e:c0:49:e4:e3:ae:62:a2:61:
3f:00:f2:9a:bd:0b:10:80:2d:35:0b:0b:d5:5f:88:
a0:b6:34:71:c6:bb:1d:67:c8:92:f6:e8:50:e6:cf:
17:e4:3a:ab:de:1b:ae:2c:42:8e:ec:fc:8b:87:79:
e1:bd:a2:f7:89:24:17:90:e8:c4:82:dc:59:55:d0:
af:00:85:c4:5b:e1:fe:82:bd:16:44:e9:ea:67:8e:
4d:0a:2d:d6:9b:ff:3c:53:0c:88:a2:e5:39:de:19:
01:eb:42:98:1e:04:57:86:8e:dd:0a:79:cb:91:1c:
f3:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:AE:3E:BA:10:2F:C5:22:44:07:CF:DB:F7:A8:79:CE:99:60:33:CC
X509v3 Authority Key Identifier:
keyid:9A:6C:03:67:F6:BD:34:AF:D0:B7:54:3C:EA:0E:33:26:61:D6:1C:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mmwDZ_a9NK_Qt1Q86g4zJmHWHAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/3c240b-4c9a-452a-9136-e3a42ad1455d/1/hq4-uhAvxSJEB8_b96h5zplgM8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/3c240b-4c9a-452a-9136-e3a42ad1455d/1/mmwDZ_a9NK_Qt1Q86g4zJmHWHAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.201.29.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:86:e0:f5:04:52:f6:99:2c:c4:2b:06:a1:85:97:05:98:9e:
fc:e7:dc:f4:69:d8:3b:30:83:61:ba:98:04:4d:a6:2c:3e:47:
63:5e:ec:c6:d4:c4:fb:b9:ce:ae:5a:9e:b2:e9:44:5f:25:83:
8c:9c:ae:c9:83:09:cb:d9:54:72:a5:fc:f0:d4:93:17:66:1d:
8c:14:78:39:6c:99:f9:18:58:0d:97:31:8d:14:cd:68:0b:3a:
51:10:1c:1c:a1:43:9f:83:5e:72:f5:57:9a:c7:56:55:36:e1:
b1:0b:4b:d3:bf:80:b9:53:c3:75:8c:a0:c1:8e:e5:fe:77:97:
2a:bc:bd:fd:43:15:a2:80:0f:2e:3c:04:3d:4b:fe:69:ae:15:
9b:54:2e:72:46:ae:b4:f5:53:c4:b9:69:ea:c4:51:9c:9b:68:
1e:27:bc:6b:81:c6:30:45:07:e0:56:62:b9:26:53:e7:51:34:
7b:ce:4e:1b:f9:9f:ca:63:2d:bf:b0:49:82:c1:1e:e2:df:25:
26:eb:50:8f:eb:d7:b5:1b:a0:97:ac:70:d9:85:59:6d:01:4b:
d9:f7:53:8c:68:66:3d:bd:1f:36:c5:fc:7f:10:34:5b:eb:73:
c7:8f:c1:4f:92:ca:85:ff:c5:f9:f3:fe:f2:0f:fa:07:81:92:
dd:9b:38:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:09 2024 by rpki-client on console-ams.rpki-client.org