Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/BgRhLBpbqBa3WtkMIVJaIICkgYA.roa
File: BgRhLBpbqBa3WtkMIVJaIICkgYA.roa (raw, json)
Hash identifier: IUNl1f48Pv+NI0rRLNnsw/PdN/tnbdkgz300n+eoQ5Y=
Subject key identifier: 06:04:61:2C:1A:5B:A8:16:B7:5A:D9:0C:21:52:5A:20:80:A4:81:80
Certificate issuer: /CN=8d29a41e6f507a37458a49643a7be5790758f726
Certificate serial: 0CAFED15
Authority key identifier: 8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/BgRhLBpbqBa3WtkMIVJaIICkgYA.roa
Signing time: Sat 01 Jan 2022 05:57:33 +0000
ROA not before: Sat 01 Jan 2022 05:57:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204479
IP address blocks: 185.107.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212856085 (0xcafed15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d29a41e6f507a37458a49643a7be5790758f726
Validity
Not Before: Jan 1 05:57:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0604612c1a5ba816b75ad90c21525a2080a48180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:20:31:1e:f9:81:3b:25:76:b4:53:77:78:4c:
9e:ed:55:80:27:74:33:0c:f0:91:dc:05:3a:89:7d:
4a:d9:db:0e:0c:fb:ef:ba:21:c3:45:f3:e1:23:db:
63:ea:a4:de:6a:7a:cc:9b:d5:2c:24:a7:a5:cb:53:
d1:01:33:a8:9f:5c:50:12:ba:8c:36:30:73:3b:f2:
c7:74:c0:f0:99:28:ff:cb:10:b1:91:a6:36:4b:ff:
28:a4:d9:a3:f6:62:86:ce:4f:0f:c0:0a:68:2b:b5:
ec:5e:a3:dc:b6:fb:30:b8:2d:b1:dc:73:ea:7e:c3:
c3:3a:10:b5:7d:76:0c:c7:0a:cd:9a:f4:10:73:25:
77:7a:6a:45:d9:a3:61:72:7f:bf:df:74:9d:9d:91:
c5:25:a5:38:c5:54:0d:c5:00:f0:93:1f:8e:05:c3:
ce:32:e9:31:06:6c:cd:25:78:55:da:8f:d6:7d:0f:
2c:9e:6e:78:06:9e:89:58:03:24:20:fe:e0:8c:5d:
19:71:96:9e:d0:52:9b:b2:a1:73:b7:05:d9:4b:22:
9e:a2:e6:21:a4:c6:8f:cd:f8:39:e5:bd:9d:58:f8:
05:9d:04:07:4e:b7:c0:b2:c5:a1:34:eb:34:90:c8:
20:e7:53:a1:3b:9f:3b:6f:74:65:64:98:f0:13:da:
33:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:04:61:2C:1A:5B:A8:16:B7:5A:D9:0C:21:52:5A:20:80:A4:81:80
X509v3 Authority Key Identifier:
keyid:8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/BgRhLBpbqBa3WtkMIVJaIICkgYA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/jSmkHm9QejdFiklkOnvleQdY9yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.107.67.0/24
Signature Algorithm: sha256WithRSAEncryption
94:29:33:35:00:3c:e0:77:8e:9c:19:f8:6b:b8:46:e2:1e:ce:
11:83:d9:e7:5d:b2:6b:e1:e6:cb:5a:1d:5c:50:ed:35:59:da:
47:ae:18:04:7e:9f:f5:1a:79:07:c6:23:a9:1f:af:43:1b:e3:
ba:1e:de:cb:ec:c1:4b:72:df:2c:6b:8a:9b:2f:cc:e0:0d:27:
41:1f:05:72:28:87:e1:89:71:35:70:a5:09:c5:65:17:88:79:
ae:0f:f6:3a:d0:85:51:7e:6f:9b:40:13:ff:46:08:2f:02:18:
bb:e6:ed:ab:39:30:c6:ab:84:ad:be:18:60:82:62:54:25:f4:
5b:ff:d1:fc:52:da:f1:48:c3:29:55:17:27:3d:f4:30:c5:60:
bc:30:56:65:15:19:a3:36:a2:ea:71:d4:82:ef:2d:2f:02:ec:
0c:45:8d:fa:52:07:bb:d1:6c:f1:26:63:fd:75:39:49:42:56:
2d:ef:7d:ca:38:8f:9a:89:4f:9c:48:3b:a9:87:06:98:f5:77:
47:ef:27:60:56:7a:86:e8:3e:78:57:bd:a4:a7:2c:a1:c4:51:
f0:37:21:4e:cf:58:02:a8:65:3f:9f:ea:73:42:81:33:30:c2:
83:42:7b:d0:69:2c:60:bf:39:ee:ce:3d:57:ec:9e:1e:48:62:
75:92:2d:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:41 2024 by rpki-client on console-ams.rpki-client.org