Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/bc6be9-16f0-444b-b876-5671be0bac57/1/xziIRdKR0LUVt9zUhcnx9dh8eSY.roa
File: xziIRdKR0LUVt9zUhcnx9dh8eSY.roa (raw, json)
Hash identifier: 4mE1mZ7yX7Z6DXIJkNVGhB3ALfushYCAXj8ITfZ9L5k=
Subject key identifier: C7:38:88:45:D2:91:D0:B5:15:B7:DC:D4:85:C9:F1:F5:D8:7C:79:26
Certificate issuer: /CN=8d249b2eea0d918c11a918c458e8422eab454fe1
Certificate serial: 0CE18F15
Authority key identifier: 8D:24:9B:2E:EA:0D:91:8C:11:A9:18:C4:58:E8:42:2E:AB:45:4F:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jSSbLuoNkYwRqRjEWOhCLqtFT-E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/bc6be9-16f0-444b-b876-5671be0bac57/1/xziIRdKR0LUVt9zUhcnx9dh8eSY.roa
Signing time: Sat 01 Jan 2022 13:06:20 +0000
ROA not before: Sat 01 Jan 2022 13:06:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39664
IP address blocks: 185.229.132.0/22 maxlen: 24
2a0d:9600::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 216108821 (0xce18f15)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d249b2eea0d918c11a918c458e8422eab454fe1
Validity
Not Before: Jan 1 13:06:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7388845d291d0b515b7dcd485c9f1f5d87c7926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e3:61:f3:94:1f:de:26:fa:27:fd:0d:9a:71:
2d:3d:0d:aa:a5:4c:9f:64:5c:52:29:75:9f:29:52:
52:62:d9:cb:6b:78:85:5f:15:c7:72:15:1f:e0:5c:
9d:03:2b:74:37:2e:86:a6:aa:de:be:9a:c9:3e:73:
39:ff:81:e3:e3:fa:b6:f0:f9:4d:6e:ab:c9:77:a1:
45:12:a8:96:b6:d1:93:d2:f1:04:4c:f4:3d:ae:3a:
a4:97:2c:56:c0:eb:d8:a6:b5:42:97:a0:04:4d:db:
c9:29:dd:89:e8:6d:ec:f7:47:9f:61:2f:f8:0b:ea:
70:c3:0b:34:42:14:fa:a6:93:b2:f2:3a:4e:b1:ce:
0d:bb:d8:8c:65:98:ef:c2:33:9a:b8:d7:26:cc:a7:
62:86:6b:68:f1:47:65:99:bb:1d:16:ad:df:f1:54:
97:bb:71:76:2f:15:d9:35:1b:ff:49:a3:09:68:12:
c3:13:9b:1f:00:79:18:e3:df:80:75:02:82:82:11:
c4:fa:77:27:74:f8:13:c1:55:c6:7d:29:a8:a9:57:
37:65:65:b3:2d:18:05:7f:5e:a0:70:7e:c2:df:87:
f4:b5:41:8f:95:4b:62:c3:3e:44:34:6d:5d:44:1f:
32:db:a7:c2:a9:8e:a0:b9:4e:6c:7c:e5:8f:6e:9c:
8b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:38:88:45:D2:91:D0:B5:15:B7:DC:D4:85:C9:F1:F5:D8:7C:79:26
X509v3 Authority Key Identifier:
keyid:8D:24:9B:2E:EA:0D:91:8C:11:A9:18:C4:58:E8:42:2E:AB:45:4F:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jSSbLuoNkYwRqRjEWOhCLqtFT-E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/bc6be9-16f0-444b-b876-5671be0bac57/1/xziIRdKR0LUVt9zUhcnx9dh8eSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/bc6be9-16f0-444b-b876-5671be0bac57/1/jSSbLuoNkYwRqRjEWOhCLqtFT-E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.132.0/22
IPv6:
2a0d:9600::/32
Signature Algorithm: sha256WithRSAEncryption
44:d2:a2:a5:f2:8a:d4:b6:0a:48:49:ed:f0:cd:f5:c1:6e:65:
69:b2:4f:ca:ab:50:9c:0e:d5:85:e7:b7:f2:83:05:00:be:2b:
5a:cf:31:f3:42:1f:45:55:cf:11:bc:9d:fc:6d:cc:a0:a6:85:
04:79:c8:4a:17:33:5d:74:fa:c8:fa:a1:09:33:e7:92:a9:a4:
e3:ae:7c:f0:30:1c:6f:ac:27:48:0c:69:3e:d4:94:e6:2e:1f:
d0:88:2c:be:00:ec:f9:b0:70:57:6b:7d:43:07:67:d5:e0:d1:
32:82:69:ac:f8:a6:fb:53:1c:de:7b:db:6f:c6:7d:c5:64:70:
5d:dc:cd:00:cc:76:23:d8:63:42:d4:4a:58:f0:6b:33:a3:d0:
4c:33:a8:01:39:97:19:30:f0:03:bb:62:ee:40:83:77:13:85:
13:68:e5:d6:d2:dd:0a:f6:1a:78:10:94:9a:6b:4e:cc:01:93:
f8:c1:e9:1d:21:4c:c1:f8:b0:9c:25:78:80:e1:68:3c:c5:eb:
0c:66:d0:67:95:bf:6f:e9:2a:ab:48:cb:b8:0d:e8:8c:33:de:
69:7c:a9:f6:8c:4a:87:4e:7b:f0:b3:02:a1:5a:e7:d9:da:44:
00:ff:4e:03:48:64:e8:91:6d:36:11:a1:e2:36:85:e5:8b:c4:
cc:db:db:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:58 2024 by rpki-client on console-ams.rpki-client.org