Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/1ac443-9a03-4fd5-8a88-662fc4051c54/1/cf5LWj55TC72WSnPGJ6tL2C4F9o.roa
File: cf5LWj55TC72WSnPGJ6tL2C4F9o.roa (raw, json)
Hash identifier: CJkyGnyGmeiWraYfWmJwoQm7OD/VOgJ8w8lrTkn3u0Q=
Subject key identifier: 71:FE:4B:5A:3E:79:4C:2E:F6:59:29:CF:18:9E:AD:2F:60:B8:17:DA
Certificate issuer: /CN=e665e807a9a3e3b8008b73509e24665a035b20fd
Certificate serial: 03A5C01F
Authority key identifier: E6:65:E8:07:A9:A3:E3:B8:00:8B:73:50:9E:24:66:5A:03:5B:20:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5mXoB6mj47gAi3NQniRmWgNbIP0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/1ac443-9a03-4fd5-8a88-662fc4051c54/1/cf5LWj55TC72WSnPGJ6tL2C4F9o.roa
Signing time: Sat 01 Jan 2022 00:55:55 +0000
ROA not before: Sat 01 Jan 2022 00:55:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60316
IP address blocks: 185.212.32.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61194271 (0x3a5c01f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e665e807a9a3e3b8008b73509e24665a035b20fd
Validity
Not Before: Jan 1 00:55:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=71fe4b5a3e794c2ef65929cf189ead2f60b817da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e1:62:64:09:ca:f9:06:7e:88:47:7a:e5:53:
ac:83:d7:4a:d3:20:d0:e6:2a:6c:5b:3a:60:f9:6c:
3a:2f:77:2a:9b:92:68:65:f2:2a:63:15:58:82:87:
b6:ee:17:b8:cf:fa:e7:19:36:de:54:a7:83:6e:7c:
6b:7b:70:05:9f:a1:8f:3f:af:5a:d8:33:c9:a4:92:
1c:e6:c1:fe:8b:a4:2d:7e:16:af:02:16:b5:36:74:
8a:90:80:4b:f9:e0:a8:37:d7:ff:5c:80:52:7e:12:
f1:80:a1:bd:a7:58:cd:7c:e6:4c:53:0e:88:97:ed:
32:7a:2b:57:bf:fe:aa:8c:4a:fe:63:0d:6d:15:4f:
60:12:30:4e:6b:10:49:d1:5b:bc:7e:b0:3f:e9:2e:
42:40:51:d8:8d:2b:ec:8f:a2:63:ac:59:e4:a2:8f:
4d:c0:63:76:a7:70:9e:62:6e:56:fd:80:d5:84:ea:
fd:ee:81:6e:b3:1f:ed:5a:d4:93:70:09:48:ca:4d:
d0:e2:fd:04:67:2f:25:5a:83:05:4e:54:3d:dd:57:
19:21:6c:01:a4:55:ce:21:e2:d9:8d:4d:73:5b:ea:
23:8d:e3:7c:32:dd:37:0a:d8:4b:a4:fc:f1:3d:bf:
65:4b:bc:65:aa:33:9e:cb:e6:69:26:a4:75:d3:41:
8b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:FE:4B:5A:3E:79:4C:2E:F6:59:29:CF:18:9E:AD:2F:60:B8:17:DA
X509v3 Authority Key Identifier:
keyid:E6:65:E8:07:A9:A3:E3:B8:00:8B:73:50:9E:24:66:5A:03:5B:20:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5mXoB6mj47gAi3NQniRmWgNbIP0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/1ac443-9a03-4fd5-8a88-662fc4051c54/1/cf5LWj55TC72WSnPGJ6tL2C4F9o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/1ac443-9a03-4fd5-8a88-662fc4051c54/1/5mXoB6mj47gAi3NQniRmWgNbIP0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.212.32.0/24
Signature Algorithm: sha256WithRSAEncryption
72:7a:e9:be:4d:b5:d1:05:2c:bc:c3:39:fd:6a:3c:42:47:8b:
78:12:81:94:c2:40:ac:73:93:47:99:a4:9d:e9:97:6d:78:57:
2a:2b:c4:91:e0:79:84:71:74:77:07:88:54:39:dd:5e:04:2d:
cb:ac:29:0c:2a:c2:d4:e5:86:e8:38:8f:c2:0e:5b:38:fa:c4:
e9:96:cb:4d:b6:19:97:26:f0:97:0c:b6:ba:01:8d:29:67:c4:
37:f5:bc:d9:1d:82:0f:65:fa:be:1d:61:fc:ba:0d:f3:96:af:
29:87:20:55:de:f9:a7:50:fa:2c:14:60:03:34:84:e1:09:bc:
48:95:be:56:9e:b0:32:04:e1:a2:79:11:ec:ea:a5:e2:2a:56:
5d:84:dd:5e:08:df:b0:0c:61:04:88:09:a9:18:1e:54:01:8a:
d6:b1:61:15:f7:2e:fc:b0:4e:07:9a:f5:07:3c:5e:8a:0f:51:
9b:ea:72:e2:4a:4b:0a:cd:77:a8:8f:3a:71:39:06:6b:e2:b0:
d5:eb:1e:77:c2:af:b8:97:6d:94:ae:dd:ce:44:86:df:3c:73:
71:52:4d:d4:99:b9:cf:01:76:ff:d9:0d:ca:2c:32:ed:18:06:
5e:d1:5f:30:35:8b:20:db:46:8c:97:90:3d:e2:dc:f4:8a:d8:
23:18:be:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:00 2023 by rpki-client on console-ams.rpki-client.org