Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/c990b3-41cb-439b-836a-fb0eebf5d397/1/YMNIxidIznkRtzDrwvwngJKHwCg.roa
File: YMNIxidIznkRtzDrwvwngJKHwCg.roa (raw, json)
Hash identifier: gr4tA2fbIIw9231IVity+Wb/sf7jpFByic7832XmMII=
Subject key identifier: 60:C3:48:C6:27:48:CE:79:11:B7:30:EB:C2:FC:27:80:92:87:C0:28
Certificate issuer: /CN=5669ccde015827633a11fd99a01228750c5e9a53
Certificate serial: 06AAD022
Authority key identifier: 56:69:CC:DE:01:58:27:63:3A:11:FD:99:A0:12:28:75:0C:5E:9A:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VmnM3gFYJ2M6Ef2ZoBIodQxemlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/c990b3-41cb-439b-836a-fb0eebf5d397/1/YMNIxidIznkRtzDrwvwngJKHwCg.roa
Signing time: Sat 01 Jan 2022 15:55:29 +0000
ROA not before: Sat 01 Jan 2022 15:55:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210097
IP address blocks: 81.22.40.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111857698 (0x6aad022)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5669ccde015827633a11fd99a01228750c5e9a53
Validity
Not Before: Jan 1 15:55:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=60c348c62748ce7911b730ebc2fc27809287c028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:24:d6:9c:07:93:10:d2:48:9d:4c:fa:74:ff:
5a:c9:4d:22:1e:3f:48:9f:7e:ec:73:86:c0:dd:ba:
69:9f:dd:eb:47:d1:93:8f:bd:33:da:54:7e:12:05:
4d:0d:22:8f:e3:8e:e8:44:31:28:03:1d:05:3e:fc:
21:96:15:6a:e7:6d:a9:21:97:bc:3f:c6:3f:c9:c7:
8a:98:c7:19:93:85:17:16:21:95:a7:80:63:57:89:
16:96:ab:29:91:b4:74:57:c4:89:59:32:74:96:cd:
87:e6:2b:1f:2f:6d:c1:72:13:f9:12:c1:70:5e:53:
75:07:50:79:f4:60:f1:d0:3f:62:47:a3:07:f4:0c:
fe:b5:06:5e:3b:78:49:4f:45:8b:b3:25:fe:9b:03:
5f:e1:71:06:c3:71:6a:5f:5f:c2:f6:94:22:f6:49:
eb:d1:6e:54:d0:d3:d4:fc:e1:4e:74:87:e6:43:17:
f1:7f:a0:50:76:fd:03:ac:2c:1f:73:24:fa:92:05:
75:a2:13:e8:ee:32:f0:73:0a:6a:3b:82:10:a2:41:
72:60:86:1f:0e:b6:9f:39:ab:d2:95:28:2e:10:aa:
be:b0:28:07:b8:7c:fb:d3:78:8f:06:a8:b6:25:33:
87:95:94:4e:cc:61:45:91:8f:ea:ff:11:81:69:9e:
92:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:C3:48:C6:27:48:CE:79:11:B7:30:EB:C2:FC:27:80:92:87:C0:28
X509v3 Authority Key Identifier:
keyid:56:69:CC:DE:01:58:27:63:3A:11:FD:99:A0:12:28:75:0C:5E:9A:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VmnM3gFYJ2M6Ef2ZoBIodQxemlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c990b3-41cb-439b-836a-fb0eebf5d397/1/YMNIxidIznkRtzDrwvwngJKHwCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/c990b3-41cb-439b-836a-fb0eebf5d397/1/VmnM3gFYJ2M6Ef2ZoBIodQxemlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.22.40.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:10:cb:9e:97:17:bc:be:ed:9f:e2:dc:e0:e5:48:bf:0e:00:
df:50:e6:c1:53:2d:3c:1f:97:a0:de:fd:90:3a:70:96:7c:02:
6c:0a:6a:a8:26:b3:54:14:85:dd:fa:8a:a8:b1:d5:bd:0f:90:
fb:09:a0:01:11:8c:41:2d:92:02:e5:d2:88:f6:c3:7a:91:b6:
32:81:51:6e:a0:d2:34:e0:ff:d9:e8:8a:69:43:dc:5c:4d:72:
00:75:54:f2:f6:4e:4e:47:48:0e:ea:19:9d:14:24:95:1d:24:
b8:94:bd:08:1c:30:b2:bc:dc:d5:77:51:a8:6a:53:13:08:56:
c9:97:c6:fc:10:a4:e1:d3:1f:be:4e:76:c0:30:1d:68:7c:92:
37:15:bb:10:9a:2d:e3:39:2b:2a:a7:26:ae:7e:dc:d2:b3:46:
79:b8:25:c6:4e:51:12:b7:f4:12:43:e6:0e:f9:1a:f2:b0:4f:
01:a1:da:52:29:bc:12:ab:33:12:7c:04:57:7d:94:7d:24:06:
e3:79:4f:a3:83:ec:3f:6d:ec:09:0f:de:32:e9:a7:6b:e7:5e:
97:3f:20:fc:94:c2:51:aa:26:ca:d4:8d:eb:f6:5b:af:a4:1c:
54:02:e8:94:6d:46:19:28:cc:6c:14:ca:ae:c3:10:69:43:83:
6a:69:98:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:20 2024 by rpki-client on console-fra.rpki-client.org