Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/be8cae-d922-4682-b52e-e04040c2bdb1/1/u5kcSElQJz-ceewuuOzz2U8NUVk.roa
File: u5kcSElQJz-ceewuuOzz2U8NUVk.roa (raw, json)
Hash identifier: /AjddjvANMiC+toz1u/FE/beMeAWMl60Ewqe0fdvdqc=
Subject key identifier: BB:99:1C:48:49:50:27:3F:9C:79:EC:2E:B8:EC:F3:D9:4F:0D:51:59
Certificate issuer: /CN=d0047cf021df7bea3cef007f8961518383446fe7
Certificate serial: 374A55F1
Authority key identifier: D0:04:7C:F0:21:DF:7B:EA:3C:EF:00:7F:89:61:51:83:83:44:6F:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0AR88CHfe-o87wB_iWFRg4NEb-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/be8cae-d922-4682-b52e-e04040c2bdb1/1/u5kcSElQJz-ceewuuOzz2U8NUVk.roa
Signing time: Sat 01 Jan 2022 01:59:46 +0000
ROA not before: Sat 01 Jan 2022 01:59:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3257
IP address blocks: 185.155.164.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 927618545 (0x374a55f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0047cf021df7bea3cef007f8961518383446fe7
Validity
Not Before: Jan 1 01:59:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb991c484950273f9c79ec2eb8ecf3d94f0d5159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:e8:d3:9e:90:d3:d6:c7:68:a5:0c:b1:54:d9:
e9:51:cd:af:9d:99:30:49:9e:df:7b:84:25:5f:52:
c9:86:1b:84:29:07:5a:f1:d7:c3:db:83:2f:04:6d:
f9:8d:3c:89:a6:5f:35:84:f4:32:d5:88:15:55:31:
e6:ba:80:b3:e5:44:56:f5:aa:c7:bd:54:bc:c0:13:
84:31:c7:0a:22:66:f1:99:bf:6e:64:5e:b5:7d:72:
36:c4:cf:ce:e6:a4:6c:17:46:98:2a:66:d2:e0:fe:
ab:39:a5:47:7b:77:59:c3:d6:94:05:35:bd:60:53:
55:07:68:43:e4:07:11:0c:c4:5f:67:b9:4d:97:8d:
d3:ab:f1:7b:88:1a:0e:2e:54:c0:19:10:77:9b:2c:
de:82:f8:9a:13:ac:a9:85:60:7d:0b:86:9f:f8:ce:
63:c4:ec:60:f7:2e:8e:20:2a:96:ae:76:ea:01:fc:
26:32:6f:45:08:b4:1f:e4:c2:61:b8:2a:6c:79:2a:
01:02:b6:e3:3c:67:6c:a2:37:cd:5c:f1:7f:67:4b:
21:3c:f1:c7:95:77:a9:5b:d4:95:03:fc:e3:ef:62:
3d:3e:37:11:54:28:e3:04:6c:4d:18:37:5d:23:45:
3a:3b:f5:30:01:20:0e:76:e8:cb:52:7d:c6:25:d2:
e4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:99:1C:48:49:50:27:3F:9C:79:EC:2E:B8:EC:F3:D9:4F:0D:51:59
X509v3 Authority Key Identifier:
keyid:D0:04:7C:F0:21:DF:7B:EA:3C:EF:00:7F:89:61:51:83:83:44:6F:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0AR88CHfe-o87wB_iWFRg4NEb-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/be8cae-d922-4682-b52e-e04040c2bdb1/1/u5kcSElQJz-ceewuuOzz2U8NUVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/be8cae-d922-4682-b52e-e04040c2bdb1/1/0AR88CHfe-o87wB_iWFRg4NEb-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.155.164.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:d9:e6:ec:fd:d6:66:d8:3e:4a:16:f8:60:27:ee:ee:1b:7f:
d7:ce:0a:75:4e:bd:7b:60:a5:66:5a:fe:8a:09:b7:b6:2a:2b:
7c:fa:c2:b1:de:65:88:4c:60:ce:3c:57:ea:84:df:ae:b6:0b:
c6:26:8d:f5:85:38:ea:8c:53:0c:9d:39:9a:bc:ea:d7:cd:2e:
24:ec:05:bf:88:84:4c:d8:c7:99:41:0b:cb:99:c6:de:a0:d0:
c7:54:5e:06:34:c9:7d:9c:80:f1:9e:6b:11:11:88:cd:81:fe:
22:04:56:ae:ab:7c:1a:3f:96:21:af:d9:45:d4:67:99:97:d5:
1f:5f:bc:fe:a8:e1:4c:89:42:2e:ae:a0:c6:01:21:78:b7:82:
c4:8e:68:b6:cf:26:d3:e4:41:23:f0:34:d6:24:81:ca:52:a0:
98:df:fa:3c:6b:2d:97:d4:48:76:f6:fa:05:63:1f:b2:b1:3e:
c1:69:07:95:ae:64:36:0a:d8:03:89:f8:f8:c8:47:93:9a:7a:
8a:8e:31:84:b7:9e:2f:87:2c:70:bc:5f:c1:17:f2:59:a9:4a:
99:3d:5b:a9:26:31:72:85:79:bb:c0:d3:f0:4e:99:60:c6:c8:
86:bb:e1:22:dd:84:78:cd:79:ae:fd:5e:14:14:74:c6:e3:e1:
9d:33:f7:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:26 2023 by rpki-client on console-fra.rpki-client.org