Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/b06a8b-4077-444e-819f-edf1638850ed/1/HliA7NaRe2q8FR-1XggsIBiQ_9s.roa
File: HliA7NaRe2q8FR-1XggsIBiQ_9s.roa (raw, json)
Hash identifier: Hn00qLPa3zHHFwxzC8FdMYc0lpiQ6XnVX1ZwZA8I6q4=
Subject key identifier: 1E:58:80:EC:D6:91:7B:6A:BC:15:1F:B5:5E:08:2C:20:18:90:FF:DB
Certificate issuer: /CN=6b99815d0a0bdd8ab82bb0235318db7e73b93dfb
Certificate serial: 019832CC
Authority key identifier: 6B:99:81:5D:0A:0B:DD:8A:B8:2B:B0:23:53:18:DB:7E:73:B9:3D:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a5mBXQoL3Yq4K7AjUxjbfnO5Pfs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/b06a8b-4077-444e-819f-edf1638850ed/1/HliA7NaRe2q8FR-1XggsIBiQ_9s.roa
Signing time: Sat 01 Jan 2022 10:57:13 +0000
ROA not before: Sat 01 Jan 2022 10:57:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 185.99.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26751692 (0x19832cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6b99815d0a0bdd8ab82bb0235318db7e73b93dfb
Validity
Not Before: Jan 1 10:57:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1e5880ecd6917b6abc151fb55e082c201890ffdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e7:18:7e:28:b3:c4:b3:78:60:c5:54:58:27:
89:3c:4b:61:c0:40:7c:96:6f:89:3b:24:96:93:11:
54:fb:59:d8:f0:fd:54:f5:18:43:48:82:c4:cb:28:
5e:8f:5d:e7:d2:0c:c8:1f:51:19:f7:87:ea:05:d8:
bc:cc:cf:af:b6:42:7a:e8:f8:65:26:67:b2:7e:19:
b0:35:4b:af:d4:c8:11:08:ef:07:ef:e7:ca:ec:f0:
6c:46:2c:80:67:dd:b6:27:75:7d:d9:d0:67:71:14:
8a:7d:8d:dd:0c:d0:0d:45:7b:ca:35:6e:58:de:54:
52:09:e7:d8:ce:55:5d:77:38:f8:fd:fc:21:7b:c1:
a6:37:9f:65:9a:46:d9:96:36:9b:45:06:ea:1d:0e:
fe:f9:17:2b:bf:21:45:fc:e9:86:3c:0a:d0:d0:1b:
10:3c:4e:5d:07:f0:5c:27:d0:c2:c1:da:cd:4c:2f:
f2:ec:ce:5c:a7:75:09:87:3a:f6:f4:0d:f4:a3:d1:
c3:e2:27:9f:a9:5c:48:66:3b:1b:de:9c:10:cd:27:
77:9a:75:3d:22:cb:81:d8:8c:bb:40:d6:d4:42:73:
67:a7:79:f5:61:a3:bf:e5:54:85:cb:69:60:c0:bc:
09:01:92:0b:6a:a7:0f:5d:23:1e:d7:e3:ac:77:34:
3b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:58:80:EC:D6:91:7B:6A:BC:15:1F:B5:5E:08:2C:20:18:90:FF:DB
X509v3 Authority Key Identifier:
keyid:6B:99:81:5D:0A:0B:DD:8A:B8:2B:B0:23:53:18:DB:7E:73:B9:3D:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5mBXQoL3Yq4K7AjUxjbfnO5Pfs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/b06a8b-4077-444e-819f-edf1638850ed/1/HliA7NaRe2q8FR-1XggsIBiQ_9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/b06a8b-4077-444e-819f-edf1638850ed/1/a5mBXQoL3Yq4K7AjUxjbfnO5Pfs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.99.23.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:81:73:89:aa:3f:26:f9:89:8b:aa:a5:68:23:28:f0:94:d4:
ea:ae:a3:8e:d4:64:06:42:55:31:6f:eb:5f:70:77:6f:12:31:
70:01:3e:06:aa:dd:67:f9:a0:46:f3:fe:41:ca:46:38:e7:a6:
9d:bf:e3:ff:bb:76:a0:87:ea:d7:a6:b2:50:20:28:09:96:4b:
e4:75:d3:b7:2f:e9:fb:d2:35:b7:e8:e4:23:84:8f:ac:80:04:
f9:ee:ee:46:2e:db:29:09:19:9b:f3:6f:84:29:74:2c:d4:18:
3f:8f:45:88:82:e8:b6:9b:e7:50:03:c4:35:63:5b:0f:d3:74:
88:81:23:bd:1d:6d:55:df:93:ef:fb:b9:f3:fd:fc:08:e7:ef:
52:34:64:8b:0d:6f:72:5c:31:4d:3b:44:39:c9:6a:9b:c5:ef:
55:5f:7a:1a:ce:0a:d1:fc:5b:58:05:36:85:8b:4a:1b:d6:06:
27:79:a4:33:e0:61:8a:cf:43:aa:e4:0b:28:7d:03:dc:90:ca:
bd:19:18:19:da:32:08:35:c6:e2:f9:00:dc:d2:a1:f9:21:78:
cc:d5:d6:a8:f3:90:22:4f:e9:f3:09:97:be:43:30:37:27:34:
32:f4:a4:db:7f:77:db:5c:8a:d2:c1:14:b4:f1:11:35:ee:a1:
ae:78:7c:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:23 2023 by rpki-client on console-ams.rpki-client.org