Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/130608-5a66-48d9-a01f-1fca6d56465c/1/SY-_iWfmJ96cew_pTBhmjVPf0pk.roa
File: SY-_iWfmJ96cew_pTBhmjVPf0pk.roa (raw, json)
Hash identifier: oYRLBF3Kep7fhqPn4S7PtrDx1x09hUZXuhgZgD1ENqc=
Subject key identifier: 49:8F:BF:89:67:E6:27:DE:9C:7B:0F:E9:4C:18:66:8D:53:DF:D2:99
Certificate issuer: /CN=9feee16d6843b6bbccaa57b2999ab58a7f452d60
Certificate serial: FFB0
Authority key identifier: 9F:EE:E1:6D:68:43:B6:BB:CC:AA:57:B2:99:9A:B5:8A:7F:45:2D:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n-7hbWhDtrvMqleymZq1in9FLWA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/130608-5a66-48d9-a01f-1fca6d56465c/1/SY-_iWfmJ96cew_pTBhmjVPf0pk.roa
Signing time: Sun 02 Jan 2022 10:12:54 +0000
ROA not before: Sun 02 Jan 2022 10:12:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 185.222.41.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65456 (0xffb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9feee16d6843b6bbccaa57b2999ab58a7f452d60
Validity
Not Before: Jan 2 10:12:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=498fbf8967e627de9c7b0fe94c18668d53dfd299
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2d:4d:a4:35:0d:ec:93:96:02:b9:db:a6:bd:
6c:b4:20:b9:fb:51:4e:03:68:ca:6b:6a:18:5f:8c:
bd:4b:90:e6:a9:da:fd:b9:f8:a5:e4:9d:f5:60:e9:
7f:1e:e5:34:ad:39:6b:08:a4:d4:7c:6a:8e:3c:d5:
89:df:9f:fe:75:54:86:b0:c7:dc:95:8c:5c:27:fe:
22:55:ee:23:cf:a3:e1:fa:62:63:a1:b0:27:23:f9:
15:54:8d:38:31:20:3c:2a:33:9d:58:21:b3:42:0b:
4b:e5:d9:f5:bb:11:0c:f7:e2:02:41:4c:1d:78:26:
26:38:f3:fa:5f:dc:34:3a:45:32:fe:d3:d5:18:42:
c5:c1:da:44:90:27:a0:43:78:cf:c8:72:c5:20:d6:
60:46:ed:f2:b5:fc:94:83:f8:9d:3c:f0:38:a9:42:
5a:4d:2b:77:92:9b:b3:5c:ac:f3:63:00:d6:4d:b4:
0a:b4:f7:d4:d3:37:86:12:39:e8:9f:ff:38:42:3a:
63:a4:15:74:2c:50:66:58:a4:5c:35:4d:cd:85:7e:
7a:ca:d8:4e:68:f7:f9:9d:2b:6d:be:00:d0:2a:7b:
ba:39:2c:62:4e:6f:7d:ce:d8:39:e9:72:c1:49:66:
af:97:58:e2:89:34:c9:d3:99:db:56:b2:1b:2e:b6:
34:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:8F:BF:89:67:E6:27:DE:9C:7B:0F:E9:4C:18:66:8D:53:DF:D2:99
X509v3 Authority Key Identifier:
keyid:9F:EE:E1:6D:68:43:B6:BB:CC:AA:57:B2:99:9A:B5:8A:7F:45:2D:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n-7hbWhDtrvMqleymZq1in9FLWA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/130608-5a66-48d9-a01f-1fca6d56465c/1/SY-_iWfmJ96cew_pTBhmjVPf0pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/130608-5a66-48d9-a01f-1fca6d56465c/1/n-7hbWhDtrvMqleymZq1in9FLWA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.41.0/24
Signature Algorithm: sha256WithRSAEncryption
94:05:aa:f3:ee:39:69:85:28:61:c1:cf:0a:a1:4b:86:cf:0f:
fd:4d:f0:cd:f8:39:e4:9a:05:f4:de:69:49:11:24:f6:4d:cd:
ab:4c:43:46:e0:be:6b:df:48:b1:aa:34:c5:54:9a:9d:ab:54:
f2:64:95:4d:1b:85:91:5a:f5:b4:24:da:94:10:e8:c4:2d:5d:
d3:96:e7:ad:0b:fe:2e:eb:5b:0a:8e:ba:6e:f9:c5:24:e1:db:
75:83:81:02:04:c4:d1:58:21:b1:4c:9e:42:dc:46:e9:1f:6e:
11:01:98:37:4d:f0:68:63:05:51:c1:3e:3e:8c:f9:d0:30:ed:
fb:28:1f:b5:b5:84:a3:b4:4d:3a:ba:c8:27:c6:81:6d:3e:37:
dc:11:e8:67:05:75:ff:ad:b3:76:fe:af:5d:e3:81:c8:fe:5f:
d0:35:f0:31:e5:3a:d1:cc:30:d9:09:66:4a:e3:db:dc:89:74:
27:69:7b:ae:1f:dc:a3:d1:cf:19:64:21:52:c8:4e:28:bc:4e:
1a:fb:f1:87:38:e0:d8:15:ac:11:d5:ab:9e:46:07:d7:89:27:
10:68:91:3f:3e:69:9a:e1:8d:51:2c:3c:56:a1:7f:45:37:ec:
75:09:70:6a:2f:eb:10:b1:76:c9:4e:29:63:59:ba:17:1a:e1:
81:b9:5f:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:55 2024 by rpki-client on console-fra.rpki-client.org