Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/39/edf795-ec92-40d6-b46d-afb1d85c95a8/1/hRsYtAHK6OUgpqgxD_NS-Sq4hmA.roa
File: hRsYtAHK6OUgpqgxD_NS-Sq4hmA.roa (raw, json)
Hash identifier: fCipxWQscGJ90OzGt/J5+ar7VwxV6Q11iqKdTL+xf2M=
Subject key identifier: 85:1B:18:B4:01:CA:E8:E5:20:A6:A8:31:0F:F3:52:F9:2A:B8:86:60
Certificate issuer: /CN=056647750bf52f77a9c91c2d6864e871c1aafa9f
Certificate serial: 01864A86C227FB04AE2A0E65FA68B345F463
Authority key identifier: 05:66:47:75:0B:F5:2F:77:A9:C9:1C:2D:68:64:E8:71:C1:AA:FA:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BWZHdQv1L3epyRwtaGToccGq-p8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/39/edf795-ec92-40d6-b46d-afb1d85c95a8/1/hRsYtAHK6OUgpqgxD_NS-Sq4hmA.roa
Signing time: Mon 13 Feb 2023 11:26:30 +0000
ROA not before: Mon 13 Feb 2023 11:26:30 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209529
IP address blocks: 185.228.220.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:4a:86:c2:27:fb:04:ae:2a:0e:65:fa:68:b3:45:f4:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=056647750bf52f77a9c91c2d6864e871c1aafa9f
Validity
Not Before: Feb 13 11:26:30 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=851b18b401cae8e520a6a8310ff352f92ab88660
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b9:9f:0f:3a:9a:48:ae:ec:be:05:e2:04:dc:
0d:f0:f5:e7:37:40:07:1a:8c:42:58:b2:7e:f3:c5:
0d:18:aa:03:a6:9f:f1:6a:72:d0:aa:40:56:e4:cc:
ca:48:cc:26:a1:48:bb:df:20:35:76:c8:d5:78:31:
bd:87:6e:d4:77:80:80:e2:80:c4:e1:38:d8:44:00:
57:a7:e0:08:74:f5:d5:78:33:66:73:29:ce:68:ab:
7c:ce:17:41:52:e9:b1:d8:b3:81:31:c6:c7:2c:f2:
c9:69:70:b2:84:00:97:13:e0:df:16:d3:81:a4:e9:
03:2e:20:38:7d:f8:7b:81:ae:c0:1b:c4:b3:54:50:
63:d4:4e:ef:8b:25:00:0c:64:d8:77:d9:18:e8:39:
fb:91:a0:3a:81:29:59:81:21:91:72:f2:32:b8:c0:
c7:00:ec:c8:1d:f5:90:2c:a4:08:40:40:2d:8d:8e:
21:62:7c:53:18:9b:aa:a5:9d:88:7e:db:14:ab:cc:
19:f8:a2:88:ae:05:f8:38:91:ce:67:8d:93:15:13:
b1:d6:e7:1f:9b:c0:bb:03:77:0d:dd:a9:f0:2a:e6:
33:39:39:eb:d7:ab:47:cf:54:4d:ca:ed:bc:cf:b4:
ba:82:bc:51:1a:e3:44:c2:9c:7c:98:45:35:71:08:
c8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:1B:18:B4:01:CA:E8:E5:20:A6:A8:31:0F:F3:52:F9:2A:B8:86:60
X509v3 Authority Key Identifier:
keyid:05:66:47:75:0B:F5:2F:77:A9:C9:1C:2D:68:64:E8:71:C1:AA:FA:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BWZHdQv1L3epyRwtaGToccGq-p8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/edf795-ec92-40d6-b46d-afb1d85c95a8/1/hRsYtAHK6OUgpqgxD_NS-Sq4hmA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/39/edf795-ec92-40d6-b46d-afb1d85c95a8/1/BWZHdQv1L3epyRwtaGToccGq-p8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.228.220.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:ae:bb:4c:7a:18:db:bb:48:71:d3:60:e6:8b:af:72:cc:0a:
b4:a8:51:50:84:bb:47:a1:2b:3a:f4:79:91:9c:38:e9:39:1e:
49:f9:20:55:05:a2:fb:88:8c:f1:20:66:65:ca:a9:a7:2e:1a:
6c:27:1d:28:8f:cf:43:0c:f8:69:4a:9d:34:22:81:a2:df:23:
b4:64:cf:43:47:71:50:55:2c:99:1a:e2:2f:2c:56:0e:89:75:
92:22:1b:f9:e5:4a:7c:85:5a:66:dc:c4:2f:ed:82:76:72:70:
0b:e4:90:a3:37:bc:79:4a:b6:c6:81:af:9b:5b:a4:18:fb:df:
96:9a:d6:d3:fe:2a:aa:b5:a1:3a:b9:43:4d:c3:8c:31:f2:f2:
1a:1e:7f:22:32:64:f9:26:68:d8:2e:cc:d8:69:b0:04:57:ab:
7c:86:fd:18:1f:c2:12:24:a2:d0:fd:2c:2f:68:6e:df:6e:75:
39:75:0b:06:d1:4d:cf:3d:93:06:7e:5e:f6:fa:dc:b7:a4:19:
14:11:c8:c4:a0:fe:ee:90:f7:10:eb:b7:ba:3a:45:38:a8:24:
f6:2a:32:3d:21:89:a6:f2:c8:93:85:ff:4b:09:c4:d9:6b:11:
95:13:7a:ea:65:2b:4b:dc:a3:1c:46:8b:e3:12:36:df:07:9e:
d4:d6:69:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:44 2023 by rpki-client on console-fra.rpki-client.org