Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/324d8f-4c20-4682-a114-89e8859cfae2/1/1-bItuMlsunLWu_Df7qEPsfuKjs.roa
File: 1-bItuMlsunLWu_Df7qEPsfuKjs.roa (raw, json)
Hash identifier: zBB5EWE6np1fXR7ZchOCP8H8KtKwLm8g85+q79oJqdc=
Subject key identifier: D7:E6:C8:B6:E3:25:B2:E9:CB:5A:EF:C3:7F:BA:84:3E:C7:EE:2A:3B
Certificate issuer: /CN=44838c7f23c4b7d17c74de914d99e2867839aeda
Certificate serial: 02355749
Authority key identifier: 44:83:8C:7F:23:C4:B7:D1:7C:74:DE:91:4D:99:E2:86:78:39:AE:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RIOMfyPEt9F8dN6RTZnihng5rto.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/324d8f-4c20-4682-a114-89e8859cfae2/1/1-bItuMlsunLWu_Df7qEPsfuKjs.roa
Signing time: Sat 01 Jan 2022 12:00:29 +0000
ROA not before: Sat 01 Jan 2022 12:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 85.8.144.0/22 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37050185 (0x2355749)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44838c7f23c4b7d17c74de914d99e2867839aeda
Validity
Not Before: Jan 1 12:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d7e6c8b6e325b2e9cb5aefc37fba843ec7ee2a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e3:04:40:db:e5:57:ea:99:de:b4:72:43:26:
67:c8:b6:46:06:3c:18:f9:2a:b2:ea:62:1f:f0:4b:
e0:f9:d8:d6:6b:1a:e7:db:13:7a:3d:d8:59:5b:ce:
7f:fa:93:48:59:8f:62:1f:7e:2e:7c:64:f8:46:da:
49:1f:c0:58:c2:c5:73:db:e4:67:43:83:0a:56:f7:
e6:60:a1:d2:ab:42:90:09:cc:36:21:55:ef:ad:18:
46:8f:b9:fd:56:8c:97:51:53:4c:f3:ed:93:11:21:
e8:59:e8:9d:2a:73:a4:5c:dd:6d:38:b6:53:f4:d4:
27:b7:02:f0:e7:44:47:46:cb:79:a3:28:1f:b0:c2:
5b:a5:66:aa:51:6b:8e:71:ea:e9:d3:fe:80:dd:7e:
4c:b4:88:73:d9:d7:19:e1:d9:5f:cd:15:40:a4:13:
02:08:9d:c3:42:2f:cd:11:de:ac:01:2d:4f:02:8b:
08:c1:ce:7c:f8:88:a4:4e:f3:06:78:af:23:c0:de:
74:03:36:39:ec:a5:56:53:e9:0e:6c:95:9a:3d:a9:
61:69:8f:d1:74:bc:00:e1:b2:24:bc:01:a6:7e:70:
d6:4d:ba:27:62:d8:a2:46:a9:58:7e:4a:94:0f:75:
9a:82:d3:5e:46:02:2b:17:25:21:60:42:4d:35:a4:
9f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:E6:C8:B6:E3:25:B2:E9:CB:5A:EF:C3:7F:BA:84:3E:C7:EE:2A:3B
X509v3 Authority Key Identifier:
keyid:44:83:8C:7F:23:C4:B7:D1:7C:74:DE:91:4D:99:E2:86:78:39:AE:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RIOMfyPEt9F8dN6RTZnihng5rto.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/324d8f-4c20-4682-a114-89e8859cfae2/1/1-bItuMlsunLWu_Df7qEPsfuKjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/324d8f-4c20-4682-a114-89e8859cfae2/1/RIOMfyPEt9F8dN6RTZnihng5rto.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.8.144.0/22
Signature Algorithm: sha256WithRSAEncryption
23:11:aa:9d:37:ee:4f:4a:ec:1d:4a:4b:23:48:94:03:e6:6f:
c7:35:b4:11:c5:16:ec:5c:50:89:ae:8c:64:0f:c2:e4:64:76:
d6:c4:47:ee:8a:71:68:0a:3f:99:90:1c:e1:ea:90:b2:5d:70:
c4:13:0a:ae:cb:11:73:76:c8:00:29:2a:4f:f6:67:b3:ad:a7:
7d:ab:0d:d7:4c:2b:e8:77:7c:25:31:82:70:32:4e:a5:ac:56:
fa:34:29:bf:b4:c1:dc:c5:b1:a9:8d:1f:56:3e:e0:63:8c:78:
d4:fd:d7:2a:2e:eb:fa:15:0d:5b:70:3f:37:ef:d0:e2:4c:3b:
f7:54:34:4b:8c:ad:b0:d2:50:d4:62:c3:1a:fe:c9:1b:52:29:
54:04:89:fb:f6:e2:a8:e2:aa:b5:3c:f5:a7:38:21:a7:6c:a1:
2f:8f:3d:e3:66:4b:85:9d:6d:2e:3e:f2:54:0e:dd:49:35:ef:
20:e4:e0:35:49:a5:dc:44:27:f8:f2:6c:63:9b:bc:ea:7a:4d:
7d:aa:5c:a8:b1:72:fd:9d:72:92:37:56:86:25:6a:64:cd:bc:
43:1c:3c:b3:24:8d:f6:e4:55:53:15:23:73:f6:b2:b6:16:87:
54:08:7f:1a:ad:71:49:64:18:76:8b:82:f1:ed:32:40:99:ad:
5c:5e:be:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:35 2023 by rpki-client on console-ams.rpki-client.org