Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/phEfipS9_XyJKEJAN_A99TU9Xpc.roa
File: phEfipS9_XyJKEJAN_A99TU9Xpc.roa (raw, json)
Hash identifier: 8fQjsQWl6j8pAJnSJm2I1dgnx0J39+/X8MdftBXCJvg=
Subject key identifier: A6:11:1F:8A:94:BD:FD:7C:89:28:42:40:37:F0:3D:F5:35:3D:5E:97
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018820AA93511AE3F4C1AC8C167F433DF21E
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/phEfipS9_XyJKEJAN_A99TU9Xpc.roa
Signing time: Mon 15 May 2023 18:27:09 +0000
ROA not before: Mon 15 May 2023 18:27:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60721
IP address blocks: 85.158.57.0/24 maxlen: 24
85.158.62.0/24 maxlen: 24
85.237.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:aa:93:51:1a:e3:f4:c1:ac:8c:16:7f:43:3d:f2:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: May 15 18:27:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a6111f8a94bdfd7c8928424037f03df5353d5e97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:e1:f1:40:c2:34:da:db:83:6d:69:1f:1f:3a:
59:e5:a7:5b:39:9b:fe:6b:fe:3c:89:d1:28:a3:08:
c3:f4:fc:30:ca:f8:dc:20:55:ef:97:ba:03:23:37:
78:a8:af:8b:8b:50:57:ff:43:51:b9:b0:2d:91:7f:
c9:11:54:c9:ff:3a:2e:c1:d2:1c:7c:23:73:8a:f9:
88:9d:76:84:d4:36:1b:f9:fd:03:d8:8e:f9:55:ee:
03:9b:51:c5:29:f9:f9:29:e3:80:11:47:38:4b:54:
25:58:c1:2d:fa:93:78:d7:90:36:fb:12:31:ba:bf:
f6:db:de:9a:44:eb:6b:76:bb:27:5c:41:3f:dd:d9:
bd:21:28:7c:df:4a:cb:27:a1:54:20:59:84:35:62:
b8:0a:fc:31:b1:6c:d5:fe:6c:59:81:1b:cb:16:22:
25:39:77:e8:b7:94:1b:15:c9:c1:db:87:ee:7c:c7:
08:c9:36:d5:ce:f0:4e:7f:81:de:fc:bc:55:a7:7b:
df:38:19:ef:e6:fb:7d:6d:da:ff:ae:2d:8a:a8:e3:
cd:f1:62:5c:0f:06:ee:49:ff:b4:f4:56:f5:1c:e9:
3e:fd:cd:02:d9:d6:f0:49:92:df:ce:4d:3b:8e:67:
66:08:62:e0:89:d8:50:d4:38:98:2a:45:22:b6:e2:
b1:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:11:1F:8A:94:BD:FD:7C:89:28:42:40:37:F0:3D:F5:35:3D:5E:97
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/phEfipS9_XyJKEJAN_A99TU9Xpc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.57.0/24
85.158.62.0/24
85.237.222.0/24
Signature Algorithm: sha256WithRSAEncryption
64:ca:9e:64:fe:2a:95:21:34:45:76:3c:d4:4b:99:01:90:50:
5e:63:df:ed:11:91:48:4e:05:3f:2e:87:d1:10:1e:98:17:90:
e7:f0:31:93:bc:ae:77:0a:f8:b2:72:02:64:50:09:00:d0:3e:
62:77:1f:14:c8:ba:8b:59:bc:ba:f8:d9:65:3c:7c:c9:9b:69:
dd:39:86:cf:6d:3c:fd:b8:93:46:b5:24:e6:bb:a0:80:2f:f6:
b3:70:9f:bd:83:bd:a0:09:40:fc:bf:5e:f8:e5:c8:b3:36:08:
e1:fd:7e:2d:a6:31:75:86:05:d3:37:c5:81:78:a9:0c:a3:85:
c3:0b:70:82:a9:65:c8:78:b5:e9:8f:cb:a3:e7:1a:5b:58:53:
80:5f:16:04:3c:a5:4a:79:a6:31:07:cb:ed:bd:41:ce:a8:f4:
fb:2a:94:a5:84:b7:e2:83:47:d0:9b:bb:65:1a:17:a6:97:4f:
d1:2c:d7:26:09:1d:f3:19:03:51:14:bd:6b:dc:48:bf:06:80:
a6:ce:0e:fb:be:23:5a:67:ad:62:2b:bc:c0:5b:1a:ab:74:63:
ac:ad:c8:54:fc:6f:46:c1:bc:75:59:3b:7d:da:f2:35:f2:ba:
c0:73:0e:0f:ba:1c:03:78:ae:3d:b1:a2:73:24:7a:6d:7f:7f:
4b:4f:ec:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:00 2025 by rpki-client