Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/HW2nWPvS3IQn_NvPKBompKNxjgk.roa
File: HW2nWPvS3IQn_NvPKBompKNxjgk.roa (raw, json)
Hash identifier: V39FGXFWLmKtnvVuNUb+H9QJgW782Px3B6aqFs/iq20=
Subject key identifier: 1D:6D:A7:58:FB:D2:DC:84:27:FC:DB:CF:28:1A:26:A4:A3:71:8E:09
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 0A2B9879
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/HW2nWPvS3IQn_NvPKBompKNxjgk.roa
Signing time: Tue 22 Mar 2022 15:45:25 +0000
ROA not before: Tue 22 Mar 2022 15:45:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48927
IP address blocks: 85.209.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 170629241 (0xa2b9879)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Mar 22 15:45:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1d6da758fbd2dc8427fcdbcf281a26a4a3718e09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:44:e6:af:46:67:ff:17:49:2e:d0:b1:4b:2d:
e9:24:87:ce:07:29:1b:0f:8f:29:f8:e9:b8:d7:37:
a9:e9:32:76:68:14:a0:e0:13:57:37:48:90:51:bd:
d2:6b:65:6d:f0:0b:d0:26:c3:eb:08:3c:2b:6e:e8:
d2:e6:45:e2:36:0b:0a:b3:1f:a2:1f:a3:95:bd:70:
6d:e3:b8:a4:32:60:ed:ad:c3:7d:7f:af:bf:66:e0:
26:fa:83:3e:75:06:e4:1b:f4:f1:a5:ae:95:61:87:
7b:44:0d:2d:b0:58:76:50:a5:9b:db:d8:3d:35:e0:
df:23:2c:90:58:90:94:66:81:d5:23:d7:86:3a:d6:
e7:ee:82:c9:7e:43:d0:88:d5:47:a5:ff:0c:0a:46:
c4:53:31:4f:b7:9d:c0:25:7e:7c:45:a3:47:52:82:
aa:8d:f3:fa:6d:d6:13:91:a3:16:25:aa:75:04:69:
36:0c:ed:bf:65:41:42:4f:cc:42:78:bb:49:1c:a1:
b6:2b:62:24:e1:58:73:62:2e:f2:51:14:17:6c:d3:
61:0c:f0:fb:7f:07:1a:db:6e:bd:f7:94:79:36:a2:
88:76:59:5c:2b:97:e5:f7:c9:ea:2e:a0:79:1c:05:
83:73:d1:92:a4:9c:ad:d8:e6:ba:6a:7b:7b:b6:62:
5b:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:6D:A7:58:FB:D2:DC:84:27:FC:DB:CF:28:1A:26:A4:A3:71:8E:09
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/HW2nWPvS3IQn_NvPKBompKNxjgk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.223.0/24
Signature Algorithm: sha256WithRSAEncryption
07:69:1f:96:b3:d9:d0:66:c4:9c:39:87:75:53:65:67:4f:4c:
e3:e5:07:ee:24:f0:d5:95:57:26:49:8f:29:56:85:5a:1e:5e:
da:ef:01:08:f5:0e:e9:d6:5b:b2:b5:7d:bf:6e:76:61:14:9b:
1b:2d:79:bd:b3:55:ca:17:b7:c8:cb:03:af:c3:c4:c2:da:1f:
4b:35:4e:09:96:ad:a1:92:9b:4e:72:f3:14:d6:f4:83:7c:91:
45:bf:10:bf:31:ea:5a:3c:eb:c5:03:f2:ef:31:16:cb:e7:d9:
d7:99:b6:ff:03:81:61:71:9a:b6:c7:1a:80:9a:7e:b0:37:29:
e0:6c:d5:7d:42:26:d4:3f:b0:4f:29:26:1c:3b:f2:ad:93:77:
56:0e:89:65:26:2e:70:47:f9:b8:45:48:a3:bb:b9:7d:aa:b5:
bd:7f:2d:85:a4:3e:d3:6c:ef:b9:1f:ed:7e:d5:b7:4b:46:d8:
1c:b6:7e:73:8a:5f:85:eb:9b:ec:9d:c9:97:86:68:c2:27:96:
d6:aa:38:c4:84:37:eb:a6:bc:7a:e9:30:c3:11:33:18:49:77:
24:f1:a4:9f:08:a8:34:b8:67:92:88:ab:d0:30:bb:0d:6c:54:
3a:4c:e8:66:5c:0a:01:3f:e7:81:8b:69:37:98:39:76:2a:66:
6e:33:96:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:03 2025 by rpki-client