Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/P34WQpXdCaImfqx1rRKQcjVhhoE.roa
File: P34WQpXdCaImfqx1rRKQcjVhhoE.roa (raw, json)
Hash identifier: c0mSNdIupJXU/t3MV8XM9u2zw5CaW41VYHu5FkFW/44=
Subject key identifier: 3F:7E:16:42:95:DD:09:A2:26:7E:AC:75:AD:12:90:72:35:61:86:81
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 01856F8C535DFADD7434682E45BB2A4482CE
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/P34WQpXdCaImfqx1rRKQcjVhhoE.roa
Signing time: Sun 01 Jan 2023 22:55:45 +0000
ROA not before: Sun 01 Jan 2023 22:55:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211975
IP address blocks: 85.209.222.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:8c:53:5d:fa:dd:74:34:68:2e:45:bb:2a:44:82:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Jan 1 22:55:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3f7e164295dd09a2267eac75ad12907235618681
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:57:be:84:cb:98:95:ff:af:7d:37:d1:65:8c:
cd:9e:1b:bf:bd:e7:77:8f:2e:bc:0b:e4:16:03:60:
27:80:d5:36:bb:18:79:fe:92:fe:77:bc:c7:e8:86:
f6:c8:01:a2:15:af:15:81:18:5a:07:9e:61:85:3b:
56:13:5d:0c:f1:14:a1:f3:2b:61:29:7f:dc:d3:5b:
26:13:20:d9:f3:b8:ba:4b:c6:93:4a:8d:a9:62:bd:
e6:53:38:e4:b5:dc:f5:88:fb:f4:a8:0f:46:72:84:
5f:68:fe:c9:a2:e1:7a:fc:f2:9c:71:fd:21:ec:4a:
85:2e:1c:ab:8d:93:d1:f2:9d:a3:79:b5:3b:a0:e5:
1b:62:c4:fe:72:13:cc:21:40:50:39:f1:c1:3e:c8:
36:55:16:2a:81:bd:89:e5:f1:c8:5f:72:dd:6b:24:
99:ab:fd:78:07:e3:f7:e5:01:bf:69:32:00:d8:81:
5a:88:ba:9f:7d:73:ad:7b:99:e7:f2:04:5c:d4:6e:
13:94:62:5a:ba:21:8d:d8:e1:80:16:49:c0:bd:55:
23:f8:97:81:94:4d:99:fd:f1:9f:cf:a1:a3:ea:05:
50:a8:1b:40:89:6b:53:5a:85:24:8f:6d:fb:75:12:
e1:c0:aa:e9:bc:f9:5a:12:53:25:e9:f6:4a:09:93:
3d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:7E:16:42:95:DD:09:A2:26:7E:AC:75:AD:12:90:72:35:61:86:81
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/P34WQpXdCaImfqx1rRKQcjVhhoE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.222.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:0a:d6:0e:67:8f:2e:13:e8:f2:85:73:5e:01:50:5e:49:72:
1b:27:9a:87:69:d3:3f:01:7e:a6:24:55:25:5b:81:e2:fe:7b:
af:d0:53:27:2f:48:e3:de:d5:04:f3:04:06:55:cd:d3:38:c0:
f4:6f:66:7e:50:78:92:75:99:f8:45:ee:3a:d6:55:97:16:e2:
17:d6:4b:43:4c:4a:4a:2c:c5:ec:ad:e6:58:98:d2:a5:07:d7:
5d:b7:0a:4a:26:31:e8:7e:3f:b1:29:49:94:f3:f9:43:db:e8:
bc:57:61:b7:dc:8a:e1:a3:d9:ea:32:f9:e5:a5:be:10:23:f1:
9e:6a:4e:31:f8:bd:3a:6c:75:1a:b9:9b:1e:94:16:39:ca:9c:
17:fc:cb:e6:63:62:d6:d9:ad:de:bf:76:6d:3b:0e:74:fc:64:
47:1a:fa:f5:79:09:3a:c5:af:5b:79:56:5c:8c:6d:9d:34:8f:
38:68:ca:fd:43:9f:cb:70:9b:9c:0e:75:8f:23:52:57:96:01:
d9:97:12:9d:2c:c7:69:6d:8e:6f:cb:fc:2d:ed:d7:e1:23:87:
ad:db:88:ec:e2:22:0c:2c:cd:80:60:49:df:5d:9c:cc:d6:0c:
41:97:c5:02:39:35:ef:67:09:18:22:cf:a8:e2:39:4b:fc:3b:
cf:6c:29:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:31 2023 by rpki-client on console-fra.rpki-client.org