Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/ZGdmXuFWUfQ-PS7h3NvPX7He06Y.roa
File: ZGdmXuFWUfQ-PS7h3NvPX7He06Y.roa (raw, json)
Hash identifier: 7eyvLYMRiwsWDbtZtCJNoOItoEI5ljyStL8sSW+ydy8=
Subject key identifier: 64:67:66:5E:E1:56:51:F4:3E:3D:2E:E1:DC:DB:CF:5F:B1:DE:D3:A6
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 0B277B8C
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/ZGdmXuFWUfQ-PS7h3NvPX7He06Y.roa
Signing time: Mon 20 Jun 2022 14:46:44 +0000
ROA not before: Mon 20 Jun 2022 14:46:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211585
IP address blocks: 85.209.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 187136908 (0xb277b8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Jun 20 14:46:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6467665ee15651f43e3d2ee1dcdbcf5fb1ded3a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:de:37:dd:66:38:2f:91:51:15:95:91:3e:16:
e2:ec:3f:f6:ee:7d:82:cd:b5:c6:10:cf:7d:38:57:
55:2b:86:5e:8a:9c:0b:85:57:89:40:b2:e0:5d:43:
41:63:2d:59:61:f9:6d:d2:43:41:6e:2c:14:19:b6:
33:2b:8d:31:45:6b:5f:c9:26:c6:93:8a:c0:68:53:
39:67:0a:f5:0d:6a:54:bd:c9:4b:e2:66:d8:b9:20:
90:0e:ad:f5:b0:74:8b:86:aa:57:ec:26:6d:33:f3:
e5:cc:e5:fd:c7:2f:e0:fe:5d:61:26:73:fc:22:a4:
df:50:97:fc:ba:c9:b9:39:fb:cc:0a:3e:c9:31:21:
b6:cf:c0:e6:d7:80:2e:48:54:b7:4d:15:65:e6:ff:
10:57:15:9f:c5:ad:cc:84:f2:42:8b:a1:33:7e:87:
d1:ed:40:5d:a3:96:cb:08:5b:9b:da:ee:bc:52:aa:
6c:17:d1:19:6e:26:b6:e5:ca:19:1f:db:ab:c2:cd:
17:0c:19:a5:5c:87:3f:14:df:91:87:15:ac:36:4d:
de:0a:d0:d1:7b:57:7d:28:79:85:3f:c1:33:8f:17:
57:36:78:6d:ac:54:29:32:d5:e0:17:8d:7d:31:e4:
3d:60:bf:87:3f:f2:f5:cd:54:37:00:f1:95:cc:16:
03:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:67:66:5E:E1:56:51:F4:3E:3D:2E:E1:DC:DB:CF:5F:B1:DE:D3:A6
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/ZGdmXuFWUfQ-PS7h3NvPX7He06Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.221.0/24
Signature Algorithm: sha256WithRSAEncryption
19:83:6c:57:24:32:80:a7:23:36:10:4a:2d:9e:4e:ce:9b:14:
a4:9d:54:60:e2:86:6a:85:88:bd:4c:c3:99:83:26:73:5e:1b:
88:a1:7c:fd:16:f6:e5:4a:fd:ac:7c:e1:58:e4:9a:48:69:2c:
a8:c9:0e:0c:4e:fa:98:e4:81:cc:49:f7:7b:95:65:ad:07:24:
c8:f3:cd:2b:c4:29:00:42:22:3e:19:aa:85:2b:1d:71:72:2c:
01:fd:db:72:35:ea:37:0e:6e:54:15:d6:c1:47:c8:ca:06:6d:
c4:3d:4c:bf:fb:c6:50:fb:3c:62:ac:89:74:67:3f:ec:bd:ef:
4c:5d:41:50:2d:7b:fe:82:31:63:b1:6a:ea:fe:b9:c4:ef:f4:
00:fd:a6:9f:a9:9c:b2:47:0e:ae:5f:6c:65:7f:c0:e6:f6:21:
9b:02:5a:45:d2:f8:90:a8:55:cc:38:6a:0e:ac:9a:a4:f9:1f:
d7:76:5f:3d:2f:1b:d4:ba:e1:48:83:e6:f0:a9:77:59:ca:fc:
1c:46:0d:4c:7d:07:0a:5a:31:9b:b2:0c:bf:f6:49:51:eb:f3:
b7:a7:b2:43:17:77:27:67:d6:7b:94:7f:84:a8:9e:ef:f9:70:
92:8b:50:f4:e1:ff:d8:b0:cf:f9:d3:1e:8d:12:59:e0:87:96:
63:80:aa:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:14 2023 by rpki-client on console-ams.rpki-client.org