Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/hw66PUM5T7XqnZh4ok2jtvqg8bQ.roa
File: hw66PUM5T7XqnZh4ok2jtvqg8bQ.roa (raw, json)
Hash identifier: 2GYFSY1Hym1k8WKSHI+8dcf4seLMNjbAhyw4gK9eNLs=
Subject key identifier: 87:0E:BA:3D:43:39:4F:B5:EA:9D:98:78:A2:4D:A3:B6:FA:A0:F1:B4
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 09706910
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/hw66PUM5T7XqnZh4ok2jtvqg8bQ.roa
Signing time: Fri 14 Jan 2022 11:17:41 +0000
ROA not before: Fri 14 Jan 2022 11:17:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 85.209.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 158361872 (0x9706910)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Jan 14 11:17:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=870eba3d43394fb5ea9d9878a24da3b6faa0f1b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:50:ac:ab:6a:ef:54:31:f7:80:19:94:26:29:
08:69:2b:65:0d:89:e9:9c:c9:d3:85:93:87:4d:2d:
15:b4:36:4b:65:f5:42:ad:e4:dc:d5:b9:c1:0d:75:
55:f7:ba:ca:75:06:5a:25:52:4f:45:2c:a3:84:0e:
4a:29:88:c5:54:14:97:52:2c:9c:40:cd:6c:9a:10:
d0:94:e5:9f:95:2c:48:5f:19:2e:93:80:0d:4f:60:
08:eb:b4:b1:4e:9a:53:eb:a1:90:ae:4c:42:3a:bc:
93:ed:46:57:32:70:fd:78:6d:55:d8:fd:e2:43:4d:
ad:53:cd:4e:0f:10:ca:a4:63:06:eb:33:f0:ce:da:
5b:7a:e7:2b:26:1c:f2:e5:ee:9d:e0:d7:0f:73:14:
ba:4a:f0:75:c4:48:73:17:58:24:1e:f2:e8:8e:f9:
69:18:7b:e5:e4:65:68:38:b6:4d:ab:33:a5:67:30:
ad:72:14:df:e8:80:89:d5:2c:f4:27:a3:c1:31:c0:
b7:18:a1:fa:07:4e:8f:64:96:fb:8a:a4:38:cd:df:
41:5f:19:0f:fb:21:c2:16:33:88:8f:39:15:3c:2d:
0f:10:38:78:9a:14:8e:19:fd:28:bf:f8:23:94:61:
89:35:f7:d2:09:5f:58:77:c6:fe:e2:9a:fc:45:c5:
1d:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:0E:BA:3D:43:39:4F:B5:EA:9D:98:78:A2:4D:A3:B6:FA:A0:F1:B4
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/hw66PUM5T7XqnZh4ok2jtvqg8bQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.223.0/24
Signature Algorithm: sha256WithRSAEncryption
45:5f:10:d0:7c:36:98:35:8f:11:2c:fd:b6:41:0d:ac:c9:1b:
f6:db:27:2f:48:bb:8e:73:6d:48:66:29:40:b8:d3:df:e4:e9:
e0:3c:05:94:f5:f5:89:8b:9e:c1:28:42:59:5b:61:4d:69:1c:
0c:7b:ef:da:86:fe:f3:fa:2d:d9:5f:45:78:2e:2b:8a:77:80:
52:85:5c:5a:3e:6a:31:79:68:a7:41:8d:77:07:a0:3a:8f:47:
53:0d:14:9c:e0:52:90:ea:00:ba:39:ca:6c:94:e2:6b:04:0c:
ba:d0:55:0a:75:d8:b4:ad:34:86:b5:2f:33:30:60:62:42:90:
23:97:b4:fe:49:fa:60:58:44:3a:cd:19:10:b5:5f:5c:54:95:
f4:01:61:a2:76:ab:e4:1d:7b:ef:33:12:ee:be:8b:7f:9c:e7:
6d:87:f2:58:4f:12:88:64:21:46:f8:67:56:28:8c:4a:2c:54:
03:1f:8e:83:81:a2:11:59:ee:ea:4b:f1:f6:31:a3:3a:eb:f9:
c3:36:7c:7b:76:d7:00:e9:dc:35:c4:5e:0f:64:f7:50:0a:32:
69:cf:19:ca:b0:ec:73:75:ed:fd:53:fd:a3:6d:0b:ae:37:a8:
96:37:b0:db:78:7e:75:8c:46:7b:5b:f1:b6:a6:97:d1:61:80:
06:ed:15:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:15 2023 by rpki-client on console-ams.rpki-client.org