Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/y7tXck94tVTS7rqvZW5DG6S_oqU.roa
File: y7tXck94tVTS7rqvZW5DG6S_oqU.roa (raw, json)
Hash identifier: I2jusoExrPPiriM0JTOGg3aYCZIc89dE30lu3SItIHA=
Subject key identifier: CB:BB:57:72:4F:78:B5:54:D2:EE:BA:AF:65:6E:43:1B:A4:BF:A2:A5
Certificate issuer: /CN=a44c267fa754cd6509e9f807273123bee96c525d
Certificate serial: 0184054AA29B34B106D31867FDE832B1B281
Authority key identifier: A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/y7tXck94tVTS7rqvZW5DG6S_oqU.roa
Signing time: Sun 23 Oct 2022 14:41:28 +0000
ROA not before: Sun 23 Oct 2022 14:41:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212335
IP address blocks: 85.209.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:05:4a:a2:9b:34:b1:06:d3:18:67:fd:e8:32:b1:b2:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a44c267fa754cd6509e9f807273123bee96c525d
Validity
Not Before: Oct 23 14:41:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cbbb57724f78b554d2eebaaf656e431ba4bfa2a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:32:64:9b:bb:ac:0e:eb:d0:7c:c3:85:5f:50:
02:d0:6d:75:98:b4:e2:03:89:0c:77:29:90:23:58:
4d:cc:47:38:27:7d:76:e0:7d:0a:1b:72:26:ac:88:
8f:0e:ad:8e:8b:75:27:47:b7:ae:5b:2a:8b:8a:f5:
6b:00:a3:b5:1c:03:54:f7:45:0c:8f:12:11:72:1e:
f9:24:7f:f5:9f:af:5e:13:98:25:ba:f0:d2:49:63:
74:4c:43:70:d6:ea:51:75:97:25:a3:27:4c:06:53:
d3:96:e5:0e:7a:cb:61:d6:61:40:d4:84:87:a3:cf:
8e:a5:25:b7:11:65:ec:57:c2:94:c8:44:f3:85:92:
0e:57:5a:48:fc:2d:2c:af:62:d2:39:02:06:f0:81:
15:dc:a3:f4:0f:4b:f5:49:ae:76:d0:cd:1a:94:08:
72:dc:b7:16:96:3b:f4:ba:42:a6:79:8e:95:01:e2:
33:e0:26:99:13:77:6b:86:38:4e:e4:ed:7d:ec:21:
9b:15:29:9a:a3:6a:6b:9f:36:26:88:1e:de:d0:5b:
83:a9:4a:e9:8a:07:fb:a1:00:6e:c6:89:9b:f8:06:
ba:e7:5a:bd:ff:32:6f:0c:a1:29:23:71:d0:24:ea:
7a:02:9a:09:7a:f7:f6:40:24:06:8e:57:c9:02:dc:
78:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BB:57:72:4F:78:B5:54:D2:EE:BA:AF:65:6E:43:1B:A4:BF:A2:A5
X509v3 Authority Key Identifier:
keyid:A4:4C:26:7F:A7:54:CD:65:09:E9:F8:07:27:31:23:BE:E9:6C:52:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pEwmf6dUzWUJ6fgHJzEjvulsUl0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/y7tXck94tVTS7rqvZW5DG6S_oqU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/ab26a5-67b9-4667-855b-48af08004b5f/1/pEwmf6dUzWUJ6fgHJzEjvulsUl0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.221.0/24
Signature Algorithm: sha256WithRSAEncryption
c9:7a:d8:07:77:f7:c7:d3:0f:aa:9b:b9:4a:66:db:4c:83:f9:
2c:13:e9:17:0b:7e:e6:df:7d:b8:6f:ec:92:6c:53:ff:a2:3c:
4f:c4:f0:14:42:f9:7a:72:3c:29:ed:7f:6d:07:30:0c:00:91:
fb:65:42:63:8c:9c:29:4e:d7:be:51:67:62:4b:e2:65:0f:8e:
48:a7:5e:ea:83:dc:4d:fe:f9:85:2f:53:7b:93:37:f3:65:05:
94:3e:dd:9f:f5:25:d9:48:4f:6f:ec:4d:0b:a5:5f:a2:69:99:
7f:c2:e1:3f:5e:96:7a:eb:c5:f2:ae:47:ec:bc:6f:74:3b:42:
6d:b8:e7:84:56:dc:f6:6d:91:8e:a3:ff:15:65:36:88:f5:e1:
5d:ac:60:21:90:0c:2a:b6:b4:15:df:c1:85:a4:a6:e0:0d:76:
50:dc:64:ef:49:66:23:01:01:2a:84:c1:f6:56:ba:c9:b1:be:
0f:48:f2:8c:b7:fc:fa:01:16:c1:bb:2e:1a:52:52:90:53:de:
ed:9f:fe:37:7b:49:1d:8b:3e:74:05:51:8c:43:3e:64:77:6f:
0d:e4:36:73:4c:2e:eb:00:67:eb:af:59:c0:10:7d:51:98:74:
82:c1:14:d8:0c:ec:d6:3f:38:31:64:80:e7:2e:4e:82:e6:b4:
18:af:da:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:15 2023 by rpki-client on console-ams.rpki-client.org