Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/559c88-92bc-4772-84f3-69f13af5432d/1/HxmFgdQvthPWeonylIfW4iSBc3s.roa
File: HxmFgdQvthPWeonylIfW4iSBc3s.roa (raw, json)
Hash identifier: LxdYFfNHX1Lb7MNQhgj0F8k2VwuWm5e60/v/lUfxbqE=
Subject key identifier: 1F:19:85:81:D4:2F:B6:13:D6:7A:89:F2:94:87:D6:E2:24:81:73:7B
Certificate issuer: /CN=a477c6fe4b7bac1b623dcdc72bb6c62f00261f1e
Certificate serial: 019789
Authority key identifier: A4:77:C6:FE:4B:7B:AC:1B:62:3D:CD:C7:2B:B6:C6:2F:00:26:1F:1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHfG_kt7rBtiPc3HK7bGLwAmHx4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/559c88-92bc-4772-84f3-69f13af5432d/1/HxmFgdQvthPWeonylIfW4iSBc3s.roa
Signing time: Thu 16 Jun 2022 10:09:44 +0000
ROA not before: Thu 16 Jun 2022 10:09:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201557
IP address blocks: 185.25.200.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104329 (0x19789)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a477c6fe4b7bac1b623dcdc72bb6c62f00261f1e
Validity
Not Before: Jun 16 10:09:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f198581d42fb613d67a89f29487d6e22481737b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ef:15:28:54:48:99:0f:95:dc:ae:f5:50:96:
82:7f:28:f9:a0:cb:ef:03:b9:0d:0d:48:fd:fb:d2:
e2:fd:7c:a5:a3:fe:85:da:34:3d:1c:2e:22:69:8b:
0c:1e:03:f7:39:8b:db:a6:e9:5d:77:56:93:75:b7:
a1:e6:f4:4e:b3:0c:8a:0f:9b:f5:97:7c:86:07:18:
90:2c:8e:e2:9b:57:16:fc:fb:93:19:7f:44:1d:1a:
b3:e4:36:25:37:fe:eb:21:a8:82:da:4e:d6:5a:47:
9d:37:78:e0:c5:a9:4a:c3:39:be:79:10:d1:c4:28:
2b:01:95:96:a8:b4:da:43:e6:4f:6c:98:99:d1:44:
7d:35:c7:3d:a7:73:64:ae:da:2e:15:a9:0c:81:15:
38:b0:be:bb:24:67:e5:33:a3:26:59:5c:45:bd:3f:
94:01:29:b7:6f:81:ef:b1:9f:25:76:df:ff:3e:e9:
2c:52:59:50:12:5e:a1:7b:f7:ab:a2:39:02:c4:51:
73:3e:12:9f:e3:5d:8b:47:4f:f5:19:60:d7:93:40:
40:75:d3:94:10:18:71:f0:d8:82:ac:0d:be:53:3a:
3c:14:3f:f4:e9:b3:f2:1f:f6:f6:81:44:ce:56:9b:
88:1c:60:9c:0c:96:b5:fd:7b:92:e7:96:9e:70:67:
70:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:19:85:81:D4:2F:B6:13:D6:7A:89:F2:94:87:D6:E2:24:81:73:7B
X509v3 Authority Key Identifier:
keyid:A4:77:C6:FE:4B:7B:AC:1B:62:3D:CD:C7:2B:B6:C6:2F:00:26:1F:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHfG_kt7rBtiPc3HK7bGLwAmHx4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/559c88-92bc-4772-84f3-69f13af5432d/1/HxmFgdQvthPWeonylIfW4iSBc3s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/559c88-92bc-4772-84f3-69f13af5432d/1/pHfG_kt7rBtiPc3HK7bGLwAmHx4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.25.200.0/22
Signature Algorithm: sha256WithRSAEncryption
68:72:e0:49:83:24:db:00:68:b4:de:43:cc:34:b2:75:e9:cc:
47:08:da:de:71:68:81:26:49:9d:96:86:0b:19:a8:62:2d:8f:
11:a4:54:e7:58:8d:05:12:23:5e:f4:69:ca:0e:b5:2d:97:0c:
c5:d6:b0:3d:1e:d4:06:89:fb:c2:ba:d4:7d:14:2d:c3:ba:24:
62:a5:be:df:a5:04:b6:ce:e2:9b:00:de:da:1a:43:2f:ed:91:
26:45:8b:7a:42:33:c9:c4:74:66:43:1b:4f:30:01:b9:7b:d3:
94:06:bd:d1:d8:0f:6b:ad:91:a7:f0:39:e4:66:02:dc:50:e8:
65:6c:d0:6f:ab:60:17:bb:23:68:1a:18:bb:3f:45:82:55:bd:
f7:a1:4c:2e:35:5c:52:fd:4b:22:3f:6a:52:79:a5:a2:cf:df:
9b:16:ce:3e:b8:73:ab:cd:fb:cf:ad:bc:22:27:87:9e:88:d5:
61:21:49:ac:a6:cb:0c:f3:45:84:91:d8:4f:66:e2:6c:ff:27:
dc:ca:d0:fd:4e:f4:fa:91:73:26:57:a0:6f:56:cb:81:63:7e:
b8:4c:6c:c6:6d:d1:cd:bc:d6:fb:2b:82:02:75:20:bc:e2:a1:
fc:57:3a:97:39:e6:7a:c2:78:8e:fe:2b:a5:cb:66:f7:e5:a2:
5f:b5:33:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:01 2024 by rpki-client on console-fra.rpki-client.org