Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/26ceeb-7e78-43e0-9ac2-afa0d4d8b1fd/1/SSPM6x2aV7C-yKLPJcqgOymJ4I0.roa
File: SSPM6x2aV7C-yKLPJcqgOymJ4I0.roa (raw, json)
Hash identifier: 72IKiZ35ayl4QuY7VB5CFAwO4hq+d6IpN1NeLB5yOkk=
Subject key identifier: 49:23:CC:EB:1D:9A:57:B0:BE:C8:A2:CF:25:CA:A0:3B:29:89:E0:8D
Certificate issuer: /CN=39f50f6b604dcbd2f47400d8888c4541cac89708
Certificate serial: 01857169A8960D93A2D02157CE90836D78E7
Authority key identifier: 39:F5:0F:6B:60:4D:CB:D2:F4:74:00:D8:88:8C:45:41:CA:C8:97:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OfUPa2BNy9L0dADYiIxFQcrIlwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/26ceeb-7e78-43e0-9ac2-afa0d4d8b1fd/1/SSPM6x2aV7C-yKLPJcqgOymJ4I0.roa
Signing time: Mon 02 Jan 2023 07:37:07 +0000
ROA not before: Mon 02 Jan 2023 07:37:07 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206423
IP address blocks: 185.156.252.0/22 maxlen: 22
2a07:a1c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:a8:96:0d:93:a2:d0:21:57:ce:90:83:6d:78:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39f50f6b604dcbd2f47400d8888c4541cac89708
Validity
Not Before: Jan 2 07:37:07 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4923cceb1d9a57b0bec8a2cf25caa03b2989e08d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:fe:ea:3f:26:9c:d4:88:cc:00:35:0b:e6:d2:
cb:64:c9:92:f6:7e:9b:36:d2:a0:41:95:0d:18:32:
b4:83:68:92:fd:14:5b:ba:f9:30:d8:50:2f:d7:ad:
af:62:7f:06:67:de:61:a7:19:8b:2b:5f:d0:75:85:
49:0d:3f:47:76:a1:2d:14:fd:65:b8:dc:86:91:60:
76:b4:5f:26:92:6d:76:e1:15:cb:33:7c:31:0d:59:
4a:bd:57:99:38:62:a9:af:3d:e4:28:e9:64:72:a8:
8b:3c:49:08:93:0b:e0:48:12:61:02:a3:c5:7a:20:
8c:7d:ac:33:aa:11:eb:d9:0c:a8:12:d4:00:55:e8:
ca:95:7b:d9:af:78:c9:8f:0a:bc:7c:2d:22:d1:96:
f8:31:29:22:ff:48:32:ce:f6:1b:04:d3:09:2f:7b:
03:d8:c6:82:c1:2a:6f:dd:76:f2:79:47:0e:eb:43:
47:18:3d:bc:83:7f:1d:af:fb:53:47:41:14:df:3f:
9b:9e:1e:16:1c:e8:44:62:3f:62:3b:f7:10:f9:8b:
93:f3:ca:42:ac:a5:96:b5:25:a9:9f:9c:03:ca:c5:
46:53:b9:1f:5c:bd:a5:5b:e3:15:1e:a7:13:a3:13:
16:ee:f8:ec:4b:bd:53:0b:e0:e0:18:e3:0e:52:a2:
87:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:23:CC:EB:1D:9A:57:B0:BE:C8:A2:CF:25:CA:A0:3B:29:89:E0:8D
X509v3 Authority Key Identifier:
keyid:39:F5:0F:6B:60:4D:CB:D2:F4:74:00:D8:88:8C:45:41:CA:C8:97:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OfUPa2BNy9L0dADYiIxFQcrIlwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/26ceeb-7e78-43e0-9ac2-afa0d4d8b1fd/1/SSPM6x2aV7C-yKLPJcqgOymJ4I0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/26ceeb-7e78-43e0-9ac2-afa0d4d8b1fd/1/OfUPa2BNy9L0dADYiIxFQcrIlwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.156.252.0/22
IPv6:
2a07:a1c0::/29
Signature Algorithm: sha256WithRSAEncryption
29:7c:07:c6:86:c8:23:9c:26:bf:67:9b:47:50:64:53:ed:63:
d7:c0:18:2c:87:69:a8:e3:66:37:eb:4f:30:7a:cd:7d:14:70:
27:f5:15:b9:80:09:8a:fe:a0:d2:c8:9c:3d:48:3b:31:27:df:
22:2f:2a:ce:ab:65:02:0c:4c:eb:10:4b:8c:82:33:40:8c:b2:
98:b7:0e:ae:52:b3:07:a5:8e:9b:93:46:c6:ce:49:a1:e7:b6:
06:d2:b5:53:d9:15:8f:ba:69:b4:65:d1:e0:dc:99:2b:96:8d:
dc:44:01:82:03:83:d4:25:09:4c:48:f5:35:62:d9:f9:8f:4e:
b8:bf:09:cc:dd:c9:14:7d:39:d1:c9:8e:ae:30:cc:46:14:e1:
6e:72:58:86:ce:1f:6f:c7:62:a2:44:8f:88:02:7d:ba:7e:94:
91:51:73:42:a8:f0:73:79:2f:e7:fd:6c:38:c1:14:4f:c8:8a:
b1:cc:30:d7:80:b8:2c:b4:32:41:89:af:d6:aa:0c:96:50:e3:
38:ff:27:db:a1:92:c3:61:4e:ad:0a:71:ee:ca:ea:12:bc:d3:
72:7b:33:42:03:b2:8e:67:4a:69:5e:b7:16:2f:76:12:16:3d:
55:e9:0c:b8:82:e1:27:b4:ad:8b:d0:a4:35:cc:1f:f8:d6:9b:
06:12:33:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:25 2024 by rpki-client on console-fra.rpki-client.org