Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/3cbd92-75e1-42db-9682-d5f687300b59/1/A2ZCbX1Lz5vbo0oIVLvqHklqQwk.roa
File: A2ZCbX1Lz5vbo0oIVLvqHklqQwk.roa (raw, json)
Hash identifier: ayMTiHhzGtyQiEc5/R5KwMAp0YsBUSHMhUqoYOSPVa4=
Subject key identifier: 03:66:42:6D:7D:4B:CF:9B:DB:A3:4A:08:54:BB:EA:1E:49:6A:43:09
Certificate issuer: /CN=be54d4f10bfc4ebcaba353a9dfe7c67d2472b94e
Certificate serial: 032A6C98
Authority key identifier: BE:54:D4:F1:0B:FC:4E:BC:AB:A3:53:A9:DF:E7:C6:7D:24:72:B9:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlTU8Qv8Tryro1Op3-fGfSRyuU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/3cbd92-75e1-42db-9682-d5f687300b59/1/A2ZCbX1Lz5vbo0oIVLvqHklqQwk.roa
Signing time: Sat 01 Jan 2022 05:53:14 +0000
ROA not before: Sat 01 Jan 2022 05:53:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 185.223.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53111960 (0x32a6c98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be54d4f10bfc4ebcaba353a9dfe7c67d2472b94e
Validity
Not Before: Jan 1 05:53:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0366426d7d4bcf9bdba34a0854bbea1e496a4309
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f1:1a:0d:ca:fb:3b:6b:aa:3c:7e:93:db:f6:
7f:5a:a0:67:b3:b7:34:64:20:e2:29:4d:5a:92:90:
52:5c:53:b1:b3:22:18:2e:50:34:37:56:a5:aa:59:
f5:5c:05:61:6c:d0:f7:8e:0c:52:1b:59:fc:0a:44:
75:cc:8b:b2:f3:25:88:5a:ac:9e:8d:70:07:2a:34:
8f:b4:bc:c3:e9:02:e1:5e:ec:13:72:12:b1:e3:23:
c3:a4:41:14:97:45:5e:dd:3c:14:cd:13:3f:d1:49:
c8:9d:a8:9c:21:cc:8a:ea:b9:cf:c3:d8:39:bc:78:
74:c4:61:9b:81:ea:b0:b9:02:3a:16:f7:bc:b1:54:
65:32:d0:8c:e8:98:3e:26:b6:22:4f:c9:3d:01:0e:
0b:dd:07:a2:db:6a:54:d2:43:f6:d5:7b:02:c9:ff:
b7:15:c0:b3:a2:5b:67:dd:f0:77:d4:b6:ee:38:7e:
37:19:79:85:16:52:e2:3f:eb:93:2c:f7:c0:83:8a:
07:1d:3a:7b:39:5a:c5:72:b6:cc:42:07:69:a8:0d:
1c:c6:55:53:6e:bf:85:dd:4a:5f:9e:76:df:36:56:
a0:4f:f2:26:8a:e4:64:d9:05:ad:a2:c0:11:e6:8c:
c6:a1:33:60:a5:d5:2c:d4:2f:c6:ff:64:80:cd:37:
f9:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:66:42:6D:7D:4B:CF:9B:DB:A3:4A:08:54:BB:EA:1E:49:6A:43:09
X509v3 Authority Key Identifier:
keyid:BE:54:D4:F1:0B:FC:4E:BC:AB:A3:53:A9:DF:E7:C6:7D:24:72:B9:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlTU8Qv8Tryro1Op3-fGfSRyuU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3cbd92-75e1-42db-9682-d5f687300b59/1/A2ZCbX1Lz5vbo0oIVLvqHklqQwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/3cbd92-75e1-42db-9682-d5f687300b59/1/vlTU8Qv8Tryro1Op3-fGfSRyuU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.223.214.0/24
Signature Algorithm: sha256WithRSAEncryption
94:6a:a1:05:b2:17:cf:1a:03:96:b2:dc:7b:80:67:2b:4f:13:
00:47:53:89:a2:e2:29:32:ae:99:b4:8a:04:70:6c:3f:ed:32:
9e:fb:1b:fe:d6:d8:35:06:1d:2c:1d:ae:8e:8f:bd:dc:d7:8b:
27:7e:a3:04:bd:ba:17:8b:1e:ba:5f:4b:db:13:f8:04:a5:58:
94:4b:1d:fa:6e:46:2e:8d:94:c8:58:3c:be:11:ae:9b:14:ce:
1b:9b:35:d3:ee:6a:2d:e4:48:35:af:fb:72:4e:92:53:ba:0c:
5f:74:37:1c:c5:0b:7e:2d:cd:96:91:08:be:b1:20:7d:22:c1:
cc:a5:20:ef:94:7f:64:fc:47:e5:e7:51:7e:e4:56:4f:4e:e0:
61:43:f1:17:df:66:38:10:61:6b:5d:37:fb:ab:1c:c8:84:4e:
95:48:78:cb:bf:1c:41:ca:96:56:c4:ff:19:7c:4d:f5:61:bc:
a2:2d:b5:b2:a9:8d:36:d5:af:ef:5f:c9:bb:a5:6a:6e:de:75:
eb:a4:e3:9c:54:b8:4b:01:62:2b:23:31:80:d6:4e:d6:9b:00:
77:8d:ab:73:41:72:0a:7b:db:7b:c4:49:cc:a5:2d:d0:84:f4:
ec:4b:a4:a1:9d:63:39:b8:5d:4a:1f:eb:23:22:e4:44:f2:1b:
a2:8b:b9:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:26 2024 by rpki-client on console-fra.rpki-client.org