Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/372b31-7114-4af0-8bb1-e99924daa1d5/1/ILfYUxSxqwdFcMDIIc5QfJ0Q7Mw.roa
File: ILfYUxSxqwdFcMDIIc5QfJ0Q7Mw.roa (raw, json)
Hash identifier: kswoqoBH1v2J3K6kUpq8g1uiYIxHs4bmL8f1J6TeO54=
Subject key identifier: 20:B7:D8:53:14:B1:AB:07:45:70:C0:C8:21:CE:50:7C:9D:10:EC:CC
Certificate issuer: /CN=601d9cd2e30c3ea2ba586cd81f3eb26a1a000f56
Certificate serial: 018337512E9A6AC1370A314033DEBDFB7BEB
Authority key identifier: 60:1D:9C:D2:E3:0C:3E:A2:BA:58:6C:D8:1F:3E:B2:6A:1A:00:0F:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YB2c0uMMPqK6WGzYHz6yahoAD1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/372b31-7114-4af0-8bb1-e99924daa1d5/1/ILfYUxSxqwdFcMDIIc5QfJ0Q7Mw.roa
Signing time: Tue 13 Sep 2022 14:46:50 +0000
ROA not before: Tue 13 Sep 2022 14:46:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3170
IP address blocks: 185.229.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:37:51:2e:9a:6a:c1:37:0a:31:40:33:de:bd:fb:7b:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=601d9cd2e30c3ea2ba586cd81f3eb26a1a000f56
Validity
Not Before: Sep 13 14:46:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=20b7d85314b1ab074570c0c821ce507c9d10eccc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d4:6c:10:04:1f:5f:25:e1:c5:ff:4d:47:2b:
df:62:5b:b6:ef:ed:a9:b1:e9:9c:34:0d:fb:a2:2a:
4e:03:be:b9:7e:6c:d7:46:54:4a:d0:80:d1:a1:65:
92:5e:c2:fa:05:6b:de:3c:64:b2:13:1c:d0:fc:2e:
b1:e9:53:19:15:31:69:82:64:c6:ce:64:ab:ba:7a:
94:8e:41:5d:aa:67:ed:5f:7c:a5:5c:b2:b4:77:b5:
24:6a:9d:d0:71:8d:b2:f8:ec:d7:3b:6e:af:7c:42:
d9:5c:26:cf:7c:e9:76:f7:e1:19:df:b8:8f:1f:55:
39:e0:f0:f1:f0:3a:72:cd:08:94:fb:f2:85:f6:f8:
ca:7d:d3:4b:46:0c:46:23:f9:9a:0e:d3:f0:70:fa:
30:e8:f5:99:51:aa:26:d3:a5:40:5d:ea:43:22:7a:
c9:11:39:5d:b1:cd:74:12:4e:f6:c1:60:d1:f8:dc:
9f:79:28:c5:6e:7a:76:28:bd:12:cd:24:a1:b5:d3:
7d:ac:cb:ed:63:ef:6c:ae:9b:b1:d5:2c:8e:88:80:
c3:d9:d9:c0:56:b6:52:9c:47:4a:3b:c1:eb:9d:83:
19:79:17:99:6c:85:66:0b:24:dc:37:a5:86:15:74:
8e:44:de:bd:c9:c8:44:20:4b:11:a8:99:b9:6b:9b:
63:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:B7:D8:53:14:B1:AB:07:45:70:C0:C8:21:CE:50:7C:9D:10:EC:CC
X509v3 Authority Key Identifier:
keyid:60:1D:9C:D2:E3:0C:3E:A2:BA:58:6C:D8:1F:3E:B2:6A:1A:00:0F:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YB2c0uMMPqK6WGzYHz6yahoAD1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/372b31-7114-4af0-8bb1-e99924daa1d5/1/ILfYUxSxqwdFcMDIIc5QfJ0Q7Mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/372b31-7114-4af0-8bb1-e99924daa1d5/1/YB2c0uMMPqK6WGzYHz6yahoAD1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.229.220.0/24
Signature Algorithm: sha256WithRSAEncryption
69:83:a5:46:27:7a:a9:b3:43:80:ec:88:e8:80:08:95:9e:d8:
2e:52:b1:89:23:89:c6:55:2d:17:89:45:e0:5a:bc:46:d3:55:
3c:ba:40:57:a5:ba:3b:6d:56:9c:48:91:43:82:77:09:1a:9e:
24:17:92:11:88:73:05:77:dc:76:52:d5:de:07:28:66:aa:04:
67:5e:1e:ba:bc:d6:94:13:f6:df:13:2b:3c:5f:ec:78:a3:7d:
b8:5d:fd:f8:39:12:6c:ad:07:5d:a8:0f:2b:4d:48:d6:0c:f3:
a3:b3:64:e1:41:8c:09:d3:c2:23:79:e3:9b:32:06:ae:ad:d8:
12:07:9f:05:1a:8b:31:03:3f:58:74:55:0b:9a:5f:05:40:37:
56:cd:65:bd:50:07:a6:88:12:ed:e0:8e:be:5c:ed:0b:54:6a:
b1:15:9d:2d:47:1d:7f:70:53:58:bd:91:35:a2:d9:2d:c8:11:
6c:60:66:d9:39:7d:83:44:6c:9a:eb:8c:36:b5:ac:66:15:3b:
d2:8a:ce:2e:4c:b6:0c:8a:5b:13:76:bc:c2:43:e1:96:3b:03:
27:20:23:d0:81:1a:cc:52:21:c1:04:35:0d:7a:3f:d4:5f:ae:
62:5b:cd:b7:f5:ab:11:b0:ba:a9:a2:31:31:d5:26:61:bb:23:
f5:c4:c0:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:23:44 2024 by rpki-client on console-ams.rpki-client.org