Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/2e5f09-4ea9-465f-9300-baf26cb394d8/1/6iZjtVI74uK5GOdlLwaf9qHvjFY.roa
File: 6iZjtVI74uK5GOdlLwaf9qHvjFY.roa (raw, json)
Hash identifier: OAeIcsPRX3Oj++756NAJ1OvZiMF/x9t+0lWjQOVSaBU=
Subject key identifier: EA:26:63:B5:52:3B:E2:E2:B9:18:E7:65:2F:06:9F:F6:A1:EF:8C:56
Certificate issuer: /CN=eacebaddc0210ec6f24905d1f9cebcb3e0c012c8
Certificate serial: 06AD035F
Authority key identifier: EA:CE:BA:DD:C0:21:0E:C6:F2:49:05:D1:F9:CE:BC:B3:E0:C0:12:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6s663cAhDsbySQXR-c68s-DAEsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/2e5f09-4ea9-465f-9300-baf26cb394d8/1/6iZjtVI74uK5GOdlLwaf9qHvjFY.roa
Signing time: Sat 01 Jan 2022 03:56:13 +0000
ROA not before: Sat 01 Jan 2022 03:56:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203576
IP address blocks: 195.85.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112001887 (0x6ad035f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eacebaddc0210ec6f24905d1f9cebcb3e0c012c8
Validity
Not Before: Jan 1 03:56:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea2663b5523be2e2b918e7652f069ff6a1ef8c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:e3:d0:19:ab:65:c6:30:d0:7a:a1:ee:74:17:
4c:d0:ba:92:ff:82:a9:b2:44:d9:ba:4d:06:d9:90:
67:70:e7:68:37:c5:4d:0f:77:af:c7:7b:31:86:9c:
69:83:fe:2d:78:65:3c:fb:d4:c3:14:58:e7:54:ec:
b9:a6:d7:82:93:ea:7a:9a:90:bb:0b:b1:91:26:5a:
45:32:4b:f1:5c:42:8d:6f:18:07:5b:0e:41:d1:8c:
37:7a:5b:72:65:73:f5:ce:31:09:45:d7:76:b6:54:
13:54:79:ac:da:2c:d2:99:0b:1b:28:fd:84:e0:63:
83:12:0f:8c:f4:d5:78:ad:61:1f:62:3d:02:34:32:
6a:4f:ad:ed:07:b9:1b:47:dd:35:46:65:f5:27:e9:
3e:c7:a8:c8:96:a6:d9:a8:05:2f:4e:09:22:83:67:
fe:d9:92:ea:f5:43:d1:ab:2e:38:b8:de:da:b5:3b:
ec:28:e9:59:70:49:9e:f2:ba:02:a1:7f:33:81:ea:
3d:66:7e:88:79:23:b6:1f:eb:3a:e3:ce:97:d9:52:
c6:59:0f:a9:86:c6:17:80:e5:76:4c:2d:50:4c:5f:
29:67:5a:92:0d:4c:33:fc:83:5d:22:37:f8:14:98:
36:e4:e6:ba:5c:a1:c2:3d:51:15:f8:53:48:d4:26:
ce:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:26:63:B5:52:3B:E2:E2:B9:18:E7:65:2F:06:9F:F6:A1:EF:8C:56
X509v3 Authority Key Identifier:
keyid:EA:CE:BA:DD:C0:21:0E:C6:F2:49:05:D1:F9:CE:BC:B3:E0:C0:12:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6s663cAhDsbySQXR-c68s-DAEsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/2e5f09-4ea9-465f-9300-baf26cb394d8/1/6iZjtVI74uK5GOdlLwaf9qHvjFY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/2e5f09-4ea9-465f-9300-baf26cb394d8/1/6s663cAhDsbySQXR-c68s-DAEsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.207.0/24
Signature Algorithm: sha256WithRSAEncryption
46:20:fb:33:27:2e:25:64:2a:33:e8:8b:be:7f:dd:a3:92:be:
33:a6:7c:b7:07:d3:87:60:9c:01:2e:f8:c2:69:12:a5:be:ae:
64:2d:14:0c:51:bb:7b:1c:e3:06:4a:61:11:ea:bf:c3:6d:51:
d3:c7:66:3d:c0:a2:3a:71:37:4c:a8:ad:c6:0b:90:b7:34:6a:
01:e0:67:0b:af:2a:b6:d0:b6:6a:2d:a8:c4:82:1d:44:06:e3:
87:1e:41:85:cf:f4:11:c3:86:66:e1:0c:d4:5a:1b:10:81:8c:
60:21:ff:02:f8:4d:b4:31:db:cf:24:2a:6a:2e:4e:fe:fd:69:
c9:8f:46:9c:d4:55:80:93:66:a0:3b:4c:bd:80:5a:37:34:71:
38:8d:0a:65:29:ca:b0:c8:76:fb:6d:53:eb:c8:fa:41:d4:f0:
66:d1:eb:0b:07:7f:de:c8:37:8d:0a:de:3b:5a:0d:8c:61:6d:
86:62:4e:97:82:cd:47:a8:fe:c9:7c:80:ae:9e:2c:66:71:3a:
1d:52:75:6a:f6:3d:22:64:d5:d4:c6:06:81:ec:2d:bb:28:df:
51:4a:1b:65:79:80:11:a4:99:6a:7e:c3:40:b0:73:fd:0c:f9:
1a:13:47:e7:9b:9a:34:c1:97:97:bf:3a:86:af:35:17:36:ab:
c7:57:f3:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:04 2023 by rpki-client on console-fra.rpki-client.org