Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/2e5f09-4ea9-465f-9300-baf26cb394d8/1/pq1G5Yzck0-I_80UrwLXS7DrAkQ.roa
File: pq1G5Yzck0-I_80UrwLXS7DrAkQ.roa (raw, json)
Hash identifier: Mf1Gf4aCrY1r42AsYo5n9RDcJbcQPZEoT9PmnR8EnEM=
Subject key identifier: A6:AD:46:E5:8C:DC:93:4F:88:FF:CD:14:AF:02:D7:4B:B0:EB:02:44
Certificate issuer: /CN=eacebaddc0210ec6f24905d1f9cebcb3e0c012c8
Certificate serial: 06AD129B
Authority key identifier: EA:CE:BA:DD:C0:21:0E:C6:F2:49:05:D1:F9:CE:BC:B3:E0:C0:12:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6s663cAhDsbySQXR-c68s-DAEsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/2e5f09-4ea9-465f-9300-baf26cb394d8/1/pq1G5Yzck0-I_80UrwLXS7DrAkQ.roa
Signing time: Sat 01 Jan 2022 03:56:13 +0000
ROA not before: Sat 01 Jan 2022 03:56:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207709
IP address blocks: 195.85.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112005787 (0x6ad129b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eacebaddc0210ec6f24905d1f9cebcb3e0c012c8
Validity
Not Before: Jan 1 03:56:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a6ad46e58cdc934f88ffcd14af02d74bb0eb0244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ef:fe:c9:b9:fa:b6:b1:b5:15:89:8a:dd:3b:
b7:89:cb:6e:06:05:a5:0d:7f:f6:35:f2:0a:75:c7:
7d:c7:1d:58:d0:49:e4:21:8c:e9:b4:3a:fe:19:68:
4f:3b:cf:38:77:b8:96:45:43:b8:08:9f:4a:e6:fa:
f6:5f:aa:58:37:0d:a9:0a:f3:5e:4f:6c:4d:b9:e2:
10:16:65:9f:15:8e:f1:7a:cf:42:01:89:fb:2e:b2:
a3:68:cc:8a:67:31:8c:15:65:06:5c:d0:8d:59:71:
ce:2a:dd:fa:47:75:04:62:b2:60:38:52:bd:ac:a1:
95:90:07:7a:63:a5:64:24:c2:09:3b:05:f9:63:b2:
10:08:d5:5c:ae:9d:c1:a2:04:5e:2c:a1:ed:8b:b8:
9f:1b:4e:41:65:1c:66:04:6c:37:9d:c8:08:71:9a:
f9:cf:28:e0:1a:f1:b8:96:8b:86:88:7f:1a:86:3a:
52:5b:81:01:bb:b7:9a:c4:62:a1:09:5d:50:62:9b:
fd:ea:62:be:0f:69:52:2c:d8:d6:98:7f:2a:c7:05:
61:67:91:20:ee:ce:b6:ed:3d:74:92:61:9a:e1:6f:
52:c9:c5:51:c1:b4:1d:21:9f:19:87:72:98:98:ff:
1e:99:d2:71:38:56:87:3a:10:74:53:9c:0a:e6:d7:
2d:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:AD:46:E5:8C:DC:93:4F:88:FF:CD:14:AF:02:D7:4B:B0:EB:02:44
X509v3 Authority Key Identifier:
keyid:EA:CE:BA:DD:C0:21:0E:C6:F2:49:05:D1:F9:CE:BC:B3:E0:C0:12:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6s663cAhDsbySQXR-c68s-DAEsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/2e5f09-4ea9-465f-9300-baf26cb394d8/1/pq1G5Yzck0-I_80UrwLXS7DrAkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/2e5f09-4ea9-465f-9300-baf26cb394d8/1/6s663cAhDsbySQXR-c68s-DAEsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.85.216.0/24
Signature Algorithm: sha256WithRSAEncryption
48:a3:e6:b9:65:46:35:1f:e3:e0:79:12:93:42:16:11:8d:82:
f8:a0:00:4a:d7:a7:8b:15:ec:29:a5:2e:ff:53:cb:44:3b:68:
38:1f:34:52:27:0a:70:22:43:eb:b9:e1:0e:be:fc:9c:0f:2b:
ce:d2:37:45:b8:14:61:e2:91:c1:0d:43:fb:be:22:ab:bd:26:
e1:2f:84:32:c1:e7:be:a8:1f:0c:16:e3:3f:e6:0b:65:43:4a:
e2:85:15:80:c2:5c:63:ed:47:18:d8:03:fb:67:48:d8:f7:82:
a7:88:57:da:e5:d1:90:12:3c:b8:e6:2b:74:a2:4a:a3:8d:2b:
de:40:35:c1:4f:52:78:57:e6:7d:61:80:17:a5:8f:08:a7:24:
cd:af:dc:13:52:b6:70:14:05:15:c1:9b:9e:d6:df:32:df:be:
77:60:e5:7e:8f:91:a9:2d:6d:86:c2:ac:12:22:63:6c:20:19:
10:0b:b7:52:a4:fe:a9:80:a0:84:56:36:ad:a8:8c:56:31:d7:
d1:8a:fa:a1:ce:c8:7d:74:32:4b:6c:19:f6:ae:1b:9b:43:3b:
0d:13:b1:a5:41:3e:89:ec:0e:e0:e2:d5:a1:c2:62:38:10:72:
a5:30:2c:57:89:32:e2:73:eb:6d:6d:2e:0e:60:0f:14:c1:25:
fa:b7:f6:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:51 2023 by rpki-client on console-ams.rpki-client.org