Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/963192-9b60-4f5f-821e-2e686bc79c0e/1/yHSbIFXcLqzis4Ru0ofBqLcWbtw.roa
File: yHSbIFXcLqzis4Ru0ofBqLcWbtw.roa (raw, json)
Hash identifier: mS2R9Fg+tyPLvUQdIdVeMOetRMM64qEhmDDTkplP4Fk=
Subject key identifier: C8:74:9B:20:55:DC:2E:AC:E2:B3:84:6E:D2:87:C1:A8:B7:16:6E:DC
Certificate issuer: /CN=d592cb39d4f644e4cd0adfd299282e54c3995195
Certificate serial: 0E7571FA
Authority key identifier: D5:92:CB:39:D4:F6:44:E4:CD:0A:DF:D2:99:28:2E:54:C3:99:51:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ZLLOdT2ROTNCt_SmSguVMOZUZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/963192-9b60-4f5f-821e-2e686bc79c0e/1/yHSbIFXcLqzis4Ru0ofBqLcWbtw.roa
Signing time: Thu 23 Jun 2022 15:22:31 +0000
ROA not before: Thu 23 Jun 2022 15:22:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211094
IP address blocks: 185.240.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 242577914 (0xe7571fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d592cb39d4f644e4cd0adfd299282e54c3995195
Validity
Not Before: Jun 23 15:22:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c8749b2055dc2eace2b3846ed287c1a8b7166edc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:7f:ff:74:67:2e:0f:23:c8:fa:14:e0:18:67:
20:2f:5e:a7:ad:8f:cb:62:c0:bc:92:e5:cf:99:e3:
a3:09:0a:c9:9e:17:e6:19:89:61:01:dc:65:16:bc:
64:f3:3e:1f:66:df:96:4e:38:d5:e8:99:e9:aa:0c:
04:63:b3:ba:f3:a1:25:b4:d5:17:9d:19:65:da:2a:
7a:c1:ee:7d:9e:73:e6:29:c6:eb:c7:58:bd:e6:fc:
bf:cf:c4:4b:0e:79:c6:d3:ba:16:57:3b:d8:67:fb:
fe:a8:5f:a8:cf:63:e1:f8:7c:b8:c2:86:e2:0f:69:
a5:0e:6b:34:83:e5:c2:97:5e:01:5a:2f:13:82:37:
d5:6a:19:f4:05:a7:fc:d5:f4:72:12:82:59:51:ee:
85:77:d3:af:68:93:4b:c4:6f:41:61:d7:2b:f2:bf:
ba:00:7d:92:71:8f:17:f0:50:91:42:96:cb:b8:8a:
63:5a:15:a6:3b:20:04:e1:f9:ff:ab:ca:6e:98:5a:
86:f8:ef:9c:27:c6:5a:4e:bf:98:66:a2:bd:e9:e5:
74:a2:af:6d:7d:d9:37:06:7f:73:ac:95:f5:bb:28:
22:46:b3:f5:58:09:2d:a1:35:57:fc:c6:ec:b4:5b:
d4:19:54:91:d2:77:d2:9d:03:a8:f7:58:dd:45:66:
60:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:74:9B:20:55:DC:2E:AC:E2:B3:84:6E:D2:87:C1:A8:B7:16:6E:DC
X509v3 Authority Key Identifier:
keyid:D5:92:CB:39:D4:F6:44:E4:CD:0A:DF:D2:99:28:2E:54:C3:99:51:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ZLLOdT2ROTNCt_SmSguVMOZUZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/963192-9b60-4f5f-821e-2e686bc79c0e/1/yHSbIFXcLqzis4Ru0ofBqLcWbtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/963192-9b60-4f5f-821e-2e686bc79c0e/1/1ZLLOdT2ROTNCt_SmSguVMOZUZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.240.0/24
Signature Algorithm: sha256WithRSAEncryption
89:77:76:76:6f:de:ed:1f:de:79:a9:0c:09:32:e9:b4:ca:e8:
d3:4e:a6:ba:39:46:40:f7:fd:91:12:6d:a2:ba:d6:97:b5:25:
76:6f:1a:d8:e8:33:53:ac:26:e7:77:92:57:7d:92:02:87:90:
8d:1e:dc:c7:6a:03:66:93:13:7f:fc:90:be:40:43:46:fa:dc:
06:fc:3c:55:c8:15:67:c0:a9:40:46:3f:2f:ec:2a:57:73:4b:
a4:f8:af:14:3a:ff:5a:d9:b8:c1:78:7e:aa:f5:39:55:aa:ad:
68:06:72:8d:60:c9:8e:c1:ab:f7:05:87:31:c7:af:ad:03:7a:
a9:ba:b6:51:fa:b6:0c:80:79:51:70:1a:3c:5c:c5:e0:d0:4a:
e3:4f:2d:f4:5d:20:eb:95:8e:ed:f6:02:77:26:02:cd:c1:29:
2d:fe:82:82:a3:23:bb:67:d2:07:fc:d1:fc:8d:72:e1:a2:ae:
2d:02:80:8b:a8:78:b0:cc:89:93:7a:66:ff:77:e6:1e:9e:a3:
a5:40:9a:67:45:93:d8:ab:f3:4f:af:a2:ec:36:14:32:fe:24:
29:0a:d8:05:62:d9:7c:80:86:ff:b3:88:be:02:e5:71:21:6b:
09:f4:25:7e:df:31:d8:10:fa:c6:a7:86:d4:91:e0:7d:42:06:
32:69:72:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:31 2023 by rpki-client on console-fra.rpki-client.org