Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/42edbd-ceeb-410a-8fef-ecc5b082ca02/1/KyFo8P57o-wTJfmc3ycN5EggSlQ.roa
File: KyFo8P57o-wTJfmc3ycN5EggSlQ.roa (raw, json)
Hash identifier: wyEeG8qo4xjbLw03flISuJEvIcvx4bdeM/aDgl9oo6U=
Subject key identifier: 2B:21:68:F0:FE:7B:A3:EC:13:25:F9:9C:DF:27:0D:E4:48:20:4A:54
Certificate issuer: /CN=eb8e6be2f8da5a6250786fddac0740be89ca6d7c
Certificate serial: 018570D51E1C17CE3BCC5DF13F6348D47F25
Authority key identifier: EB:8E:6B:E2:F8:DA:5A:62:50:78:6F:DD:AC:07:40:BE:89:CA:6D:7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/645r4vjaWmJQeG_drAdAvonKbXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/42edbd-ceeb-410a-8fef-ecc5b082ca02/1/KyFo8P57o-wTJfmc3ycN5EggSlQ.roa
Signing time: Mon 02 Jan 2023 04:54:53 +0000
ROA not before: Mon 02 Jan 2023 04:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202074
IP address blocks: 185.235.204.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:1e:1c:17:ce:3b:cc:5d:f1:3f:63:48:d4:7f:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb8e6be2f8da5a6250786fddac0740be89ca6d7c
Validity
Not Before: Jan 2 04:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2b2168f0fe7ba3ec1325f99cdf270de448204a54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:71:20:7d:4d:11:ee:14:2c:b3:bf:d6:aa:f1:
f1:7c:cf:40:ef:f4:a0:8a:6e:fe:16:8b:1d:24:94:
4e:b8:2a:ea:d5:6b:50:62:a3:55:2d:e9:d5:3d:f3:
bf:fe:7f:44:21:e5:61:cb:85:d0:e7:ee:27:2d:4c:
07:8d:1f:5a:02:59:c6:30:bc:b0:72:c6:0d:bb:d8:
97:bb:91:12:67:7a:84:0c:8e:e4:fa:9a:df:8d:cd:
9e:4b:ba:5c:c9:09:dd:d9:eb:c4:d0:29:5e:3b:c6:
34:ff:09:23:eb:0a:3a:07:2e:4d:28:71:aa:a4:9b:
9b:d5:33:b7:58:c3:f0:b6:c1:6e:90:59:6d:53:85:
33:32:e5:08:c9:bb:f9:0d:4c:65:71:55:4c:32:1b:
09:ee:f3:b3:cf:7f:ed:ae:4e:b4:3e:6f:39:74:b6:
f7:cc:eb:04:f6:47:9c:56:61:f4:d5:8d:7c:d9:8e:
84:e2:96:58:94:b9:86:d0:75:d5:38:6f:fb:a7:7f:
cc:68:64:5d:f2:09:fa:76:69:a0:30:65:cd:06:0c:
45:25:46:45:51:ed:81:1c:bf:21:89:0b:04:90:bb:
33:16:8b:b6:54:d6:b9:9f:64:ce:83:1f:76:6a:b3:
80:ed:36:cc:69:38:84:8b:fb:33:b2:d9:06:dc:39:
08:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:21:68:F0:FE:7B:A3:EC:13:25:F9:9C:DF:27:0D:E4:48:20:4A:54
X509v3 Authority Key Identifier:
keyid:EB:8E:6B:E2:F8:DA:5A:62:50:78:6F:DD:AC:07:40:BE:89:CA:6D:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/645r4vjaWmJQeG_drAdAvonKbXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/42edbd-ceeb-410a-8fef-ecc5b082ca02/1/KyFo8P57o-wTJfmc3ycN5EggSlQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/42edbd-ceeb-410a-8fef-ecc5b082ca02/1/645r4vjaWmJQeG_drAdAvonKbXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.204.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:6f:8d:e6:ec:c2:0b:ca:b3:81:27:01:6c:68:e8:46:cb:e7:
3b:87:1f:f8:aa:89:c6:31:cd:0a:bc:2f:6d:a7:b2:97:31:48:
de:81:8d:bb:ce:33:9e:07:53:7d:e1:17:50:64:1d:a5:44:aa:
87:12:bf:79:3e:bb:db:94:da:fa:90:62:8c:15:56:8c:3e:5b:
bb:e8:99:e9:e6:dd:d5:79:ca:93:c3:73:8a:d4:9f:da:68:18:
f0:2f:1e:bc:17:0a:12:c4:98:6a:45:f9:26:07:3d:d1:5f:a4:
91:bb:6d:b1:c7:5d:8b:c6:47:9d:b8:ae:be:91:4a:ac:7f:e8:
01:48:4b:b9:5b:08:18:0a:87:77:eb:08:96:e6:99:34:0a:f6:
e1:cd:a1:12:af:f2:53:f9:40:4a:a1:b9:b4:91:3c:c6:b9:a0:
bf:e4:ef:90:67:d5:a9:94:b5:c4:91:a6:1b:59:23:27:32:eb:
67:80:ec:66:b0:42:5f:45:bf:71:b2:74:cc:41:0e:a0:ee:a0:
cb:81:ef:b9:20:92:e7:28:fd:4f:2a:b9:b3:2c:d4:02:98:f5:
d3:6a:2c:3a:7d:ea:bb:5f:d2:42:42:ef:6a:10:40:76:71:f8:
62:b6:03:68:b4:f3:8c:39:05:bd:2f:6c:73:7d:94:41:f2:5a:
3d:89:5c:bc
-----BEGIN CERTIFICATE-----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Generated at Wed Aug 9 08:34:27 2023 by rpki-client on console-ams.rpki-client.org