Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/20ee6e-c2b1-4d7d-a835-fccbeed8d429/1/YjPvYOGyn_vlJ-CYbOgaBR6qWtw.roa
File: YjPvYOGyn_vlJ-CYbOgaBR6qWtw.roa (raw, json)
Hash identifier: EUf6ZyGS6Odo9oQR+ODykSLEPUWvHsjJTgWsjCEawPg=
Subject key identifier: 62:33:EF:60:E1:B2:9F:FB:E5:27:E0:98:6C:E8:1A:05:1E:AA:5A:DC
Certificate issuer: /CN=dc7ad7daf52f20133a2e302556c67bcedd717eea
Certificate serial: 03B5269C
Authority key identifier: DC:7A:D7:DA:F5:2F:20:13:3A:2E:30:25:56:C6:7B:CE:DD:71:7E:EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3HrX2vUvIBM6LjAlVsZ7zt1xfuo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/20ee6e-c2b1-4d7d-a835-fccbeed8d429/1/YjPvYOGyn_vlJ-CYbOgaBR6qWtw.roa
Signing time: Sat 01 Jan 2022 09:02:55 +0000
ROA not before: Sat 01 Jan 2022 09:02:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212388
IP address blocks: 185.206.71.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62203548 (0x3b5269c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc7ad7daf52f20133a2e302556c67bcedd717eea
Validity
Not Before: Jan 1 09:02:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6233ef60e1b29ffbe527e0986ce81a051eaa5adc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:47:16:3d:f6:94:a0:a5:7d:68:85:20:b8:b5:
a6:df:7a:ae:62:ac:8f:de:75:1d:a3:55:7e:9e:89:
f9:04:cb:97:4d:01:f1:04:86:a1:68:38:26:ac:d1:
4b:c6:dd:f8:17:45:c2:38:3a:25:31:98:77:cc:a3:
00:15:f9:89:68:58:81:65:11:5d:ae:f5:6a:37:32:
4b:7c:f6:bd:e3:af:26:58:36:72:24:0c:19:11:c9:
28:9f:2d:6e:65:f4:83:62:2c:c2:0d:8a:89:f5:e3:
26:a8:15:18:bf:d4:d4:60:87:7d:8c:0c:f9:0d:ba:
5a:c1:e8:ef:a1:c0:90:9d:16:8e:bc:05:f5:3c:ec:
f2:88:c3:03:01:05:a0:04:9d:fd:23:ad:89:51:72:
15:d0:85:73:22:2b:2a:75:27:6d:ec:35:3e:fa:dc:
07:71:74:75:80:67:7c:1e:e4:bb:77:a4:89:8f:a6:
43:a4:7f:02:a0:91:7a:b8:c5:6e:29:bc:97:66:fb:
28:2f:e2:11:8e:b7:c7:0f:ab:3e:2c:26:95:57:a3:
42:28:b7:5c:b2:2c:23:b9:02:d5:39:59:83:02:37:
09:8b:7c:e8:af:cd:77:2a:d3:ac:2a:7e:2e:6f:77:
e7:23:4c:ba:28:3e:b2:74:b9:60:2a:53:ca:10:bc:
7a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:33:EF:60:E1:B2:9F:FB:E5:27:E0:98:6C:E8:1A:05:1E:AA:5A:DC
X509v3 Authority Key Identifier:
keyid:DC:7A:D7:DA:F5:2F:20:13:3A:2E:30:25:56:C6:7B:CE:DD:71:7E:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3HrX2vUvIBM6LjAlVsZ7zt1xfuo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/20ee6e-c2b1-4d7d-a835-fccbeed8d429/1/YjPvYOGyn_vlJ-CYbOgaBR6qWtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/20ee6e-c2b1-4d7d-a835-fccbeed8d429/1/3HrX2vUvIBM6LjAlVsZ7zt1xfuo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.206.71.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:04:ee:7b:59:12:c8:07:84:d0:bf:77:a7:5f:79:70:69:6a:
51:18:ac:e6:1d:dd:cf:f8:86:16:b1:7c:33:b1:0b:c5:37:c6:
2d:6a:cd:28:38:67:b5:9c:f6:bc:b9:c2:7a:d9:5c:33:c1:e2:
1d:d1:18:88:5c:96:2f:5c:62:cc:80:3f:02:49:20:4d:4e:89:
08:e4:88:ef:b5:b6:97:2d:66:1c:31:6a:24:a6:d6:f7:0d:cf:
22:ff:67:4d:74:2a:15:fb:36:16:fa:01:9d:29:c2:c0:e6:a1:
04:6b:d9:02:99:f3:bd:d1:ea:e6:95:e3:bd:73:17:f3:55:99:
be:dd:0d:17:7e:01:0a:95:ec:72:28:2f:f5:0b:75:1e:28:92:
70:ca:84:f5:64:24:5c:26:5f:bf:57:2f:a3:6b:6f:7f:3e:46:
94:5f:18:40:81:bc:24:fb:11:01:d1:da:75:49:22:0f:5a:02:
a3:04:9b:0e:05:bf:a5:3f:70:71:87:2d:d9:1d:a9:36:4c:e7:
7c:69:b7:92:ff:67:50:3e:89:c8:85:8e:15:ae:c5:88:c5:3e:
96:f0:c2:71:21:64:03:d8:a2:90:d5:ff:4a:aa:ad:51:97:16:
e1:84:85:f4:66:c8:99:b3:50:f4:d0:7f:ed:1d:ab:92:08:00:
3c:1c:87:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:28 2023 by rpki-client on console-ams.rpki-client.org