Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/bcddf7-6ede-4a52-8315-50eeb6bf83d4/1/yAJ2U568YwdwIDbCVLMxKqS0P4U.roa
File: yAJ2U568YwdwIDbCVLMxKqS0P4U.roa (raw, json)
Hash identifier: e2xHhPOyPwF1rQiufLeG3wAJkL1Ozt4r/Oca6gZZJSA=
Subject key identifier: C8:02:76:53:9E:BC:63:07:70:20:36:C2:54:B3:31:2A:A4:B4:3F:85
Certificate issuer: /CN=03340753b833d9a3dac333efd49471dc01a0cf4f
Certificate serial: 0101B312
Authority key identifier: 03:34:07:53:B8:33:D9:A3:DA:C3:33:EF:D4:94:71:DC:01:A0:CF:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AzQHU7gz2aPawzPv1JRx3AGgz08.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/bcddf7-6ede-4a52-8315-50eeb6bf83d4/1/yAJ2U568YwdwIDbCVLMxKqS0P4U.roa
Signing time: Sat 01 Jan 2022 12:00:49 +0000
ROA not before: Sat 01 Jan 2022 12:00:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47753
IP address blocks: 185.235.229.0/24 maxlen: 24
2a0a:fc0::/29 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16888594 (0x101b312)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03340753b833d9a3dac333efd49471dc01a0cf4f
Validity
Not Before: Jan 1 12:00:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c80276539ebc6307702036c254b3312aa4b43f85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:7c:6e:8b:c5:c3:60:02:63:f0:14:fc:86:26:
87:50:48:de:13:4d:69:09:86:fd:3b:3a:fa:a8:c8:
84:6b:e7:d2:6a:72:b9:76:b9:1b:c9:5c:ee:f7:c9:
d8:59:88:f1:48:19:1a:36:e6:82:b5:a3:29:4e:50:
7f:f4:00:e2:16:0a:03:7c:39:84:f8:be:18:eb:bf:
5f:11:3f:7d:38:e1:8c:b7:fd:bd:f7:78:34:04:30:
1a:5c:ea:c8:f0:c3:de:22:5d:3b:4c:96:d7:85:c3:
01:a2:99:e2:b3:99:ec:ac:d1:be:b7:89:ac:c1:5b:
cc:69:77:fa:cc:bf:5b:8c:34:47:15:84:ca:af:88:
02:f3:93:55:15:84:23:4f:5a:c5:63:e7:15:35:16:
ae:38:87:94:39:f8:49:5b:03:f4:39:c9:5a:6b:6b:
2a:37:3e:cf:fd:25:17:cb:c8:04:2f:ff:a8:2d:48:
7d:00:e7:22:35:a9:c3:1d:61:20:af:e8:c9:94:04:
bd:57:98:69:a5:ca:b8:28:92:7b:5e:c1:49:9a:3a:
c1:02:f0:5a:2d:29:76:b1:ef:e6:6a:90:29:79:82:
bd:35:eb:a9:7b:bc:22:aa:7a:28:8d:df:bb:f4:d8:
f6:a6:41:d4:02:a1:1c:9b:c8:25:c7:fe:21:96:aa:
66:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:02:76:53:9E:BC:63:07:70:20:36:C2:54:B3:31:2A:A4:B4:3F:85
X509v3 Authority Key Identifier:
keyid:03:34:07:53:B8:33:D9:A3:DA:C3:33:EF:D4:94:71:DC:01:A0:CF:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AzQHU7gz2aPawzPv1JRx3AGgz08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/bcddf7-6ede-4a52-8315-50eeb6bf83d4/1/yAJ2U568YwdwIDbCVLMxKqS0P4U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/bcddf7-6ede-4a52-8315-50eeb6bf83d4/1/AzQHU7gz2aPawzPv1JRx3AGgz08.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.235.229.0/24
IPv6:
2a0a:fc0::/29
Signature Algorithm: sha256WithRSAEncryption
27:96:6d:e8:ed:a9:8d:63:ff:96:59:b3:6c:04:95:c0:5e:f5:
26:9c:ce:49:44:c0:34:80:55:f8:7b:ad:21:be:cf:97:bd:b9:
b0:41:83:29:48:b4:79:ae:17:b2:b7:04:e6:ab:a1:08:da:70:
3e:1b:ab:d4:65:47:bb:8f:88:5e:4d:3f:4e:a7:68:a9:b4:ea:
4c:d1:8f:65:e3:3a:ab:c8:ff:5d:da:a9:a0:ff:2f:88:16:5b:
8e:52:7f:3a:c5:e8:14:92:4f:69:33:ad:ee:25:9b:68:03:18:
97:99:14:72:37:0f:eb:b6:be:72:6f:07:9c:f6:84:b7:ee:98:
88:5d:4f:95:99:e7:46:43:13:eb:c1:39:34:c3:df:73:f0:23:
2f:a5:eb:cd:25:d6:09:af:9d:d8:6e:bf:72:68:95:2c:75:b4:
c8:d6:04:4a:7e:af:fe:fa:f5:df:75:df:a2:db:d8:a6:83:41:
ea:a0:bd:9f:aa:8b:31:c5:de:0b:da:3b:ee:32:7f:72:9f:f7:
36:cc:83:22:40:4c:69:84:5a:6c:9a:b4:25:36:9a:f6:a9:2e:
ee:2b:78:99:e6:70:ba:4b:9e:66:08:2a:4a:83:92:6c:fc:55:
80:ba:33:bb:75:f5:0b:a1:78:77:cc:b7:04:e1:d2:c9:d3:b9:
ad:9b:57:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:10 2024 by rpki-client on console-fra.rpki-client.org