Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/085cf7-d4ec-4817-88a9-7becf292e8df/1/mbt7JkmbeFR4mJ5JmNLrtZvT_Ew.roa
File: mbt7JkmbeFR4mJ5JmNLrtZvT_Ew.roa (raw, json)
Hash identifier: 36hYMEubq4zhlkylS0/FMnwbDomIuUCRVNeSWw7ddWI=
Subject key identifier: 99:BB:7B:26:49:9B:78:54:78:98:9E:49:98:D2:EB:B5:9B:D3:FC:4C
Certificate issuer: /CN=22fd6c153b46ee4f621da74fd572983bcaff0632
Certificate serial: 018AEF8C3DEDBF2C1194EE4C77EB75D4A490
Authority key identifier: 22:FD:6C:15:3B:46:EE:4F:62:1D:A7:4F:D5:72:98:3B:CA:FF:06:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Iv1sFTtG7k9iHadP1XKYO8r_BjI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/085cf7-d4ec-4817-88a9-7becf292e8df/1/mbt7JkmbeFR4mJ5JmNLrtZvT_Ew.roa
Signing time: Mon 02 Oct 2023 08:40:59 +0000
ROA not before: Mon 02 Oct 2023 08:40:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.222.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ef:8c:3d:ed:bf:2c:11:94:ee:4c:77:eb:75:d4:a4:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22fd6c153b46ee4f621da74fd572983bcaff0632
Validity
Not Before: Oct 2 08:40:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=99bb7b26499b785478989e4998d2ebb59bd3fc4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5e:5d:46:0f:72:85:b7:7e:58:3e:e7:4b:fd:
ee:a8:87:c1:07:e3:d3:6a:22:af:1d:21:7f:d0:61:
4c:b3:bf:f3:ad:6e:60:d9:fb:88:f4:1c:6b:91:33:
7f:8f:e9:1f:9f:3d:f0:03:a5:e6:e8:cd:03:1c:1f:
a0:66:3b:39:44:70:0f:7b:db:fd:d2:cb:3a:88:74:
23:88:31:5b:78:72:69:3a:4b:73:c0:26:0a:f0:49:
b8:f4:70:9d:02:46:e9:40:69:76:39:6c:6c:82:e9:
eb:a2:0a:f1:21:aa:c7:23:89:f5:da:10:6d:c3:74:
cc:ea:cf:43:fa:2d:ef:ea:30:7e:c0:c6:87:cc:60:
83:19:4e:3d:c3:a9:ec:ae:ec:a2:50:e7:84:13:7c:
4f:c1:ae:58:a9:9b:1b:bc:28:fa:3f:36:41:cf:e1:
25:d4:b0:d8:4a:af:30:84:81:59:d8:c9:21:b3:b2:
90:68:76:bb:c7:44:a9:58:7f:bf:f0:81:ec:7e:93:
12:dc:7c:dd:4e:79:83:ff:fc:75:eb:bc:36:2f:ab:
b2:88:db:d8:68:c9:04:01:c6:3e:53:8b:ec:bb:92:
e4:cd:d1:8c:af:18:eb:6f:df:76:88:43:b9:80:4e:
13:0a:80:6b:dc:6f:35:57:60:59:ea:ed:72:36:ad:
5b:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:BB:7B:26:49:9B:78:54:78:98:9E:49:98:D2:EB:B5:9B:D3:FC:4C
X509v3 Authority Key Identifier:
keyid:22:FD:6C:15:3B:46:EE:4F:62:1D:A7:4F:D5:72:98:3B:CA:FF:06:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Iv1sFTtG7k9iHadP1XKYO8r_BjI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/085cf7-d4ec-4817-88a9-7becf292e8df/1/mbt7JkmbeFR4mJ5JmNLrtZvT_Ew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/085cf7-d4ec-4817-88a9-7becf292e8df/1/Iv1sFTtG7k9iHadP1XKYO8r_BjI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.42.0/24
Signature Algorithm: sha256WithRSAEncryption
d6:95:a1:74:0f:c5:f2:e7:e1:0a:d8:c5:cd:65:60:5e:5c:71:
4b:0c:63:6e:7d:88:81:ff:a9:65:b6:a5:ad:44:ca:34:16:0f:
ac:73:ac:a5:a1:d2:3a:e7:ff:32:ef:8b:c5:9c:5f:ae:ab:cc:
e3:ff:1b:1b:06:26:f6:5e:72:81:67:74:d5:b0:9a:2c:22:75:
6f:6c:24:28:a9:c5:1e:48:48:66:bf:a7:7c:ee:ee:34:4e:98:
41:f7:f5:93:22:bf:a9:70:f7:d5:e2:c4:16:e9:fa:bd:80:ab:
04:df:8d:88:a5:c5:70:77:49:f6:e9:34:6b:be:e5:db:92:fd:
f1:d7:06:33:7a:58:30:8d:a3:5a:63:af:74:cf:d2:e8:c4:bd:
b7:2e:7f:a7:c0:59:a7:65:08:bb:a5:da:5c:83:b8:bc:5d:54:
b0:79:f2:fb:26:1c:7f:e4:f4:53:aa:36:4d:c3:4a:63:82:95:
ee:ec:ed:96:1b:4f:ca:ba:9a:73:52:7d:6c:b3:3c:d6:43:f6:
74:7a:2a:a9:9a:34:15:7f:8c:01:82:a5:43:ac:ca:b4:35:80:
c8:d3:04:59:34:19:eb:ac:60:eb:8e:fe:f2:95:66:02:72:c2:
bb:c3:58:13:85:d5:69:b7:57:0d:69:60:e1:7e:94:7a:46:3f:
97:a3:31:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 19 11:56:18 2023 by rpki-client on console-ams.rpki-client.org