Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/7a936c-d6e2-4cc1-9e4b-d237a9e6ab14/1/4yrh67Wq_tsh07GPezoj1vBmqH0.roa
File: 4yrh67Wq_tsh07GPezoj1vBmqH0.roa (raw, json)
Hash identifier: tj/DTRLLuAOy6cnSZ83RS00fSbfDyASkjwPADmn7j7I=
Subject key identifier: E3:2A:E1:EB:B5:AA:FE:DB:21:D3:B1:8F:7B:3A:23:D6:F0:66:A8:7D
Certificate issuer: /CN=caf2488824b714a1f30c2c809fbdb68575652b4a
Certificate serial: 0137C1B0
Authority key identifier: CA:F2:48:88:24:B7:14:A1:F3:0C:2C:80:9F:BD:B6:85:75:65:2B:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yvJIiCS3FKHzDCyAn722hXVlK0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/7a936c-d6e2-4cc1-9e4b-d237a9e6ab14/1/4yrh67Wq_tsh07GPezoj1vBmqH0.roa
Signing time: Wed 20 Apr 2022 11:27:04 +0000
ROA not before: Wed 20 Apr 2022 11:27:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210920
IP address blocks: 74.220.24.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20431280 (0x137c1b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caf2488824b714a1f30c2c809fbdb68575652b4a
Validity
Not Before: Apr 20 11:27:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e32ae1ebb5aafedb21d3b18f7b3a23d6f066a87d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:67:79:55:99:b4:7f:25:7a:fb:53:57:37:95:
09:e6:e9:02:93:5a:e6:9b:10:08:f0:e5:9f:39:c7:
75:ef:72:de:d0:dd:e1:fb:c4:65:6e:3e:90:ac:7b:
2a:ca:56:9f:56:8b:d5:20:68:b7:db:cf:59:7f:2a:
5c:57:ab:50:b0:7c:c9:e6:b5:c4:45:c8:42:ed:79:
26:9b:47:41:56:d4:e7:6f:d6:bd:eb:fa:06:b8:e9:
ad:76:e6:7f:94:10:d6:01:36:26:e0:1b:f5:16:13:
a0:b5:df:c0:f6:e3:39:01:28:5f:d1:ff:69:a1:00:
76:18:5d:12:8c:97:e0:a9:14:7b:ff:ea:d3:e9:f1:
c5:b5:89:f4:57:4a:53:12:be:89:0d:e1:cc:b1:b7:
75:cd:c3:08:e8:06:e2:19:e7:35:8f:0e:29:8c:71:
f6:00:90:07:f2:5c:40:5a:d5:15:77:58:a8:4a:d3:
9c:a0:f5:f2:89:1c:63:d2:91:f5:33:61:45:d5:bb:
3e:0a:ec:d7:99:85:d4:70:3c:aa:63:22:b4:be:1f:
1a:d7:ea:94:f2:54:fd:e1:90:1f:ac:fe:66:1d:3b:
c9:2c:87:14:53:c3:69:a0:63:4e:e3:37:66:97:e0:
53:47:ea:ab:fe:03:0a:8f:45:8c:32:03:e4:dd:b3:
63:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:2A:E1:EB:B5:AA:FE:DB:21:D3:B1:8F:7B:3A:23:D6:F0:66:A8:7D
X509v3 Authority Key Identifier:
keyid:CA:F2:48:88:24:B7:14:A1:F3:0C:2C:80:9F:BD:B6:85:75:65:2B:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yvJIiCS3FKHzDCyAn722hXVlK0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a936c-d6e2-4cc1-9e4b-d237a9e6ab14/1/4yrh67Wq_tsh07GPezoj1vBmqH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a936c-d6e2-4cc1-9e4b-d237a9e6ab14/1/yvJIiCS3FKHzDCyAn722hXVlK0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
74.220.24.0/21
Signature Algorithm: sha256WithRSAEncryption
10:2b:62:9d:8e:89:ab:bc:52:c9:0f:7b:af:e5:6c:da:d7:20:
ba:9d:2a:f9:6d:61:3b:e4:22:48:4d:35:17:86:2d:ba:8e:6e:
0c:a0:9a:8d:c1:f3:f3:10:55:16:ec:1f:4a:22:da:9a:a6:b8:
26:f3:4d:28:5a:17:29:ad:c7:d7:df:89:0d:6b:0c:91:50:ab:
2e:c5:f2:40:1d:22:8b:0c:7b:f4:e9:36:db:d6:75:99:36:a8:
0a:29:3e:ee:eb:4a:d5:65:dd:ec:1a:2c:e8:61:48:15:ec:54:
23:2a:30:9e:5a:c4:91:23:a7:bc:72:93:0d:71:7c:2b:f5:6a:
eb:4e:de:8d:4e:1a:52:47:d7:cd:d8:34:45:5f:9a:60:f0:0d:
b2:d9:1b:df:45:f6:da:67:ab:23:1d:1c:f1:91:82:6f:50:e6:
26:f1:cd:8a:29:e0:88:15:e5:0a:52:86:53:59:91:a4:27:95:
72:4d:b3:e0:d2:43:ca:e4:0b:c1:74:c6:81:93:87:9b:67:15:
d8:43:fc:34:40:ae:d4:fb:3d:16:fe:d7:df:bb:e4:f1:6f:70:
f5:cf:95:10:05:50:5c:fe:cf:e1:58:4e:52:c3:ad:50:70:e8:
7e:f6:96:e9:16:2a:5b:05:24:74:e5:1c:2e:4a:ad:ad:7e:50:
03:cb:0b:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:49 2024 by rpki-client on console-fra.rpki-client.org