Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/842f98-230d-418a-9245-195c57a463eb/1/iP_BFX7jlWknWTwR1lm_vAGRHXA.roa
File: iP_BFX7jlWknWTwR1lm_vAGRHXA.roa (raw, json)
Hash identifier: +oT7BbvzPWyvFZC65dfEdO4lSxqqDSn/7HL9WFvcQhw=
Subject key identifier: 88:FF:C1:15:7E:E3:95:69:27:59:3C:11:D6:59:BF:BC:01:91:1D:70
Certificate issuer: /CN=aa65561ac2089af85946c82c27b7e80805663feb
Certificate serial: 01857169E188B27EAE426EA751A5DCED0146
Authority key identifier: AA:65:56:1A:C2:08:9A:F8:59:46:C8:2C:27:B7:E8:08:05:66:3F:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmVWGsIImvhZRsgsJ7foCAVmP-s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/842f98-230d-418a-9245-195c57a463eb/1/iP_BFX7jlWknWTwR1lm_vAGRHXA.roa
Signing time: Mon 02 Jan 2023 07:37:22 +0000
ROA not before: Mon 02 Jan 2023 07:37:22 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203061
IP address blocks: 185.222.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:69:e1:88:b2:7e:ae:42:6e:a7:51:a5:dc:ed:01:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa65561ac2089af85946c82c27b7e80805663feb
Validity
Not Before: Jan 2 07:37:22 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=88ffc1157ee3956927593c11d659bfbc01911d70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:0f:0a:4c:ce:38:c4:48:74:6e:ab:2d:be:20:
18:54:ea:dd:49:1f:d4:f0:cc:01:68:d0:fa:a0:dd:
ee:12:e5:b2:ff:d3:13:02:95:3b:9a:ad:ca:4d:f5:
9f:d5:e4:3c:85:13:b0:c5:9a:3f:9d:99:49:ef:dd:
71:1b:1a:0e:f1:a6:8e:0f:9f:cb:4d:51:c4:c7:e3:
07:73:a9:34:6d:22:fa:d9:ca:e1:96:3e:56:8a:c4:
d0:cb:7f:ed:3a:43:7a:9a:32:21:5e:80:3d:7b:48:
4e:94:5f:98:cc:c1:ea:c0:24:06:c2:d3:81:ae:ea:
e0:6c:42:31:3c:82:83:e2:7b:e3:bc:62:51:7c:01:
de:36:ca:d6:3b:73:c2:bf:25:7b:15:3f:22:58:42:
1d:ff:98:b9:aa:dd:2f:c7:1f:d1:ec:ee:21:0c:e8:
c8:fc:65:3f:d5:cf:0c:3c:f0:09:6f:c6:7f:22:ce:
c3:27:0b:0c:92:72:a2:a6:cd:01:b9:49:fa:6d:36:
72:87:65:35:6a:9e:80:44:f2:d0:c3:5d:a8:71:3f:
64:d2:38:34:e6:63:2a:ae:5f:c4:ea:67:ee:f0:df:
d6:47:90:79:95:d2:9b:d7:3d:1f:19:d8:47:2d:1e:
c7:72:57:21:98:f8:ce:8a:6e:2a:5b:47:51:27:5a:
77:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:FF:C1:15:7E:E3:95:69:27:59:3C:11:D6:59:BF:BC:01:91:1D:70
X509v3 Authority Key Identifier:
keyid:AA:65:56:1A:C2:08:9A:F8:59:46:C8:2C:27:B7:E8:08:05:66:3F:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmVWGsIImvhZRsgsJ7foCAVmP-s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/842f98-230d-418a-9245-195c57a463eb/1/iP_BFX7jlWknWTwR1lm_vAGRHXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/842f98-230d-418a-9245-195c57a463eb/1/qmVWGsIImvhZRsgsJ7foCAVmP-s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.213.0/24
Signature Algorithm: sha256WithRSAEncryption
15:42:88:60:86:99:41:8b:db:b0:d6:54:b3:b5:b5:8d:7b:5f:
4a:0b:26:38:76:e0:4a:9e:d0:20:ac:c8:74:4e:31:a8:6e:56:
ec:82:cc:a4:fd:5d:91:50:ca:1f:a2:a0:5f:eb:7a:68:1c:9c:
1e:30:4c:08:88:ce:e6:de:3a:07:9b:54:04:1d:f0:c1:dd:da:
3b:32:44:3c:8d:39:5f:99:63:81:11:9b:d4:b1:30:69:bb:c4:
0d:7f:38:a7:2e:91:f1:1a:55:b6:ef:44:92:bf:b1:16:df:8e:
3d:aa:10:32:d3:f6:27:1a:2d:75:69:04:63:de:04:74:8b:87:
88:c3:0c:73:2a:6a:32:45:07:90:94:aa:51:14:a3:fc:e4:d7:
73:39:13:4b:f7:dc:0c:00:4c:49:e1:f8:a2:32:2a:6a:f7:a2:
30:ba:e6:87:fb:44:85:28:e4:a9:a5:47:f0:a2:c5:0d:48:8f:
01:e0:5f:c3:03:8c:31:71:dd:bd:b5:03:f4:80:eb:ab:e9:bc:
85:0f:3d:30:39:e4:b7:fe:05:04:20:97:f6:a0:28:4d:be:87:
10:e9:cb:e2:af:21:b1:8d:4e:01:1d:88:3b:61:96:89:69:f2:
15:e5:4e:71:ba:6f:9f:04:9a:9c:be:c4:13:80:b4:9a:25:a6:
96:18:eb:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:39:50 2024 by rpki-client on console-ams.rpki-client.org