Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/c8ee7a-6a84-4533-b7ce-d2b8dd5da3aa/1/CYD_z8Uou8OJwA6qNbu8QIXc8EA.roa
File: CYD_z8Uou8OJwA6qNbu8QIXc8EA.roa (raw, json)
Hash identifier: HeGNnmlPnQOm1w0PYpp2FCgerxt12XrhmPu/+yQfrtM=
Subject key identifier: 09:80:FF:CF:C5:28:BB:C3:89:C0:0E:AA:35:BB:BC:40:85:DC:F0:40
Certificate issuer: /CN=e5c2b0b5c300af8c2f7ba22f7ad7954919078b35
Certificate serial: 02A229A1
Authority key identifier: E5:C2:B0:B5:C3:00:AF:8C:2F:7B:A2:2F:7A:D7:95:49:19:07:8B:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5cKwtcMAr4wve6IveteVSRkHizU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/c8ee7a-6a84-4533-b7ce-d2b8dd5da3aa/1/CYD_z8Uou8OJwA6qNbu8QIXc8EA.roa
Signing time: Tue 22 Mar 2022 09:12:20 +0000
ROA not before: Tue 22 Mar 2022 09:12:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 2.56.232.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44181921 (0x2a229a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5c2b0b5c300af8c2f7ba22f7ad7954919078b35
Validity
Not Before: Mar 22 09:12:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0980ffcfc528bbc389c00eaa35bbbc4085dcf040
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:34:3e:49:f6:b3:92:9d:2e:19:57:1b:02:23:
77:da:cd:5b:68:26:e2:26:31:8c:85:35:7b:84:64:
21:07:2f:92:ec:3f:9e:21:c0:67:d6:e8:ab:93:8b:
db:f5:82:96:af:29:2d:6f:ca:1f:e2:84:15:bc:a2:
f0:eb:af:60:35:16:94:b3:1b:18:56:e9:85:99:9c:
9c:54:62:06:5b:16:e6:ea:9b:4d:45:ad:da:40:66:
26:00:37:a1:91:4e:cd:b3:67:15:66:65:b1:48:d1:
7f:4c:96:e6:72:62:4f:8f:d8:79:0a:45:70:bf:ca:
16:2e:00:d4:d1:50:06:d3:f6:f6:3a:80:ad:03:a9:
de:ff:e7:c3:b7:b0:d9:6f:27:fc:a3:35:7b:c0:9d:
86:75:9f:5f:d9:4f:08:2d:69:c2:7e:1a:4f:0f:1c:
9a:11:b8:c7:f5:ce:83:66:f3:71:9a:b6:6a:42:eb:
ed:d2:38:68:08:33:d6:db:7f:2a:5f:c0:86:f3:1c:
41:48:3e:96:67:58:a7:65:a5:3a:63:1d:b2:f1:1a:
c5:33:af:40:13:c4:0a:e3:8a:a3:53:6d:10:74:10:
90:57:e9:f7:c1:70:1c:6c:0c:da:36:07:ff:7b:52:
b6:cf:72:29:40:d4:1b:23:04:da:9b:29:cd:81:79:
a1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:80:FF:CF:C5:28:BB:C3:89:C0:0E:AA:35:BB:BC:40:85:DC:F0:40
X509v3 Authority Key Identifier:
keyid:E5:C2:B0:B5:C3:00:AF:8C:2F:7B:A2:2F:7A:D7:95:49:19:07:8B:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5cKwtcMAr4wve6IveteVSRkHizU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/c8ee7a-6a84-4533-b7ce-d2b8dd5da3aa/1/CYD_z8Uou8OJwA6qNbu8QIXc8EA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/c8ee7a-6a84-4533-b7ce-d2b8dd5da3aa/1/5cKwtcMAr4wve6IveteVSRkHizU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.232.0/22
Signature Algorithm: sha256WithRSAEncryption
73:cd:8f:6f:ab:9f:9d:55:e8:57:1b:2f:5d:ff:f0:18:1a:0c:
a7:dc:19:c2:7e:58:51:32:fc:49:13:3f:e5:71:4a:44:83:46:
26:49:80:c7:38:99:0d:2c:24:83:6e:23:f9:b8:2c:14:52:b5:
c9:71:a9:5f:a6:0d:96:79:55:d9:f6:f5:a1:2c:7b:37:95:93:
af:e9:ab:0a:36:9f:96:ce:9d:8f:08:be:2f:63:e0:2e:3a:e0:
9c:29:29:46:5e:ee:ca:a6:d8:be:03:18:83:fd:4d:a7:b5:3b:
e5:54:08:5b:86:56:5c:06:88:79:20:45:ea:59:91:fa:61:f3:
be:b1:d2:dd:d0:3e:62:99:83:df:2b:48:98:ac:62:23:d1:b9:
c4:4e:88:a2:d0:f5:82:f2:51:ca:6e:4c:81:43:49:1e:9b:fa:
2a:f6:97:d5:32:b5:94:6e:bf:83:25:7c:32:c3:20:c7:b8:3c:
e6:49:89:2b:ec:e3:9d:42:f1:36:13:c6:54:43:76:1d:a2:17:
2b:6c:9e:82:fb:27:89:56:16:22:8b:9c:15:60:a4:0d:ae:da:
be:38:f9:d1:37:e6:25:1c:ba:1b:ae:90:94:01:d8:98:9e:94:
59:18:37:1a:e5:de:39:9d:a7:9c:ea:ae:56:3b:7b:79:41:14:
00:ba:13:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:40 2023 by rpki-client on console-fra.rpki-client.org