Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/70148b-4687-47f0-be08-3dc831d2ed67/1/Iffz_NY7NcDGJYL3VICGqbRscEY.roa
File: Iffz_NY7NcDGJYL3VICGqbRscEY.roa (raw, json)
Hash identifier: x82JOMKluu92MGKlcFhmS5XRAsaJGXr6HUs1IyXFG2o=
Subject key identifier: 21:F7:F3:FC:D6:3B:35:C0:C6:25:82:F7:54:80:86:A9:B4:6C:70:46
Certificate issuer: /CN=9a9c7c1db517475dfc58e3c5a954e3565d4d9174
Certificate serial: 0782F5A5
Authority key identifier: 9A:9C:7C:1D:B5:17:47:5D:FC:58:E3:C5:A9:54:E3:56:5D:4D:91:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mpx8HbUXR138WOPFqVTjVl1NkXQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/70148b-4687-47f0-be08-3dc831d2ed67/1/Iffz_NY7NcDGJYL3VICGqbRscEY.roa
Signing time: Sat 01 Jan 2022 01:58:55 +0000
ROA not before: Sat 01 Jan 2022 01:58:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207075
IP address blocks: 185.154.144.0/22 maxlen: 24
2a07:8d40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126023077 (0x782f5a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a9c7c1db517475dfc58e3c5a954e3565d4d9174
Validity
Not Before: Jan 1 01:58:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21f7f3fcd63b35c0c62582f7548086a9b46c7046
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:7d:83:c5:26:66:6b:ca:06:45:4a:0c:8a:b8:
9c:04:ad:a8:24:5e:91:41:43:e8:05:d0:4b:8b:d5:
35:fe:bd:84:71:78:f5:20:d3:4d:ff:18:10:67:12:
b6:15:eb:04:43:56:8c:e2:64:04:45:7a:2a:d0:60:
fc:0d:5a:79:87:af:66:51:44:e5:d4:7a:37:64:85:
16:ce:a8:12:73:98:05:4f:1a:48:ea:fc:8d:50:61:
86:7b:59:22:b5:a2:41:3b:1c:08:71:65:bb:21:31:
90:8a:70:bd:ee:f1:24:5e:1f:c4:7f:70:5e:05:21:
52:de:5c:9f:06:64:03:13:43:6e:5a:bc:44:90:67:
c8:56:78:73:69:fe:46:b9:d1:05:5a:9d:0e:87:5d:
b8:91:fb:0b:09:ba:4b:35:01:a7:31:35:1e:f0:97:
ba:82:f5:93:64:50:6a:e1:69:4d:de:c5:63:d4:91:
5c:ee:a0:21:27:f9:0d:91:4a:35:e0:dd:bf:2e:29:
91:2c:fc:f3:5a:90:fc:8c:13:24:96:ee:27:3e:a1:
4f:b4:98:11:6f:a0:93:d9:82:06:b4:5d:74:71:38:
02:3e:fc:15:71:50:41:d2:59:dd:91:38:89:4d:28:
79:53:8d:65:d7:a0:41:05:41:ae:aa:81:b2:e3:54:
97:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F7:F3:FC:D6:3B:35:C0:C6:25:82:F7:54:80:86:A9:B4:6C:70:46
X509v3 Authority Key Identifier:
keyid:9A:9C:7C:1D:B5:17:47:5D:FC:58:E3:C5:A9:54:E3:56:5D:4D:91:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mpx8HbUXR138WOPFqVTjVl1NkXQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/70148b-4687-47f0-be08-3dc831d2ed67/1/Iffz_NY7NcDGJYL3VICGqbRscEY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/70148b-4687-47f0-be08-3dc831d2ed67/1/mpx8HbUXR138WOPFqVTjVl1NkXQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.154.144.0/22
IPv6:
2a07:8d40::/29
Signature Algorithm: sha256WithRSAEncryption
57:5d:9a:fd:de:e4:76:31:12:67:2e:1f:c2:13:b0:84:98:90:
27:08:76:37:6d:67:f4:81:70:c1:09:ed:49:f2:7a:05:42:14:
dc:3f:4a:51:22:82:68:9d:30:47:6d:47:2e:b8:1f:68:3e:5e:
bc:bb:ed:62:f6:cf:7f:f7:93:6b:73:ff:09:82:ae:be:58:92:
76:96:cb:fd:cb:99:0b:99:c8:04:f7:08:7c:34:1b:b2:e8:0b:
22:82:3d:0a:33:dc:b6:41:14:9e:76:f1:42:72:fb:25:39:9c:
39:a0:65:9a:45:3b:89:3e:0c:e2:15:99:bf:e5:89:05:50:c5:
71:45:32:93:00:3e:6f:b9:9e:23:43:bc:ea:91:a5:96:46:8e:
39:44:b6:f1:d7:c5:01:0c:56:30:5e:ac:c4:b6:c5:de:a2:ff:
71:14:4c:22:9d:4b:e8:00:53:16:a0:62:af:96:19:25:f7:5b:
92:36:83:50:14:e0:c0:13:6c:37:bb:e0:7a:33:df:c1:e4:c9:
91:6f:3a:77:72:33:33:29:11:75:3c:d3:98:08:54:54:79:98:
6b:8a:7e:8e:aa:68:ff:4a:4f:0a:2c:f1:f7:ee:4f:70:ab:d1:
48:2b:7d:54:aa:f0:51:5b:00:17:d7:2c:18:f2:f4:f0:1c:21:
e3:db:fa:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:44 2024 by rpki-client on console-ams.rpki-client.org