Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/e2DPmGyr-HsxWeCyQYejQ1oUFCw.roa
File: e2DPmGyr-HsxWeCyQYejQ1oUFCw.roa (raw, json)
Hash identifier: een0XsJzE2KubpdT6VoWeNA7ZACLbv5NJWS3HncPfAs=
Subject key identifier: 7B:60:CF:98:6C:AB:F8:7B:31:59:E0:B2:41:87:A3:43:5A:14:14:2C
Certificate issuer: /CN=624039399017fa093dc8d503799f6ca403f0bd05
Certificate serial: 0409F770
Authority key identifier: 62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/e2DPmGyr-HsxWeCyQYejQ1oUFCw.roa
Signing time: Sat 01 Jan 2022 08:03:34 +0000
ROA not before: Sat 01 Jan 2022 08:03:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209242
IP address blocks: 85.209.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67762032 (0x409f770)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624039399017fa093dc8d503799f6ca403f0bd05
Validity
Not Before: Jan 1 08:03:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b60cf986cabf87b3159e0b24187a3435a14142c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:45:2c:57:5f:ea:11:43:0d:a8:78:e6:ee:2d:
a3:32:dc:6e:bf:c7:76:43:94:fa:31:9e:1e:d2:52:
46:eb:00:9b:71:50:c7:80:29:b7:e5:04:49:ed:e1:
16:6b:d3:3e:b1:68:09:90:2c:cf:4e:b4:d2:d9:6e:
9c:4c:cf:c2:fc:58:d7:71:74:9b:ca:99:43:6f:94:
4c:54:c1:67:cc:ac:d8:16:71:06:ab:64:da:51:e1:
10:9d:de:4f:bf:a4:d6:a7:71:ef:d5:2e:f6:72:e7:
11:f3:5d:a5:3a:22:5b:f6:26:9d:5a:d7:66:71:8b:
c4:ac:2b:e1:e8:07:68:25:4b:a1:93:12:40:ae:b7:
2f:56:c3:40:b6:58:91:ac:0b:49:f7:e8:16:c4:c7:
9c:4b:c1:4b:e7:2a:86:0a:58:63:c4:2a:f6:cd:bd:
bc:e6:f3:26:ea:73:b9:0a:0c:73:54:5e:6c:ef:e2:
63:9c:0d:33:03:9b:e0:c0:4c:0d:88:bd:46:4d:20:
27:be:30:84:81:73:9f:08:3d:11:94:d0:8f:d1:30:
ca:cb:d9:af:92:9b:6b:f4:22:33:03:a4:0e:af:b4:
62:94:fe:31:51:fa:2c:26:4d:df:61:a4:75:82:c2:
49:ab:52:f8:d5:6f:03:08:98:94:5d:7a:af:79:42:
54:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:60:CF:98:6C:AB:F8:7B:31:59:E0:B2:41:87:A3:43:5A:14:14:2C
X509v3 Authority Key Identifier:
keyid:62:40:39:39:90:17:FA:09:3D:C8:D5:03:79:9F:6C:A4:03:F0:BD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkA5OZAX-gk9yNUDeZ9spAPwvQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/e2DPmGyr-HsxWeCyQYejQ1oUFCw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/eb239a-33c8-4dbd-bc96-3259496e7c5f/1/YkA5OZAX-gk9yNUDeZ9spAPwvQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.228.0/24
Signature Algorithm: sha256WithRSAEncryption
19:69:77:51:50:f8:01:f6:3d:c6:37:5e:c0:37:60:9a:b3:15:
20:1b:5b:68:56:e0:c0:f0:9a:cf:0a:a4:53:c4:2e:7d:07:a7:
64:1b:70:e5:76:d1:f9:03:a6:5b:ee:07:60:28:c1:30:7d:57:
9b:88:70:52:8c:da:64:53:6e:e3:e9:6c:b9:4a:0a:8b:ec:5f:
05:10:b8:d1:ae:46:3e:3c:db:d3:26:e1:f6:db:3e:e4:b0:1e:
3f:f8:c8:d9:9d:32:81:16:2b:ca:e8:7d:bb:bb:f4:3b:31:5b:
f0:15:f4:6e:2e:a6:bc:87:d4:30:19:39:d7:c5:36:a1:11:e3:
46:ec:df:37:0f:37:cb:4d:a7:6c:6a:32:05:9e:a1:29:ba:4f:
24:f9:af:55:f8:92:dd:c9:e6:fd:73:85:77:16:15:8c:3e:96:
97:f2:32:30:0b:d6:0d:36:dc:a3:2a:77:cc:64:c5:55:c2:e1:
d7:d7:8c:1f:48:7e:b4:48:e3:ce:bd:41:3a:c9:67:3e:a9:96:
bf:51:4d:7a:22:f8:00:b0:be:ba:7b:d9:db:91:2e:26:2b:bb:
88:6a:64:ad:d3:35:99:61:6a:8c:29:20:f7:f7:e5:e7:65:52:
12:38:60:d4:91:38:d3:76:82:5c:18:a1:b4:ef:f0:d4:5a:78:
78:2c:58:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:55:42 2024 by rpki-client on console-fra.rpki-client.org