Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/554d3a-a5e8-43c8-9f09-4ccf0f2df588/1/KRysSOWQjSKb7fDdG6z8GMKORnA.roa
File: KRysSOWQjSKb7fDdG6z8GMKORnA.roa (raw, json)
Hash identifier: V6/m8dMfLTr1pdCslYlYhkoDqCsjVXF2EdBOeVwd9IY=
Subject key identifier: 29:1C:AC:48:E5:90:8D:22:9B:ED:F0:DD:1B:AC:FC:18:C2:8E:46:70
Certificate issuer: /CN=169260a06dc844b454c60074daed54e09d58f0a7
Certificate serial: 018683A0BE35943C7E84D9103646852FC4F9
Authority key identifier: 16:92:60:A0:6D:C8:44:B4:54:C6:00:74:DA:ED:54:E0:9D:58:F0:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FpJgoG3IRLRUxgB02u1U4J1Y8Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/554d3a-a5e8-43c8-9f09-4ccf0f2df588/1/KRysSOWQjSKb7fDdG6z8GMKORnA.roa
Signing time: Fri 24 Feb 2023 13:33:15 +0000
ROA not before: Fri 24 Feb 2023 13:33:15 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212050
IP address blocks: 185.222.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:83:a0:be:35:94:3c:7e:84:d9:10:36:46:85:2f:c4:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=169260a06dc844b454c60074daed54e09d58f0a7
Validity
Not Before: Feb 24 13:33:15 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=291cac48e5908d229bedf0dd1bacfc18c28e4670
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:6f:65:be:b7:96:03:a0:dc:d2:91:dc:01:86:
da:30:eb:ec:ad:be:b5:8c:cc:73:0a:cc:e1:71:93:
56:8e:c8:f6:75:a0:7c:49:ec:6a:44:11:e0:0f:50:
39:44:61:78:50:9f:98:db:62:22:5a:b1:a9:67:fc:
f8:a8:e7:e3:cc:b8:10:99:db:97:f1:35:f7:9f:a7:
e8:a3:d0:28:96:6b:e8:71:0b:fa:c4:bc:a7:a4:38:
57:2f:fc:15:a8:07:0f:55:f2:d7:fe:a3:d0:bd:87:
1b:a0:df:ad:4c:ce:42:a1:cd:7d:7b:90:91:3d:19:
d1:5c:21:b6:2a:3a:6f:25:dd:53:f2:ac:8b:94:f1:
9d:c1:e0:e4:0b:5c:7f:e4:ca:21:95:b3:ac:45:25:
4d:ab:6d:10:c8:65:73:58:2b:b5:ff:fb:21:5d:02:
8b:56:0f:77:22:37:ba:56:84:6f:c8:a0:e1:51:80:
c9:0a:af:b3:fa:b4:f8:bf:57:a0:b6:5f:fc:5b:98:
ae:50:74:87:e6:35:94:56:6c:d7:21:9a:89:e9:37:
3c:21:8a:65:39:90:8e:94:48:5c:3b:e3:b5:42:10:
80:79:21:3d:1c:d4:d9:43:a6:1c:4e:72:e0:8e:4a:
a8:ac:2b:15:41:7b:eb:78:b2:18:39:5e:f7:3c:60:
5d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:1C:AC:48:E5:90:8D:22:9B:ED:F0:DD:1B:AC:FC:18:C2:8E:46:70
X509v3 Authority Key Identifier:
keyid:16:92:60:A0:6D:C8:44:B4:54:C6:00:74:DA:ED:54:E0:9D:58:F0:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FpJgoG3IRLRUxgB02u1U4J1Y8Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/554d3a-a5e8-43c8-9f09-4ccf0f2df588/1/KRysSOWQjSKb7fDdG6z8GMKORnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/554d3a-a5e8-43c8-9f09-4ccf0f2df588/1/FpJgoG3IRLRUxgB02u1U4J1Y8Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.222.212.0/24
Signature Algorithm: sha256WithRSAEncryption
92:86:2d:7b:19:62:06:fa:d1:56:db:5d:ee:bd:62:f6:b6:98:
62:7d:5e:d5:d7:ef:fc:c3:0e:92:e2:a4:54:39:6d:f8:76:0f:
68:c5:15:57:d8:46:72:ae:95:9f:fc:c5:cd:70:eb:79:5e:22:
34:c7:04:0d:c0:a6:7a:ca:0c:4c:e3:6c:1c:47:7f:25:8f:ba:
93:2c:a0:60:01:aa:c2:d3:b2:d7:df:5c:c4:3f:00:69:fd:a7:
ed:a5:2a:fa:ee:d3:b2:73:09:0b:f6:b6:d9:5b:d1:7d:9a:c2:
93:7b:e4:d7:0c:40:41:6a:be:99:c4:0a:04:27:12:a3:8a:90:
f8:0f:27:70:26:93:db:01:b8:0b:ef:ee:84:53:5d:6c:7f:fd:
05:03:dc:0c:2c:79:32:60:00:9c:e8:3f:36:b8:ef:61:dc:e3:
b9:2f:66:a0:14:7d:18:bb:8d:0a:fe:66:9b:5d:ac:e7:85:1c:
a4:b1:1a:be:c3:fb:d5:5c:39:63:4e:ae:ed:7e:f8:4a:bb:b6:
64:52:2d:fe:5a:92:f5:84:9e:ce:06:b0:50:4b:5f:83:26:3d:
ac:17:7e:92:0a:97:fa:a2:f6:cc:0a:b2:49:c4:e2:66:02:3f:
64:d2:e4:99:78:ed:68:21:2a:5a:09:09:88:80:49:bf:52:a3:
ac:d4:c8:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:33 2024 by rpki-client on console-ams.rpki-client.org