Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/a6ae1b-3966-4392-9683-920da8e14df9/1/2pHIO-qjtF2wOzMkMl-JEV9lVHM.roa
File: 2pHIO-qjtF2wOzMkMl-JEV9lVHM.roa (raw, json)
Hash identifier: qFXK6sBEmoITCyfeZwu5vJC5BotmYV//SRkxvyw8csE=
Subject key identifier: DA:91:C8:3B:EA:A3:B4:5D:B0:3B:33:24:32:5F:89:11:5F:65:54:73
Certificate issuer: /CN=09fe2693e6242973fcd072c6bae53f3c5ebc6e63
Certificate serial: 05A3A336
Authority key identifier: 09:FE:26:93:E6:24:29:73:FC:D0:72:C6:BA:E5:3F:3C:5E:BC:6E:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cf4mk-YkKXP80HLGuuU_PF68bmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/a6ae1b-3966-4392-9683-920da8e14df9/1/2pHIO-qjtF2wOzMkMl-JEV9lVHM.roa
Signing time: Wed 26 Jan 2022 10:50:35 +0000
ROA not before: Wed 26 Jan 2022 10:50:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 85.9.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94610230 (0x5a3a336)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fe2693e6242973fcd072c6bae53f3c5ebc6e63
Validity
Not Before: Jan 26 10:50:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=da91c83beaa3b45db03b3324325f89115f655473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:48:20:c5:a6:ce:47:d1:22:76:39:53:1e:d1:
0d:e2:de:23:19:98:0a:ee:fb:2d:58:e9:66:f3:d9:
1a:56:0f:41:e5:94:4d:fd:36:68:85:e9:61:9c:de:
2a:d9:34:2c:7a:9c:af:d2:b1:08:4d:cd:80:c5:32:
5e:0e:cb:3e:33:e9:de:b3:92:58:b5:37:2c:c2:09:
c5:3c:47:f3:87:11:27:55:03:7c:cc:81:66:96:da:
8a:69:ca:31:d9:f9:60:c3:f0:8c:ed:56:8a:23:e9:
08:b5:0d:1e:a3:7f:8e:af:9b:a4:2d:f0:53:ed:05:
2a:73:83:c3:f5:1f:cd:26:29:b5:96:c6:d3:1b:11:
09:84:bd:62:c4:80:66:fb:44:2b:64:2b:3c:3f:93:
99:4d:ba:37:44:05:88:c3:64:40:82:2e:d3:2f:61:
d2:ed:11:de:43:3f:76:c9:ac:d3:f6:a8:15:0a:85:
dd:86:61:96:28:55:62:4b:b3:4a:70:f5:c3:7a:b2:
09:5b:3c:60:01:64:5e:b9:cd:a8:6c:ee:03:d2:8e:
b0:c8:62:3e:78:32:d8:17:88:20:b1:64:74:94:6c:
46:ea:6f:5a:8c:8c:81:0b:32:70:38:ae:91:3e:40:
8d:4a:66:2e:de:d0:37:a3:59:69:d7:6d:10:4a:e2:
35:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:91:C8:3B:EA:A3:B4:5D:B0:3B:33:24:32:5F:89:11:5F:65:54:73
X509v3 Authority Key Identifier:
keyid:09:FE:26:93:E6:24:29:73:FC:D0:72:C6:BA:E5:3F:3C:5E:BC:6E:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cf4mk-YkKXP80HLGuuU_PF68bmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a6ae1b-3966-4392-9683-920da8e14df9/1/2pHIO-qjtF2wOzMkMl-JEV9lVHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a6ae1b-3966-4392-9683-920da8e14df9/1/Cf4mk-YkKXP80HLGuuU_PF68bmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.9.192.0/18
Signature Algorithm: sha256WithRSAEncryption
2a:cd:95:94:a9:d0:47:3a:66:d5:90:48:27:22:07:f7:fc:ff:
42:b5:5d:36:15:77:0d:53:a6:b8:17:3e:15:16:82:3a:74:fa:
c4:66:a1:81:da:6b:64:30:97:1e:fc:84:de:6d:d6:7e:70:41:
4f:8d:38:9f:cd:50:e8:17:27:1f:b9:97:0e:a5:28:c7:c3:6a:
23:9b:9d:bf:85:60:d0:b0:42:79:e6:48:66:50:e9:c8:c4:84:
f1:2c:8e:9b:f7:83:e2:62:ab:0c:c5:3c:6d:7b:36:8d:70:04:
9d:01:87:ce:02:68:20:28:b6:29:e2:d1:aa:33:47:4a:47:5c:
ea:dc:05:a6:0f:d5:ef:48:8a:7b:73:7d:df:20:25:6b:93:bb:
4c:a8:91:d1:7a:7d:71:9d:78:0d:ef:d7:a6:9c:07:76:c7:de:
2f:1b:10:2b:cb:a4:fa:35:54:2a:cf:d1:ec:c6:6b:7a:66:3e:
dd:08:e5:e2:28:78:fe:0c:c4:cb:aa:24:f8:c6:4b:c1:c9:fd:
37:d9:73:f5:32:5f:4f:c5:e9:42:81:ef:6c:11:08:57:bb:12:
33:68:f4:b2:ad:cc:2f:9e:a4:55:e9:70:15:1d:93:2a:cc:1b:
4d:8d:b9:b1:4b:15:38:32:9a:08:6e:e7:d7:09:4c:dc:42:01:
fa:1a:6d:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:30 2024 by rpki-client on console-fra.rpki-client.org