Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/a6ae1b-3966-4392-9683-920da8e14df9/1/_xfbtU70WlcXIuAE8X9Vhyto5UQ.roa
File: _xfbtU70WlcXIuAE8X9Vhyto5UQ.roa (raw, json)
Hash identifier: jRkQ9RcVKVzk5v6GxwG6pQOskv1KzeJ0F17xUdbv3fI=
Subject key identifier: FF:17:DB:B5:4E:F4:5A:57:17:22:E0:04:F1:7F:55:87:2B:68:E5:44
Certificate issuer: /CN=09fe2693e6242973fcd072c6bae53f3c5ebc6e63
Certificate serial: 05A3402C
Authority key identifier: 09:FE:26:93:E6:24:29:73:FC:D0:72:C6:BA:E5:3F:3C:5E:BC:6E:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cf4mk-YkKXP80HLGuuU_PF68bmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/a6ae1b-3966-4392-9683-920da8e14df9/1/_xfbtU70WlcXIuAE8X9Vhyto5UQ.roa
Signing time: Wed 26 Jan 2022 10:50:34 +0000
ROA not before: Wed 26 Jan 2022 10:50:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6079
IP address blocks: 85.9.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94584876 (0x5a3402c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09fe2693e6242973fcd072c6bae53f3c5ebc6e63
Validity
Not Before: Jan 26 10:50:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff17dbb54ef45a571722e004f17f55872b68e544
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:a1:61:3f:a7:94:13:e9:c5:bf:59:ad:e3:36:
b3:ac:a2:dc:04:85:a7:99:17:26:95:e9:31:8f:24:
c1:82:1f:0c:f2:59:ce:35:af:12:65:61:23:cb:26:
1f:c9:21:e5:7e:23:c5:54:cf:8e:e1:c6:1d:21:52:
d0:15:4f:88:ea:fe:66:f8:1a:cf:b3:1e:ec:07:c9:
ef:85:1b:ef:4f:1a:27:d3:17:86:e1:57:d2:a4:90:
60:bc:83:f8:c9:f9:dd:37:4c:ab:d7:bd:a4:cf:e7:
77:e4:7d:77:f5:18:1a:c9:ae:a1:77:c8:0b:c3:9a:
ee:c1:ed:8d:c4:4d:cc:ff:ae:1d:35:76:1d:f6:45:
c5:21:4c:eb:0c:0a:1c:89:5d:f1:10:b6:53:fc:4a:
be:50:cb:ad:c7:c9:8e:f1:5e:14:51:58:1a:26:5d:
ac:47:7a:a0:0d:47:37:e8:58:52:f5:9d:53:ec:e6:
91:87:32:b4:c7:70:da:c2:b0:59:3a:f2:ed:68:76:
6f:0d:ee:ca:3c:3d:9a:f1:99:ef:6a:6f:65:98:c4:
4b:e0:c6:f0:df:f3:51:30:6a:dd:02:e6:e7:90:c4:
a3:ae:06:e8:cb:80:84:19:bb:ac:1a:df:f3:b5:3b:
d7:7a:5c:a4:35:7a:3e:29:a8:a2:fe:9c:84:e2:e3:
fb:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:17:DB:B5:4E:F4:5A:57:17:22:E0:04:F1:7F:55:87:2B:68:E5:44
X509v3 Authority Key Identifier:
keyid:09:FE:26:93:E6:24:29:73:FC:D0:72:C6:BA:E5:3F:3C:5E:BC:6E:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cf4mk-YkKXP80HLGuuU_PF68bmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a6ae1b-3966-4392-9683-920da8e14df9/1/_xfbtU70WlcXIuAE8X9Vhyto5UQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/a6ae1b-3966-4392-9683-920da8e14df9/1/Cf4mk-YkKXP80HLGuuU_PF68bmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.9.192.0/18
Signature Algorithm: sha256WithRSAEncryption
42:a2:0b:f0:ab:59:1c:76:1a:84:e2:6b:e0:7b:fc:cf:f0:21:
17:b3:a2:0a:1c:4a:fc:ad:ff:ff:50:47:d4:83:11:b2:73:97:
8e:a2:10:e7:a1:ca:04:64:3f:30:42:b4:cf:00:72:b4:61:22:
c2:fc:a4:50:bd:91:be:17:2e:0b:0d:31:79:96:02:6c:49:a8:
c3:16:8f:30:3b:24:f7:03:bd:10:56:78:e8:7b:48:16:ac:91:
0d:ec:17:ca:c9:f7:b5:75:54:fd:88:e5:ba:58:9e:9b:11:0a:
85:dc:5d:63:36:ca:35:49:1d:59:ea:03:7f:06:f3:c5:3d:e7:
61:43:2f:09:38:eb:45:c2:56:17:b2:78:d8:2b:62:7e:9c:65:
c5:95:81:fa:fb:ae:3a:18:f3:c2:82:44:6f:c1:be:24:04:53:
08:fd:5d:96:d9:d0:cb:2d:f9:27:5d:b7:6f:d5:91:ec:6f:68:
28:61:0a:0f:7b:30:f0:35:74:45:6f:2a:46:67:71:6c:1f:30:
7b:1d:70:0d:78:43:bc:91:95:45:c3:a0:85:47:75:18:dc:69:
91:97:b6:82:04:8c:73:f0:c3:1c:9f:99:b3:94:2b:c4:8f:dc:
8c:00:bc:40:4b:14:83:0b:15:f9:f7:3e:69:a4:bd:06:b9:ad:
84:f6:52:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:59 2024 by rpki-client on console-ams.rpki-client.org