Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/f9de18-c8c1-48fd-99ab-cfacb83fe8ed/1/HXApvZryrdhY_IeYfqmWfXomPiA.roa
File: HXApvZryrdhY_IeYfqmWfXomPiA.roa (raw, json)
Hash identifier: UzZET19jNQbLtiDTFmflaCSaBevOGjCNhFTD6AIECmI=
Subject key identifier: 1D:70:29:BD:9A:F2:AD:D8:58:FC:87:98:7E:A9:96:7D:7A:26:3E:20
Certificate issuer: /CN=be9b02bb81f7b5b0fb62a1a4a3dc5a88d1cbe4ff
Certificate serial: 0185719E621CB2772B6292DC292DBA934EF3
Authority key identifier: BE:9B:02:BB:81:F7:B5:B0:FB:62:A1:A4:A3:DC:5A:88:D1:CB:E4:FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vpsCu4H3tbD7YqGko9xaiNHL5P8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/f9de18-c8c1-48fd-99ab-cfacb83fe8ed/1/HXApvZryrdhY_IeYfqmWfXomPiA.roa
Signing time: Mon 02 Jan 2023 08:34:43 +0000
ROA not before: Mon 02 Jan 2023 08:34:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 12390
IP address blocks: 185.199.56.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:9e:62:1c:b2:77:2b:62:92:dc:29:2d:ba:93:4e:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be9b02bb81f7b5b0fb62a1a4a3dc5a88d1cbe4ff
Validity
Not Before: Jan 2 08:34:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d7029bd9af2add858fc87987ea9967d7a263e20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:8c:9e:da:88:19:28:68:aa:ca:c2:d4:62:39:
1a:f7:f6:2d:09:16:1b:1e:67:47:4c:93:ea:42:e3:
c2:fa:39:15:1d:16:db:fc:47:37:f9:54:5f:3c:bf:
06:47:70:87:4b:c6:90:e7:2b:44:3e:aa:bc:ab:30:
2c:1d:54:4e:9d:60:ae:96:bd:a1:89:90:11:06:a2:
33:08:4f:bd:ce:f0:8e:b4:b3:a7:89:eb:67:2c:a4:
3b:6f:b8:fc:55:05:be:6b:66:7e:36:09:0e:67:f7:
89:df:b2:ac:88:7d:4e:b9:73:ad:61:5f:d1:a8:93:
a3:6c:20:65:65:8e:9c:a1:7e:d3:22:7b:d9:b7:64:
24:0d:0c:3c:50:14:b4:63:73:39:95:a6:7f:5e:2b:
2c:03:98:5f:12:95:6d:16:14:4d:e0:55:db:72:6f:
63:a9:ba:a9:e8:65:fd:9d:df:10:73:8b:75:36:9d:
49:97:03:4b:97:09:8e:56:2c:d7:37:0b:76:14:3b:
ce:32:5b:85:6d:47:3f:06:af:cf:8d:58:9b:6b:a4:
fb:ee:13:cc:d6:44:e6:fa:16:7f:b8:01:3e:16:60:
72:a1:8b:64:89:ca:8b:d0:1b:0c:ef:ce:fe:b9:c6:
54:f7:97:08:ca:01:90:31:3f:81:f9:51:bf:0e:58:
1e:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:70:29:BD:9A:F2:AD:D8:58:FC:87:98:7E:A9:96:7D:7A:26:3E:20
X509v3 Authority Key Identifier:
keyid:BE:9B:02:BB:81:F7:B5:B0:FB:62:A1:A4:A3:DC:5A:88:D1:CB:E4:FF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vpsCu4H3tbD7YqGko9xaiNHL5P8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f9de18-c8c1-48fd-99ab-cfacb83fe8ed/1/HXApvZryrdhY_IeYfqmWfXomPiA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/f9de18-c8c1-48fd-99ab-cfacb83fe8ed/1/vpsCu4H3tbD7YqGko9xaiNHL5P8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.199.56.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:f8:9c:fb:94:0a:37:d9:89:45:9d:84:87:52:24:77:b1:6d:
3b:d2:5b:3b:a2:ca:0f:ae:b5:1d:3a:86:96:90:87:db:75:51:
dd:57:f8:a4:34:60:4a:14:3e:e2:e7:a4:97:c3:c8:5e:20:6f:
a5:e7:91:e5:d7:85:be:13:fc:ca:7b:c5:51:db:22:f1:2d:eb:
47:f6:77:48:29:00:b1:b2:64:37:64:41:7f:f3:7e:cf:bb:e8:
41:78:8c:7b:be:87:6c:c0:dd:94:67:4d:45:c2:e1:89:f5:7e:
a0:da:8c:bc:0b:38:de:22:38:65:41:a8:7f:dc:78:4e:8a:c3:
7e:cd:11:cb:82:5b:fb:47:60:19:71:90:76:c1:83:7f:ea:d7:
7e:a2:ab:52:15:e3:2a:e0:d8:84:50:81:7b:89:51:55:bc:36:
ba:56:9c:b6:00:b2:ad:46:8a:fd:fd:54:53:f8:f8:d4:fc:85:
4f:c4:a1:08:e9:bb:97:6c:08:5c:c6:99:bd:b6:59:55:c5:57:
42:52:b8:90:14:df:71:2f:2f:84:76:a8:f4:b6:4f:30:99:b4:
49:78:98:6f:15:cd:06:53:95:c7:55:2a:f2:47:73:de:8f:67:
52:b3:ca:4a:9e:dd:93:14:5d:6b:16:68:08:34:b9:e9:df:7c:
32:70:d2:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:54:43 2025 by rpki-client