Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/58d593-70ed-4604-92c7-9796571533ed/1/d-0u-Krf2LmQfCpkm81sj_r1qNs.roa
File: d-0u-Krf2LmQfCpkm81sj_r1qNs.roa (raw, json)
Hash identifier: nQqt0isZv/wMJhnLGjnA3xtg3HI9AzwlFLWWJKjMUhc=
Subject key identifier: 77:ED:2E:F8:AA:DF:D8:B9:90:7C:2A:64:9B:CD:6C:8F:FA:F5:A8:DB
Certificate issuer: /CN=e0accc5dc342112a66e83f38cca0e09e5f3a172c
Certificate serial: 0FA5302D
Authority key identifier: E0:AC:CC:5D:C3:42:11:2A:66:E8:3F:38:CC:A0:E0:9E:5F:3A:17:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4KzMXcNCESpm6D84zKDgnl86Fyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/58d593-70ed-4604-92c7-9796571533ed/1/d-0u-Krf2LmQfCpkm81sj_r1qNs.roa
Signing time: Sat 01 Jan 2022 04:53:27 +0000
ROA not before: Sat 01 Jan 2022 04:53:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59469
IP address blocks: 185.158.60.0/22 maxlen: 22
2a07:aa40::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 262484013 (0xfa5302d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0accc5dc342112a66e83f38cca0e09e5f3a172c
Validity
Not Before: Jan 1 04:53:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77ed2ef8aadfd8b9907c2a649bcd6c8ffaf5a8db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:7f:e6:a3:56:bf:6a:7f:06:82:2c:a5:64:28:
19:73:b9:ec:8e:48:94:97:23:73:3e:12:a1:b2:71:
e8:aa:1d:f2:e5:74:77:d0:c0:c0:48:e0:7d:9d:ff:
90:ab:5a:a7:42:76:a4:d4:76:b3:f2:e6:59:ce:e9:
74:40:60:bb:28:f0:5c:8b:ec:e1:e5:e8:9e:0f:3b:
92:d0:5c:58:1d:15:b4:5e:98:72:bb:f9:32:7c:cd:
b5:75:9f:9d:00:a8:37:4d:60:fe:37:17:5e:2e:f9:
09:60:c6:78:f1:04:5e:fa:25:56:1a:76:68:42:29:
bd:0b:17:76:fb:8e:7d:a8:00:6d:40:ec:53:6c:12:
8e:cf:6e:e4:0d:bb:b4:6a:e4:fc:bb:a0:71:48:77:
4d:e0:9d:1a:d8:d1:68:05:82:39:c1:81:b1:c0:99:
f5:cc:e7:7b:7a:35:85:e7:0b:8c:4d:73:ad:6b:4e:
80:5c:ed:ca:4f:df:a6:7a:94:cc:14:61:33:3c:a0:
23:a5:e9:67:b2:63:ed:ba:07:53:cd:02:10:67:c3:
93:ec:96:86:55:66:c2:f8:75:e2:4c:f0:30:24:2a:
96:78:4b:6d:5a:1d:7e:23:27:03:64:bf:de:25:5d:
77:a5:d2:db:6b:09:2a:60:4e:9c:3a:80:a6:32:2e:
06:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:ED:2E:F8:AA:DF:D8:B9:90:7C:2A:64:9B:CD:6C:8F:FA:F5:A8:DB
X509v3 Authority Key Identifier:
keyid:E0:AC:CC:5D:C3:42:11:2A:66:E8:3F:38:CC:A0:E0:9E:5F:3A:17:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4KzMXcNCESpm6D84zKDgnl86Fyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/58d593-70ed-4604-92c7-9796571533ed/1/d-0u-Krf2LmQfCpkm81sj_r1qNs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/58d593-70ed-4604-92c7-9796571533ed/1/4KzMXcNCESpm6D84zKDgnl86Fyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.60.0/22
IPv6:
2a07:aa40::/29
Signature Algorithm: sha256WithRSAEncryption
b0:3d:ba:c5:14:78:f1:45:7f:ab:32:47:38:91:41:2a:25:56:
bb:8d:90:02:a5:4e:72:5e:db:3b:57:15:18:5c:2f:28:ef:21:
ed:4b:a1:48:76:f7:bc:bb:7d:6a:f2:76:16:80:34:7a:bb:ec:
3d:89:c3:46:ff:31:45:03:2b:ba:fd:c2:ed:77:94:22:a0:30:
d3:0e:00:d8:f1:65:49:28:d9:d2:dd:ce:6a:e2:af:33:1b:6a:
19:71:12:30:f3:80:9a:0c:df:3a:28:a7:36:8b:b8:4d:82:ee:
2b:be:08:86:f7:1a:2b:1e:f9:cf:8e:04:f2:4f:a7:ba:bc:4f:
96:7a:d4:74:d9:dd:f0:7e:ad:36:d6:ef:31:9f:33:cd:86:fe:
aa:21:8a:2b:34:a8:c7:7c:f5:76:08:aa:5f:ee:01:f2:64:7e:
d1:74:88:e3:32:51:4a:3f:fc:3a:99:a0:07:20:f0:2c:7a:60:
8d:76:58:44:00:54:11:0f:60:13:48:68:50:27:eb:60:d0:80:
4b:1a:07:ec:d2:38:57:28:4a:f1:5d:a9:0d:70:a9:aa:be:c0:
8c:7a:cb:b3:f9:38:ca:c5:6e:ae:8c:0a:3c:88:27:16:ef:d7:
39:77:e0:18:a3:8f:e8:46:aa:6b:5c:b7:b0:c1:c7:c3:14:e9:
a0:d9:18:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:57 2023 by rpki-client on console-ams.rpki-client.org