Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/f381cd-1145-4a16-9dcb-24030e266d75/1/8h-eqeTbV2owNIg23wiOhSXQmDY.roa
File: 8h-eqeTbV2owNIg23wiOhSXQmDY.roa (raw, json)
Hash identifier: C8SngjkuVy41EQg0m8R1sPFAYueEkH0bgr9m8qf7dMc=
Subject key identifier: F2:1F:9E:A9:E4:DB:57:6A:30:34:88:36:DF:08:8E:85:25:D0:98:36
Certificate issuer: /CN=204777e10a812840c4b156c533b144e150d76a48
Certificate serial: 0182177AD4B21C6AD3B7933EF5902CD492AD
Authority key identifier: 20:47:77:E1:0A:81:28:40:C4:B1:56:C5:33:B1:44:E1:50:D7:6A:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IEd34QqBKEDEsVbFM7FE4VDXakg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/f381cd-1145-4a16-9dcb-24030e266d75/1/8h-eqeTbV2owNIg23wiOhSXQmDY.roa
Signing time: Tue 19 Jul 2022 17:21:42 +0000
ROA not before: Tue 19 Jul 2022 17:21:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 85.8.156.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:17:7a:d4:b2:1c:6a:d3:b7:93:3e:f5:90:2c:d4:92:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=204777e10a812840c4b156c533b144e150d76a48
Validity
Not Before: Jul 19 17:21:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f21f9ea9e4db576a30348836df088e8525d09836
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ea:5e:99:e2:2c:b6:39:75:50:ed:b0:08:70:
eb:1b:cc:3b:61:21:95:49:e9:d9:5b:b3:70:4d:34:
3a:c0:d4:00:3d:4a:b8:af:50:32:ff:34:3f:1b:cf:
93:79:dd:49:53:f1:81:7c:bb:71:f2:da:7a:6e:5a:
44:59:e4:0a:3b:7c:b8:03:c1:75:74:67:e3:0e:32:
fe:10:63:4a:55:bd:e9:df:31:b0:0c:85:c9:23:90:
d6:c7:56:33:62:d0:9d:a4:d6:f1:71:33:40:1a:ec:
1a:99:e8:6d:65:4a:16:3d:59:fd:9d:8e:79:29:60:
53:0d:4d:e7:bc:fc:5f:81:2f:e3:88:a7:8c:5a:1a:
0e:fa:58:84:85:94:9c:45:5c:34:ef:bf:af:4f:94:
1c:98:0d:b0:4d:55:17:b9:0a:e3:3a:b1:43:be:e7:
68:90:ca:80:cc:ac:32:1a:2e:85:5b:1d:7e:fb:3a:
0b:f8:a5:c9:ca:25:3e:46:a0:a7:52:91:4d:f1:1e:
38:75:a4:17:57:46:a7:b8:75:6b:3c:e7:fc:99:22:
6b:b2:bc:9b:50:dd:03:6c:ca:3f:9c:f8:16:a2:01:
52:aa:d1:85:e8:7e:58:fa:d3:65:e5:42:77:18:1e:
a3:5b:66:b9:c7:96:87:73:53:3c:f6:98:09:19:23:
4b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:1F:9E:A9:E4:DB:57:6A:30:34:88:36:DF:08:8E:85:25:D0:98:36
X509v3 Authority Key Identifier:
keyid:20:47:77:E1:0A:81:28:40:C4:B1:56:C5:33:B1:44:E1:50:D7:6A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IEd34QqBKEDEsVbFM7FE4VDXakg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/f381cd-1145-4a16-9dcb-24030e266d75/1/8h-eqeTbV2owNIg23wiOhSXQmDY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/f381cd-1145-4a16-9dcb-24030e266d75/1/IEd34QqBKEDEsVbFM7FE4VDXakg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.8.156.0/22
Signature Algorithm: sha256WithRSAEncryption
81:5f:62:ee:aa:c8:5f:34:8e:d7:84:ec:13:4c:5b:22:ef:d3:
2c:13:c3:ac:0c:f4:da:07:af:85:2d:28:55:66:a4:45:b0:fd:
57:02:51:c9:df:1f:e1:95:1e:cb:fe:8d:49:15:1c:2b:86:a4:
1c:f7:e3:0b:3d:3e:2d:b7:d5:18:56:9f:a4:2e:bb:f3:d5:b6:
4f:80:05:77:3c:4d:46:e2:26:4d:ab:ee:d0:4c:d4:ab:75:33:
de:6c:7f:9d:66:59:63:62:d2:f8:98:5c:b3:f3:02:17:f9:49:
68:8f:88:f8:66:01:7e:88:8b:61:ab:0b:3e:8c:9d:d9:8a:73:
04:77:a8:21:6d:45:3a:0b:f2:64:9d:2e:a5:02:a6:ea:e5:72:
df:9f:95:c5:27:44:a5:86:b4:fa:66:2c:2e:49:83:0c:52:c6:
08:dd:a3:6b:ca:4e:4c:59:96:b5:70:34:f2:0e:d6:0c:fc:31:
b1:8e:34:73:ef:b8:8f:d9:30:a2:a8:ab:66:17:fe:b7:bd:5f:
ad:4e:4f:11:3b:8e:a3:84:9e:5b:63:a6:59:89:24:b8:56:ee:
81:26:12:02:45:88:7b:09:45:9d:84:71:b1:5f:92:71:02:2b:
03:de:d4:f3:19:e8:33:95:36:70:e7:2a:56:51:de:fb:71:94:
78:88:7a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:55 2024 by rpki-client on console-fra.rpki-client.org