Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/f381cd-1145-4a16-9dcb-24030e266d75/1/oyBOTFzN8K_hWWSlIOhrYqKui3U.roa
File: oyBOTFzN8K_hWWSlIOhrYqKui3U.roa (raw, json)
Hash identifier: CjbJnuLdIeCZDgjEtTk9EVpaM6oxC9do2Onil1pLH3s=
Subject key identifier: A3:20:4E:4C:5C:CD:F0:AF:E1:59:64:A5:20:E8:6B:62:A2:AE:8B:75
Certificate issuer: /CN=204777e10a812840c4b156c533b144e150d76a48
Certificate serial: 021D85AA
Authority key identifier: 20:47:77:E1:0A:81:28:40:C4:B1:56:C5:33:B1:44:E1:50:D7:6A:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IEd34QqBKEDEsVbFM7FE4VDXakg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/f381cd-1145-4a16-9dcb-24030e266d75/1/oyBOTFzN8K_hWWSlIOhrYqKui3U.roa
Signing time: Sat 01 Jan 2022 12:59:51 +0000
ROA not before: Sat 01 Jan 2022 12:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 85.8.156.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35489194 (0x21d85aa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=204777e10a812840c4b156c533b144e150d76a48
Validity
Not Before: Jan 1 12:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a3204e4c5ccdf0afe15964a520e86b62a2ae8b75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:4e:4c:c2:29:d3:e8:2e:95:32:06:31:91:8d:
ce:97:eb:e5:d3:18:4c:c4:fb:a5:89:a1:0e:06:39:
48:b4:4c:77:6c:54:da:4d:92:68:d3:85:47:0c:bc:
f5:42:71:13:5e:29:e8:0c:57:e5:1b:85:e0:34:a0:
bc:ab:b1:3d:b7:c7:07:32:6a:e0:39:9e:14:e2:14:
7d:55:5c:f9:06:35:b6:14:71:c4:39:87:1e:fc:bd:
f6:d8:79:1c:fa:8f:1a:68:96:43:d4:7f:70:99:f1:
8b:94:db:d3:36:f6:ec:93:81:10:c5:28:f0:55:39:
f2:83:ae:c5:1b:6a:45:a4:d2:e9:16:ca:a4:ed:1a:
a5:b9:ac:b9:f5:54:10:e8:d6:72:52:e2:62:82:d0:
46:35:f3:17:d8:69:a3:84:8e:0a:b3:49:00:68:3d:
d1:4b:c5:43:e1:7a:81:d5:32:24:6f:71:27:32:65:
59:4d:2f:91:8c:3d:ee:92:93:2c:96:79:5c:1c:a4:
d8:a1:b3:89:8c:07:47:df:43:21:0d:b2:5c:10:74:
a9:0e:e5:17:b1:f0:d2:d5:90:69:c8:24:e1:9e:a5:
81:47:4e:4e:fe:f4:f9:1d:8e:be:a7:09:f8:11:05:
5d:e6:29:cf:ee:79:05:eb:c9:62:9c:ca:46:cb:bc:
c9:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:20:4E:4C:5C:CD:F0:AF:E1:59:64:A5:20:E8:6B:62:A2:AE:8B:75
X509v3 Authority Key Identifier:
keyid:20:47:77:E1:0A:81:28:40:C4:B1:56:C5:33:B1:44:E1:50:D7:6A:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IEd34QqBKEDEsVbFM7FE4VDXakg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/f381cd-1145-4a16-9dcb-24030e266d75/1/oyBOTFzN8K_hWWSlIOhrYqKui3U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/f381cd-1145-4a16-9dcb-24030e266d75/1/IEd34QqBKEDEsVbFM7FE4VDXakg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.8.156.0/22
Signature Algorithm: sha256WithRSAEncryption
6c:cf:90:2e:85:77:8a:6a:97:87:e5:6a:23:d4:51:0d:e1:33:
30:f4:cd:51:9b:bb:32:b3:c1:a6:97:00:d4:16:e4:2d:f0:28:
1c:3f:c8:c4:0c:39:2c:a3:72:da:cb:49:d6:f0:f0:14:c3:bd:
36:77:59:a2:93:13:8f:84:6f:0b:01:b2:80:b2:d0:5b:00:a5:
0f:74:f6:48:b3:ee:b9:61:98:cb:88:f8:38:f9:03:71:f7:e7:
0e:35:d2:bf:3e:62:1d:bf:4c:d0:aa:15:cf:96:89:0e:60:6c:
0d:6c:94:b9:e2:24:79:a2:01:2c:87:d6:b4:78:3b:d1:16:ed:
13:d8:ef:27:8c:da:dc:00:85:5e:28:10:74:cf:3c:e9:55:4c:
19:82:8d:ee:79:e2:ce:e8:6d:b4:2c:e2:15:21:41:28:0d:e5:
d5:7f:ff:e8:21:d9:57:e7:b9:7e:83:26:c3:f9:88:e4:b4:8c:
43:3c:b5:be:bf:6f:d7:6a:98:36:31:ae:32:ad:3f:7c:b2:8b:
94:bc:5e:cf:eb:da:a5:9e:f9:89:e2:70:b4:eb:4b:12:ea:49:
eb:23:25:c6:d0:1f:67:b5:76:2d:65:ee:cb:c6:cb:93:27:ef:
06:38:d8:f2:27:20:29:2e:26:ad:47:1a:14:76:df:cf:64:54:
64:87:46:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:44 2024 by rpki-client on console-ams.rpki-client.org