Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/778754-4002-471a-b44d-6c7de1821fa9/1/yizdIv1YtE4nr3rvNmBrklPteP0.roa
File: yizdIv1YtE4nr3rvNmBrklPteP0.roa (raw, json)
Hash identifier: X+3mxRWq+wL6swYvGsi4GJHwi+lyREddKlbhvqKfwGo=
Subject key identifier: CA:2C:DD:22:FD:58:B4:4E:27:AF:7A:EF:36:60:6B:92:53:ED:78:FD
Certificate issuer: /CN=8cafa649dd1f037c026311923f30ec305e03379b
Certificate serial: 0A031F77
Authority key identifier: 8C:AF:A6:49:DD:1F:03:7C:02:63:11:92:3F:30:EC:30:5E:03:37:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jK-mSd0fA3wCYxGSPzDsMF4DN5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/778754-4002-471a-b44d-6c7de1821fa9/1/yizdIv1YtE4nr3rvNmBrklPteP0.roa
Signing time: Sat 01 Jan 2022 05:57:12 +0000
ROA not before: Sat 01 Jan 2022 05:57:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210046
IP address blocks: 188.66.24.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167976823 (0xa031f77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8cafa649dd1f037c026311923f30ec305e03379b
Validity
Not Before: Jan 1 05:57:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca2cdd22fd58b44e27af7aef36606b9253ed78fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ee:df:a9:d0:dd:e6:99:88:7a:be:05:03:0d:
79:41:a5:1c:05:8a:c2:9d:a6:7a:af:b9:3f:53:b0:
16:1a:f4:d7:9c:57:e1:58:77:f9:40:85:27:19:b5:
19:14:35:27:ae:e3:6c:22:c7:8a:02:bd:87:fb:ed:
5f:6d:aa:0a:8f:29:ed:ae:f0:b7:ce:11:ad:9f:dd:
49:e6:44:dc:4b:33:e2:3f:4e:b5:e8:ab:55:f9:a3:
bb:7e:2e:a1:06:f9:de:9e:99:9a:64:a0:44:00:0f:
3c:3d:79:3e:b7:9a:da:92:5f:28:7d:e9:04:42:45:
18:70:d4:c0:69:7e:90:d9:4a:de:17:46:f7:f8:97:
43:f3:5d:ba:c3:7e:d9:64:12:6a:44:01:0a:29:8e:
25:0f:ba:1b:d2:3b:29:d4:22:62:cd:4e:c4:59:f2:
8b:c5:24:69:8d:a3:b0:0e:ff:ba:8f:48:98:3b:68:
93:5f:16:68:05:9d:49:12:fa:b7:2b:ca:32:a9:8c:
94:79:be:cf:c5:6a:d4:59:ac:31:59:93:75:46:ae:
35:16:bc:9c:76:db:77:ce:c7:61:b2:05:98:bb:66:
7c:34:42:31:ff:d3:bc:c5:fb:1a:59:3b:6a:b0:35:
15:19:cb:a4:7f:e6:42:2f:02:c1:4e:da:f3:cf:a5:
a7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:2C:DD:22:FD:58:B4:4E:27:AF:7A:EF:36:60:6B:92:53:ED:78:FD
X509v3 Authority Key Identifier:
keyid:8C:AF:A6:49:DD:1F:03:7C:02:63:11:92:3F:30:EC:30:5E:03:37:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jK-mSd0fA3wCYxGSPzDsMF4DN5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/778754-4002-471a-b44d-6c7de1821fa9/1/yizdIv1YtE4nr3rvNmBrklPteP0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/778754-4002-471a-b44d-6c7de1821fa9/1/jK-mSd0fA3wCYxGSPzDsMF4DN5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.66.24.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:67:bc:74:32:04:c9:51:b2:d0:04:6d:01:c7:3f:3a:db:77:
ff:f2:52:c6:11:d5:c3:db:b3:3a:27:51:0a:a2:fa:1d:39:f1:
a9:9b:4e:9e:b1:33:49:11:df:21:db:c3:bf:57:d7:69:14:ae:
d1:4d:ed:05:21:ff:2b:9d:ee:d7:5d:9b:f2:9e:87:b3:bb:07:
56:1b:89:ea:2d:67:cc:e6:71:af:7b:96:a4:0d:1e:20:ad:8e:
a8:24:1c:23:25:ff:36:33:be:0e:6c:c5:6f:1c:c8:53:30:87:
bc:88:1f:bc:c0:17:b3:b5:e5:db:f9:08:ff:ac:ee:ad:d1:e8:
81:10:21:dd:31:5b:ea:47:50:34:80:4b:56:e8:a8:81:67:7b:
20:a6:88:c6:b3:9d:55:ec:6b:5f:4f:fe:db:9c:f4:d5:f6:e9:
a2:5f:55:ce:0c:22:10:a3:f4:8f:7a:2e:8e:f6:15:a7:97:ba:
19:4a:b8:06:b0:b5:dd:1e:34:1b:f2:84:67:9a:8d:89:a6:84:
be:f4:78:02:37:50:2a:29:b6:31:af:29:9a:da:45:f5:d0:ce:
34:08:cf:8b:57:c0:e9:09:dc:47:81:09:f0:47:f7:a7:75:03:
cc:80:c4:46:cb:61:2f:4b:bb:34:ae:34:b6:82:d3:70:2c:14:
a6:63:29:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:01 2024 by rpki-client on console-ams.rpki-client.org