Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/7P7x0uQWZLyn6FczzTNnhLwHoSY.roa
File: 7P7x0uQWZLyn6FczzTNnhLwHoSY.roa (raw, json)
Hash identifier: qJ76tQ2gqEZglzASBUda2oeKKbQMdUNqcHVFqcG50R0=
Subject key identifier: EC:FE:F1:D2:E4:16:64:BC:A7:E8:57:33:CD:33:67:84:BC:07:A1:26
Certificate issuer: /CN=50ba5b744e8df503d94f41fb29024289c6fa5e5b
Certificate serial: 0185105351CC59DC2D3BA88C92BEAAE9F15E
Authority key identifier: 50:BA:5B:74:4E:8D:F5:03:D9:4F:41:FB:29:02:42:89:C6:FA:5E:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ULpbdE6N9QPZT0H7KQJCicb6Xls.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/7P7x0uQWZLyn6FczzTNnhLwHoSY.roa
Signing time: Wed 14 Dec 2022 11:09:33 +0000
ROA not before: Wed 14 Dec 2022 11:09:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134176
IP address blocks: 109.122.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:10:53:51:cc:59:dc:2d:3b:a8:8c:92:be:aa:e9:f1:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=50ba5b744e8df503d94f41fb29024289c6fa5e5b
Validity
Not Before: Dec 14 11:09:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ecfef1d2e41664bca7e85733cd336784bc07a126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:24:da:2d:2f:0e:03:b5:96:30:e5:30:6d:07:
e8:6d:b3:ec:6b:47:93:8d:e1:b2:5a:1c:f2:59:f4:
29:dd:d1:61:1e:fd:c6:9d:1c:33:d5:77:82:ef:ef:
bc:45:bb:8c:0c:58:1b:a6:10:50:3a:58:67:26:1b:
58:7a:be:a7:f6:32:3c:4a:e4:57:9f:be:c7:e2:fe:
23:fa:ff:82:1e:d3:cb:14:40:61:9c:1f:45:bb:0d:
10:33:79:38:3f:cd:31:0b:28:8a:71:de:b9:d4:d3:
8e:69:88:a5:22:e4:c8:8f:ec:96:bb:d9:26:e5:80:
3a:ed:84:c1:37:a0:3b:3c:d8:59:73:23:1e:04:50:
ae:be:4b:55:58:ba:73:38:7a:e0:34:61:83:bb:f9:
b5:45:dc:e3:99:9d:61:40:c0:d1:f2:d4:66:d1:22:
dc:8e:dd:42:77:ce:18:96:ae:8f:e7:64:71:30:fd:
08:e7:8d:1b:ac:17:4a:02:56:87:df:e1:f8:f2:db:
07:96:2e:03:ba:92:46:e3:e2:96:21:f9:fe:dc:bb:
85:c9:54:18:d7:3e:60:da:83:f9:ff:30:13:8e:7b:
c0:c7:0a:31:d1:85:be:95:65:ca:c8:30:ae:5a:7e:
e6:f9:71:47:53:1a:32:64:03:cc:d1:e1:f6:02:c9:
e0:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:FE:F1:D2:E4:16:64:BC:A7:E8:57:33:CD:33:67:84:BC:07:A1:26
X509v3 Authority Key Identifier:
keyid:50:BA:5B:74:4E:8D:F5:03:D9:4F:41:FB:29:02:42:89:C6:FA:5E:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ULpbdE6N9QPZT0H7KQJCicb6Xls.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/7P7x0uQWZLyn6FczzTNnhLwHoSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/7aff68-bae6-498a-9f58-f559cda8d49f/1/ULpbdE6N9QPZT0H7KQJCicb6Xls.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.122.223.0/24
Signature Algorithm: sha256WithRSAEncryption
97:ac:19:6a:9e:99:eb:e0:03:7f:53:41:e7:42:3a:34:9f:a3:
33:3a:ed:15:05:82:3c:76:b5:b2:ab:17:ab:73:a2:17:4f:38:
86:06:63:2a:2f:00:8a:ab:af:74:ba:f1:ed:6d:f7:3b:73:ba:
2c:6c:7c:41:26:24:a9:8b:f2:b2:84:c0:45:fe:13:90:1e:bd:
77:f1:1a:66:62:46:29:3a:2b:3f:ad:c2:48:19:ed:82:88:79:
a4:45:fc:3a:60:c2:22:a7:e4:af:3f:f2:24:53:1f:a9:54:27:
a0:48:dd:c4:4f:61:90:a9:44:80:16:0d:a1:5f:a6:3a:95:37:
cc:f4:79:79:47:da:41:50:60:b4:f1:70:b6:80:55:4b:85:c7:
91:af:c8:e2:12:2a:f8:f9:ce:e7:1a:ad:25:76:d0:f1:64:92:
bd:3c:51:f4:41:45:15:f8:ff:a9:a5:b3:5f:b0:2f:e4:32:e8:
dd:c8:10:56:35:cc:11:a7:6b:c8:ec:b1:23:b0:bc:24:3d:db:
d9:24:9d:dc:74:a3:5d:f5:ed:c9:27:eb:1f:12:4d:26:50:ea:
f4:ca:93:85:9d:b8:ac:97:b7:90:4c:97:97:99:d9:8d:2e:12:
47:f2:d5:cc:42:11:d2:67:f8:57:ba:ab:fa:e1:1d:b7:31:ee:
b6:4c:0d:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:36 2023 by rpki-client on console-fra.rpki-client.org