Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ee/2a89de-8712-4842-a053-34f24feee664/1/v8hD9I6lXj0-WzPcmgv5AxMeedw.roa
File: v8hD9I6lXj0-WzPcmgv5AxMeedw.roa (raw, json)
Hash identifier: Q/GyYR42Z+MqfodehkNdzMPjfkOiKC2dbcQBubg5IJk=
Subject key identifier: BF:C8:43:F4:8E:A5:5E:3D:3E:5B:33:DC:9A:0B:F9:03:13:1E:79:DC
Certificate issuer: /CN=4f9eb093ca13375a2fcdd0198da5501dd6af9486
Certificate serial: 02FF9896
Authority key identifier: 4F:9E:B0:93:CA:13:37:5A:2F:CD:D0:19:8D:A5:50:1D:D6:AF:94:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T56wk8oTN1ovzdAZjaVQHdavlIY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ee/2a89de-8712-4842-a053-34f24feee664/1/v8hD9I6lXj0-WzPcmgv5AxMeedw.roa
Signing time: Sun 03 Jul 2022 17:35:25 +0000
ROA not before: Sun 03 Jul 2022 17:35:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199496
IP address blocks: 185.249.76.0/22 maxlen: 32
2a0c:c0::/29 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50305174 (0x2ff9896)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9eb093ca13375a2fcdd0198da5501dd6af9486
Validity
Not Before: Jul 3 17:35:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfc843f48ea55e3d3e5b33dc9a0bf903131e79dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:0b:34:3e:de:a2:56:d2:ed:80:00:da:d4:60:
e4:05:8c:9b:b4:60:b6:77:17:87:f5:fe:42:96:5c:
83:38:fd:d7:ac:e8:9b:df:cf:85:13:0c:12:57:92:
01:b1:2f:d9:3c:32:50:5a:30:ba:9b:a0:7e:e9:ba:
d7:31:63:6d:0f:dc:91:a6:d7:c5:f1:2c:2c:4e:44:
5b:25:f5:5c:f1:7e:69:cc:ae:e7:47:d6:cd:12:ab:
b5:df:53:ca:b9:f6:e8:c5:f9:59:ac:58:6e:90:2b:
a0:b1:e3:b3:c0:48:a4:fb:1c:c2:d9:f8:61:a6:69:
88:a5:ab:27:fb:66:99:87:20:c1:fd:47:27:6e:32:
27:7d:f5:d6:5f:50:8c:c0:bb:7c:d9:e3:d3:9d:7d:
83:e5:1c:d1:15:92:62:79:3b:9d:5b:54:90:ad:58:
6a:7c:8d:57:02:84:e7:99:c6:2d:8a:95:36:9d:b4:
71:68:1c:d0:e4:06:8a:88:94:b8:12:3f:db:67:22:
78:98:e8:c4:a4:26:05:b0:d1:3c:06:ca:7c:d4:01:
0d:91:db:44:e0:66:e0:3e:2f:04:14:fa:f7:3b:70:
64:86:21:17:a9:9d:f0:24:b9:2b:05:d8:a6:69:60:
69:9a:7b:b9:f9:de:74:aa:6c:d8:81:66:ae:86:e4:
ff:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C8:43:F4:8E:A5:5E:3D:3E:5B:33:DC:9A:0B:F9:03:13:1E:79:DC
X509v3 Authority Key Identifier:
keyid:4F:9E:B0:93:CA:13:37:5A:2F:CD:D0:19:8D:A5:50:1D:D6:AF:94:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T56wk8oTN1ovzdAZjaVQHdavlIY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/2a89de-8712-4842-a053-34f24feee664/1/v8hD9I6lXj0-WzPcmgv5AxMeedw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/2a89de-8712-4842-a053-34f24feee664/1/T56wk8oTN1ovzdAZjaVQHdavlIY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.249.76.0/22
IPv6:
2a0c:c0::/29
Signature Algorithm: sha256WithRSAEncryption
07:2a:b4:fa:fb:76:89:99:4a:22:a3:d6:a9:c1:c6:5f:04:a1:
a8:17:dd:69:61:25:0f:57:95:56:d0:aa:5f:0a:b0:1e:f6:e7:
92:6f:13:84:59:9e:6b:e8:c7:89:b8:ed:d2:aa:48:29:15:29:
65:56:1e:5c:eb:bd:29:9d:ce:d7:df:40:a0:cf:3b:fa:29:3a:
f4:bf:1e:53:68:dc:6f:6e:fb:a4:e3:c5:f2:b2:e1:1f:2d:9a:
96:19:f2:34:bb:29:dc:85:cc:3c:ba:af:28:61:33:dc:3a:64:
d8:df:a4:6b:10:cf:dc:df:c4:94:fa:2d:11:fb:0f:12:80:e6:
fd:05:4c:b9:ef:4b:90:bb:06:da:2e:51:b5:29:e5:58:b0:7d:
e4:c9:50:a7:31:41:3a:c9:30:36:d0:c8:d5:f0:fc:4a:5e:b3:
96:37:f3:b6:d9:01:32:f8:07:e0:8c:2e:7c:ad:b8:cd:9c:0f:
d9:a6:10:27:3a:64:92:38:7e:c3:74:6e:07:da:da:ad:f2:43:
68:2e:06:a3:c2:02:ab:18:04:a6:ea:b9:e6:37:c6:5b:2f:9c:
5c:b3:eb:c1:5f:4d:8b:58:00:50:12:83:1c:e8:de:a5:d6:dc:
ea:b3:95:a0:6d:9e:2e:34:24:b1:40:d4:b3:49:98:9f:87:2a:
d3:27:30:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:51 2024 by rpki-client on console-fra.rpki-client.org