Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/CkevPmIM8sP4xxAz9EZUC8W87ic.roa
File: CkevPmIM8sP4xxAz9EZUC8W87ic.roa (raw, json)
Hash identifier: vgi4Cm0wv2Ziy9VDw0GtZRryG6AqrEe9DFm7hbdnH6w=
Subject key identifier: 0A:47:AF:3E:62:0C:F2:C3:F8:C7:10:33:F4:46:54:0B:C5:BC:EE:27
Certificate issuer: /CN=62fa765a393369c96d8d836f23f76e67489c7dde
Certificate serial: 0A2098B7
Authority key identifier: 62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/CkevPmIM8sP4xxAz9EZUC8W87ic.roa
Signing time: Thu 05 May 2022 16:09:39 +0000
ROA not before: Thu 05 May 2022 16:09:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 85.209.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169908407 (0xa2098b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fa765a393369c96d8d836f23f76e67489c7dde
Validity
Not Before: May 5 16:09:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a47af3e620cf2c3f8c71033f446540bc5bcee27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:28:23:d1:85:a3:b8:80:c6:b7:b5:8c:46:96:
c5:1e:ed:22:a8:15:51:0b:1c:45:bb:8d:db:c1:88:
d6:16:0f:ac:f9:14:19:8c:b6:85:ef:fa:40:9f:02:
58:65:b8:22:23:3b:d0:c1:4e:4f:16:58:d9:57:b9:
a5:d7:10:c5:0c:06:6f:8e:e1:14:76:48:bd:b4:d7:
a9:12:ef:f1:cd:e9:de:cc:ca:b7:b9:3c:67:7d:07:
6e:3a:ca:59:3c:8d:f0:82:ea:d6:25:48:f3:7f:da:
58:56:a0:2f:c4:f4:4d:c5:d7:49:97:db:5f:1c:5d:
02:20:e3:c1:78:d6:25:d8:6b:8b:17:24:4a:6e:e6:
ef:d5:4f:cb:65:26:a0:03:ca:28:f9:9a:43:77:3b:
4e:fd:91:1b:43:89:b8:41:4e:eb:e3:4e:8d:30:70:
23:47:60:65:94:01:7a:53:a1:a3:9b:33:eb:32:af:
ca:8c:8a:45:ec:e9:fe:13:b7:9b:a9:d4:cb:b5:28:
c5:96:68:51:e2:50:26:7a:a8:22:b5:fc:b6:c3:1b:
0e:f6:e4:07:7d:c1:4e:5c:97:bc:66:ad:d9:c7:9b:
eb:62:54:dd:55:b2:65:a0:b1:c7:7f:30:fc:bb:a9:
9f:31:b4:02:a2:fd:90:5e:09:1f:fd:6c:aa:a2:61:
1e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:47:AF:3E:62:0C:F2:C3:F8:C7:10:33:F4:46:54:0B:C5:BC:EE:27
X509v3 Authority Key Identifier:
keyid:62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/CkevPmIM8sP4xxAz9EZUC8W87ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/Yvp2WjkzacltjYNvI_duZ0icfd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.17.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:ee:f8:d2:4d:ec:37:a7:20:6c:77:79:36:c8:8a:66:df:6d:
29:6c:62:bf:09:9a:43:e6:44:d7:12:40:1b:c8:6d:3e:98:9d:
d7:26:7e:41:8b:c7:f2:15:fa:69:ff:0c:b9:18:06:76:e2:bc:
80:ee:92:fe:d3:05:7c:0a:b1:b4:81:35:a7:dd:61:1c:d1:d2:
a0:84:83:5e:73:c1:d7:b4:a7:b1:e7:25:89:47:73:72:11:80:
e2:64:77:ce:5e:09:06:35:e4:28:16:2c:cc:be:93:9f:6a:b5:
8b:f5:ef:79:73:b1:70:58:c6:70:aa:6f:f7:59:58:d3:d4:e9:
a4:75:db:8b:b2:25:ab:db:24:cc:76:9e:ee:5c:9c:50:3a:a5:
d0:01:2f:ba:7e:ba:48:e6:97:93:f4:38:7b:93:07:85:6b:60:
7b:be:6d:5f:48:8b:88:8a:52:87:d8:a6:a0:57:c9:c1:31:59:
68:41:62:df:03:9c:1f:ae:36:49:97:2d:75:c3:86:3d:31:f1:
c7:c4:76:26:17:8f:9a:d4:2e:2a:2e:c3:0b:f0:02:14:26:a1:
3a:27:0c:75:be:c2:1d:f0:c9:5e:03:f2:e3:c7:85:40:d2:09:
b6:37:66:74:53:59:1f:bd:4a:49:a0:33:6d:2c:2f:5c:31:3f:
d2:81:4f:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:52:20 2024 by rpki-client on console-ams.rpki-client.org