Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/sRCAB3fTZmH9MfT9i7-TmAj78ww.roa
File: sRCAB3fTZmH9MfT9i7-TmAj78ww.roa (raw, json)
Hash identifier: KpASgdDh+rqlXfmzJr0GQJqmi/c2rsrPDNyS89lm2xs=
Subject key identifier: B1:10:80:07:77:D3:66:61:FD:31:F4:FD:8B:BF:93:98:08:FB:F3:0C
Certificate issuer: /CN=62fa765a393369c96d8d836f23f76e67489c7dde
Certificate serial: 01857142FAD8BBB06B3F15DBA77C3EBFDB15
Authority key identifier: 62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/sRCAB3fTZmH9MfT9i7-TmAj78ww.roa
Signing time: Mon 02 Jan 2023 06:54:52 +0000
ROA not before: Mon 02 Jan 2023 06:54:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 400039
IP address blocks: 85.209.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:42:fa:d8:bb:b0:6b:3f:15:db:a7:7c:3e:bf:db:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fa765a393369c96d8d836f23f76e67489c7dde
Validity
Not Before: Jan 2 06:54:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b110800777d36661fd31f4fd8bbf939808fbf30c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:e9:a6:2c:25:93:9b:09:f9:61:a6:70:54:9a:
c1:86:e3:13:04:0a:64:cb:f1:7a:1e:16:c0:bc:19:
3f:0d:e0:fd:78:4c:59:9e:cb:3e:85:25:3e:85:c4:
95:93:e5:56:d8:c5:c2:0f:b4:14:73:cb:3e:5c:3b:
df:fa:de:7b:5e:c2:9b:8a:48:91:ae:ef:47:1e:d1:
e6:fa:e1:87:c9:3d:76:f2:d2:2a:90:31:d5:9f:f0:
04:e0:61:ce:33:31:e1:45:6d:f4:08:e7:1b:34:45:
f4:a9:78:61:66:e3:24:97:2d:53:bc:4f:5f:7e:be:
52:19:d3:8d:95:1a:fb:42:0d:cd:38:66:bd:42:3b:
44:4d:38:8e:e4:c9:ea:48:d7:69:2e:5f:ec:85:f4:
1a:80:8a:b0:56:25:15:4a:57:a5:a3:67:ff:c4:fb:
2b:8a:da:e9:cd:91:29:34:ce:2b:70:31:01:f7:14:
a3:fc:b9:fb:0d:ae:ac:43:2f:06:f6:dd:9f:92:90:
9b:31:e9:32:70:5c:ae:01:3b:21:77:7b:1b:fd:eb:
c1:68:ca:a2:67:3e:cd:83:68:4a:a6:10:06:39:76:
d6:86:5e:d3:8f:f3:5f:e3:79:63:74:3e:3b:a7:f4:
6b:d0:df:72:b9:0c:9d:f4:9b:c2:f4:62:47:22:44:
71:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:10:80:07:77:D3:66:61:FD:31:F4:FD:8B:BF:93:98:08:FB:F3:0C
X509v3 Authority Key Identifier:
keyid:62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/sRCAB3fTZmH9MfT9i7-TmAj78ww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/Yvp2WjkzacltjYNvI_duZ0icfd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.16.0/24
Signature Algorithm: sha256WithRSAEncryption
b6:5e:95:4f:97:75:be:80:22:66:1e:9a:45:39:05:75:cf:9f:
54:f1:ef:c6:c5:ea:91:12:66:6d:2e:71:d2:e8:9b:dc:63:c4:
a8:ed:4d:ca:21:41:0e:8d:ff:6b:16:89:e2:77:44:c9:7a:a1:
b7:60:77:f4:34:9e:2a:82:e1:bf:15:f4:3a:d4:b8:02:f7:2b:
36:46:3a:21:4a:95:2e:9b:c8:56:f7:c8:8c:fe:fc:bc:09:0c:
84:01:b2:d7:8d:94:d9:3c:6d:16:7c:e9:0e:39:90:98:22:15:
a9:3f:62:bf:e2:39:e9:71:e9:11:2d:48:d2:9d:16:88:9b:dd:
d8:9e:33:d1:51:75:47:7f:3f:ba:fa:54:67:f5:62:a7:c1:47:
6d:ee:33:64:8a:02:48:4f:ba:63:52:3c:da:71:ae:e6:d5:9a:
bf:a3:42:23:ba:34:6b:8e:80:cc:fb:dd:bb:76:7c:53:cd:20:
5d:59:c2:72:49:d2:84:7b:52:f4:b6:41:40:81:ae:de:e5:6a:
4c:5c:f0:46:ee:69:8b:3a:b9:67:96:55:fa:28:9e:fb:f2:7c:
48:b6:8d:9a:63:f4:54:41:6f:ab:ba:4d:a7:89:fe:37:12:3f:
e4:6b:1d:01:64:07:a9:ec:ea:47:a5:26:9a:a1:dc:f6:bd:37:
69:ed:9e:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:15 2023 by rpki-client on console-ams.rpki-client.org