Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/ylmNYE0OyplQTvQbNhOboNcXphQ.roa
File: ylmNYE0OyplQTvQbNhOboNcXphQ.roa (raw, json)
Hash identifier: qIVh4BS6PdIl/yXDt8OL/CSV53ihgI6hLuAVyKYTbXs=
Subject key identifier: CA:59:8D:60:4D:0E:CA:99:50:4E:F4:1B:36:13:9B:A0:D7:17:A6:14
Certificate issuer: /CN=62fa765a393369c96d8d836f23f76e67489c7dde
Certificate serial: 0A1D1CBA
Authority key identifier: 62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/ylmNYE0OyplQTvQbNhOboNcXphQ.roa
Signing time: Wed 04 May 2022 20:32:06 +0000
ROA not before: Wed 04 May 2022 20:32:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 85.209.16.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169680058 (0xa1d1cba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fa765a393369c96d8d836f23f76e67489c7dde
Validity
Not Before: May 4 20:32:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ca598d604d0eca99504ef41b36139ba0d717a614
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:b8:d4:6e:16:31:3e:f5:e6:96:42:21:5c:9a:
64:19:8b:f5:11:f9:ca:5f:17:5a:3e:e6:d1:02:91:
52:ce:ad:bd:b0:ef:e3:ce:c8:3a:c6:a0:ce:6a:ae:
fd:8c:b1:88:fc:af:d8:e9:23:2e:b4:eb:a8:a9:1f:
6e:5a:45:d9:66:b9:b5:6a:24:9d:46:ff:74:0a:cf:
37:59:71:2a:29:86:c9:54:8b:3e:92:76:47:49:d5:
b3:45:7d:c1:17:0e:26:b3:31:3c:78:1c:34:cb:37:
a9:44:2e:d2:b8:15:bd:2e:24:26:e6:2e:4a:33:25:
df:85:20:15:1d:28:85:a6:de:73:3f:c6:69:fd:79:
be:a2:81:a7:5e:ab:98:f0:7f:00:66:3f:3d:3f:af:
98:95:d0:dd:f3:58:21:db:f5:bf:ff:32:a0:30:3a:
6f:15:e8:9b:ff:51:cc:07:7b:5d:d1:26:22:b0:e5:
f0:2e:a9:92:21:4e:a6:90:a8:80:41:eb:ae:63:32:
5e:20:a8:c5:73:52:cd:ce:75:96:1f:66:d6:df:b2:
28:07:bd:56:a0:f3:da:13:e8:d6:67:5e:c5:c1:f4:
41:69:35:a3:b3:fb:4d:a9:6a:09:0a:04:04:3b:66:
b2:7e:69:a8:07:81:df:6c:ef:f6:c3:a0:2f:0d:fa:
d1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:59:8D:60:4D:0E:CA:99:50:4E:F4:1B:36:13:9B:A0:D7:17:A6:14
X509v3 Authority Key Identifier:
keyid:62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/ylmNYE0OyplQTvQbNhOboNcXphQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/Yvp2WjkzacltjYNvI_duZ0icfd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.16.0/24
Signature Algorithm: sha256WithRSAEncryption
d0:2f:d3:dc:dd:2d:11:85:38:26:58:ae:9c:d6:eb:60:b8:19:
18:a4:19:8a:83:d4:a0:3d:fd:b1:9c:9c:1b:20:30:f0:30:28:
9f:27:fd:28:ef:96:b2:a7:60:cf:93:50:8d:7d:c5:1b:78:c4:
2e:c1:da:02:36:04:fb:43:77:d2:47:94:0b:84:08:b7:ce:3c:
84:70:9c:42:74:bd:fb:08:83:5c:83:53:79:78:28:2f:58:4b:
f0:a4:a8:85:97:1c:54:d3:eb:4a:86:6c:77:1d:ec:74:a4:7c:
51:17:26:97:d1:f1:7b:23:f3:91:b5:38:4d:61:c8:3f:f6:ea:
30:77:52:30:20:44:d3:cd:15:90:8a:75:a9:c4:56:ef:96:d8:
38:93:42:e2:9f:6e:b6:31:7a:b4:84:5a:a8:10:19:a9:2a:5a:
a3:1e:0a:65:c5:42:23:ec:fa:e5:7e:d1:18:cf:fc:ff:41:6b:
67:ff:c9:12:f7:d5:6d:b3:9e:29:f6:9c:b0:d0:4b:6d:42:84:
21:20:91:88:a8:29:ee:36:38:0b:7a:e4:cb:80:20:65:7b:15:
45:d8:31:8b:11:fa:1e:cf:28:10:be:91:9e:8a:32:0d:c6:f6:
c5:ff:3b:4c:ea:0c:f8:ce:3f:3c:a8:66:0c:79:00:e9:14:bb:
c7:31:72:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:26 2024 by rpki-client on console-fra.rpki-client.org