Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/23929a-b247-4f3b-9cd1-8b1f5becdda2/1/zb3HyvvaykFFd457GWP1gMfqTO8.roa
File: zb3HyvvaykFFd457GWP1gMfqTO8.roa (raw, json)
Hash identifier: XbAg1uHYNo5RD5tC1MHUAkSuZ1Bhbpd5bXOLyV8K8kQ=
Subject key identifier: CD:BD:C7:CA:FB:DA:CA:41:45:77:8E:7B:19:63:F5:80:C7:EA:4C:EF
Certificate issuer: /CN=e3c7c19f8d9b50ea60cce7498af0fd8c3908119e
Certificate serial: 01856C4A4554C1AF1693C0A478EE735B963D
Authority key identifier: E3:C7:C1:9F:8D:9B:50:EA:60:CC:E7:49:8A:F0:FD:8C:39:08:11:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/48fBn42bUOpgzOdJivD9jDkIEZ4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/23929a-b247-4f3b-9cd1-8b1f5becdda2/1/zb3HyvvaykFFd457GWP1gMfqTO8.roa
Signing time: Sun 01 Jan 2023 07:44:44 +0000
ROA not before: Sun 01 Jan 2023 07:44:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211415
IP address blocks: 185.234.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:4a:45:54:c1:af:16:93:c0:a4:78:ee:73:5b:96:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3c7c19f8d9b50ea60cce7498af0fd8c3908119e
Validity
Not Before: Jan 1 07:44:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cdbdc7cafbdaca4145778e7b1963f580c7ea4cef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:97:bf:22:f3:a4:1e:51:da:cc:91:0e:44:54:
a4:5a:78:64:4c:31:48:17:41:25:6f:ad:68:11:f1:
4d:53:1d:bb:90:03:8b:29:04:1d:4f:8e:50:22:ca:
7f:72:a7:c3:1f:3a:21:61:cd:fd:f4:f8:0f:7c:49:
bd:fa:d0:50:ba:2b:61:58:04:ab:06:78:59:af:49:
4a:3a:57:4d:c4:71:af:ee:fd:4f:32:0b:20:6a:02:
b3:5f:71:f2:fe:b4:ce:91:7a:5b:01:8e:75:8f:7f:
89:64:a2:d9:8e:bc:cc:f5:2a:c0:35:53:5a:b3:33:
9e:dd:23:28:1f:65:4f:4d:43:f8:ac:db:cb:92:26:
36:c1:a0:bc:da:8e:02:17:23:96:44:71:2d:40:61:
94:d4:03:a8:0a:bd:4a:f0:6b:0c:67:d1:ff:2f:d0:
90:1d:38:cc:b4:8c:96:37:a4:a2:45:14:4d:a2:c8:
cd:28:e7:5c:49:ed:4a:00:04:b9:15:88:b9:ad:07:
b5:60:c3:2c:0c:ec:ab:ac:c4:81:0d:ef:52:dc:9a:
c7:27:29:d0:9b:d2:14:e1:b5:1d:65:c5:f8:ca:9a:
67:1c:b7:cb:15:39:c6:6b:38:81:ef:59:12:f4:a3:
b4:47:67:11:31:69:f3:b5:24:49:ae:f0:b1:06:fe:
15:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:BD:C7:CA:FB:DA:CA:41:45:77:8E:7B:19:63:F5:80:C7:EA:4C:EF
X509v3 Authority Key Identifier:
keyid:E3:C7:C1:9F:8D:9B:50:EA:60:CC:E7:49:8A:F0:FD:8C:39:08:11:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/48fBn42bUOpgzOdJivD9jDkIEZ4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/23929a-b247-4f3b-9cd1-8b1f5becdda2/1/zb3HyvvaykFFd457GWP1gMfqTO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/23929a-b247-4f3b-9cd1-8b1f5becdda2/1/48fBn42bUOpgzOdJivD9jDkIEZ4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.234.219.0/24
Signature Algorithm: sha256WithRSAEncryption
dc:9b:f9:94:a9:e9:84:57:1a:38:5c:cc:ad:06:55:3e:bd:b1:
33:bf:98:c9:95:7e:81:db:7a:b7:03:25:ce:0a:4d:f8:7d:6a:
ab:0c:c8:cf:c4:be:12:a1:0c:20:e4:9c:6b:c6:42:bc:3d:1e:
d8:82:1e:72:78:75:0f:a8:b0:3e:22:63:88:8b:42:b9:29:df:
6b:96:79:b0:c3:de:36:44:d0:1a:45:aa:5b:6a:2d:7d:cf:a7:
58:d7:85:42:80:0d:9b:3c:08:19:a3:fb:82:11:7a:78:06:85:
36:8f:e3:5d:b8:e1:5c:43:17:80:45:ec:9d:7c:ed:87:68:42:
5f:eb:b3:84:e7:dc:33:7d:8f:31:43:4f:29:2a:85:71:1b:2a:
a9:35:3d:f7:67:dc:0a:82:65:58:3e:4f:c3:c1:5c:0a:dc:79:
eb:1e:db:04:91:39:99:c4:ff:5f:c6:a9:b4:05:f7:44:f8:98:
1e:c4:48:3b:43:a6:e3:ff:4b:45:b0:7e:67:14:24:04:18:20:
57:bc:12:cd:23:88:ef:68:2b:08:97:41:77:91:fb:23:37:19:
ad:07:0b:99:e9:b6:5f:3b:b2:f2:c7:5e:3e:5c:c1:2b:24:70:
36:85:76:c7:8c:4c:f6:06:25:00:aa:a2:df:8d:7b:f4:77:45:
ad:9d:25:e3
-----BEGIN CERTIFICATE-----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Generated at Fri Nov 24 16:38:23 2023 by rpki-client on console-ams.rpki-client.org