Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/b0a72d-c7a5-4add-9ec2-4be99f65dad4/1/JZMstIvEqi96Qis1DLyhc54gH0Q.roa
File: JZMstIvEqi96Qis1DLyhc54gH0Q.roa (raw, json)
Hash identifier: gz9eJ9RFYV1xh3a6642Khdotd07rZfdDOofsKKz1f2g=
Subject key identifier: 25:93:2C:B4:8B:C4:AA:2F:7A:42:2B:35:0C:BC:A1:73:9E:20:1F:44
Certificate issuer: /CN=6331a29a09b98b85ac4944a148b9af08c27545a1
Certificate serial: 16681463
Authority key identifier: 63:31:A2:9A:09:B9:8B:85:AC:49:44:A1:48:B9:AF:08:C2:75:45:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YzGimgm5i4WsSUShSLmvCMJ1RaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/b0a72d-c7a5-4add-9ec2-4be99f65dad4/1/JZMstIvEqi96Qis1DLyhc54gH0Q.roa
Signing time: Sat 01 Jan 2022 08:58:07 +0000
ROA not before: Sat 01 Jan 2022 08:58:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207227
IP address blocks: 185.74.36.0/22 maxlen: 24
2a05:48c0::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 375919715 (0x16681463)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6331a29a09b98b85ac4944a148b9af08c27545a1
Validity
Not Before: Jan 1 08:58:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25932cb48bc4aa2f7a422b350cbca1739e201f44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:61:ed:8f:d7:77:2f:74:00:a7:c8:6f:14:89:
0d:d5:99:b5:02:a6:61:00:05:bc:4d:60:56:65:e4:
48:d6:af:7e:0b:9d:7c:d0:73:ea:ef:44:99:c8:87:
f1:31:0a:b3:99:77:ab:64:a3:e8:17:ce:ba:a3:0a:
e0:1b:e8:10:ec:6d:fa:11:a3:1d:0e:2f:cc:86:02:
a2:3a:14:22:aa:35:7a:ce:63:b6:de:d0:d4:06:7d:
52:d4:34:5e:14:bd:23:ad:b7:76:23:ca:57:85:79:
2d:16:91:b1:16:66:4f:29:08:9b:14:6a:16:2d:4c:
50:46:0e:b2:7c:08:df:29:84:b1:b5:02:b9:8b:e7:
67:b6:88:bf:a7:20:6b:c0:8b:57:96:aa:a1:f8:d5:
40:ba:d2:68:2e:a9:c4:c9:0e:c7:91:00:3c:a0:94:
81:a6:eb:6b:c3:ec:d2:e1:0b:86:16:a3:6c:30:d6:
01:35:7b:6c:8a:89:2f:50:c9:00:9d:ed:6c:fa:80:
78:57:46:4a:9a:3f:e8:e4:dd:2d:ff:d4:47:32:26:
eb:f9:d4:f2:ee:fe:f3:26:96:4b:59:44:3d:d4:0b:
e2:43:9d:47:9f:37:93:90:57:d5:44:65:5e:3e:e9:
c0:71:31:21:4a:a8:00:d3:5a:91:64:c7:60:cc:8a:
93:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:93:2C:B4:8B:C4:AA:2F:7A:42:2B:35:0C:BC:A1:73:9E:20:1F:44
X509v3 Authority Key Identifier:
keyid:63:31:A2:9A:09:B9:8B:85:AC:49:44:A1:48:B9:AF:08:C2:75:45:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YzGimgm5i4WsSUShSLmvCMJ1RaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b0a72d-c7a5-4add-9ec2-4be99f65dad4/1/JZMstIvEqi96Qis1DLyhc54gH0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/b0a72d-c7a5-4add-9ec2-4be99f65dad4/1/YzGimgm5i4WsSUShSLmvCMJ1RaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.74.36.0/22
IPv6:
2a05:48c0::/29
Signature Algorithm: sha256WithRSAEncryption
48:5e:43:8b:61:66:03:20:d4:7a:82:ba:34:12:b9:b8:37:01:
16:0e:8b:f5:53:96:62:fd:3e:d3:87:c8:83:3d:5b:37:29:14:
a9:86:47:cd:ba:da:ea:93:f3:8d:e5:90:23:f1:9c:80:a8:eb:
b9:35:7d:24:ab:2e:ec:a4:d0:9d:e5:e6:b7:f4:e5:dc:e5:b2:
c8:a0:ae:75:7e:60:50:3a:a5:13:5f:35:46:4c:44:6c:80:37:
d7:a5:f4:20:ba:2c:23:ef:1a:ce:c8:96:64:9b:b2:f7:26:63:
99:36:9a:f6:19:d3:ad:58:f9:c1:7b:75:2d:f1:5c:14:83:9e:
42:38:b1:af:5c:00:7f:cb:4c:50:75:ac:9d:13:95:97:c3:cd:
e5:e8:a2:16:b4:aa:9d:ee:ae:65:9d:de:fe:95:75:84:35:78:
2c:43:9d:35:7b:14:b2:a0:fa:dc:70:6a:6b:a0:db:31:fa:ea:
e9:49:2e:47:59:c1:1b:1d:e7:94:3f:39:4d:a4:6b:83:08:a0:
d7:be:b7:be:54:8f:66:f3:bd:b6:2f:66:29:31:b8:a0:9a:d4:
f9:75:08:30:b6:57:b5:87:8b:64:50:37:70:4b:6f:05:ba:7c:
b7:42:1d:d5:fd:3c:64:74:cc:f9:97:b9:93:2d:19:a7:5a:e1:
02:bb:0e:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:51 2024 by rpki-client on console-ams.rpki-client.org