Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/1-ka1hMyIzh4NLNPGrHchRKwemtU.roa
File: 1-ka1hMyIzh4NLNPGrHchRKwemtU.roa (raw, json)
Hash identifier: MBE3jwkEHJoqngXgID0n7gLWir/H98NpHGYTR2tBPxY=
Subject key identifier: FA:46:B5:84:CC:88:CE:1E:0D:2C:D3:C6:AC:77:21:44:AC:1E:9A:D5
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018534DCE92EAC98DDCCA9C158C193F4308E
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/1-ka1hMyIzh4NLNPGrHchRKwemtU.roa
Signing time: Wed 21 Dec 2022 13:26:10 +0000
ROA not before: Wed 21 Dec 2022 13:26:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200482
IP address blocks: 85.237.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:34:dc:e9:2e:ac:98:dd:cc:a9:c1:58:c1:93:f4:30:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Dec 21 13:26:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa46b584cc88ce1e0d2cd3c6ac772144ac1e9ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:e2:db:d5:99:8b:72:04:e7:6b:0b:8d:95:1d:
eb:5f:1c:da:cc:c4:ac:ab:32:06:c6:e7:4c:83:04:
59:49:a7:a3:c1:f0:47:cb:0d:31:6c:5f:15:4f:0d:
e9:b7:44:1b:b3:7d:aa:56:e8:2f:7f:65:8a:12:30:
ff:86:f6:d5:df:82:ef:8c:0c:9b:06:15:96:83:d3:
66:73:d5:45:b8:8a:14:fe:70:cf:e4:dd:e5:20:cf:
c1:af:86:1e:4d:4c:4a:fc:03:c0:20:90:f1:f1:ce:
b6:c7:d1:f2:65:51:f7:1a:5d:c1:2d:08:c4:f5:01:
97:17:16:43:76:fa:6e:8b:cd:4b:76:54:d4:1f:48:
4a:06:d2:d9:de:df:ff:7c:2b:8f:b0:5a:41:9e:11:
ed:67:1a:e8:73:52:7c:32:36:05:ad:3d:fe:a2:bf:
04:29:fc:e5:2c:8f:8b:4b:b9:e6:73:44:2f:2d:44:
e7:70:3a:5e:bf:c6:96:81:dc:8e:af:91:c0:89:2a:
5e:f3:6a:0d:8b:e3:20:a0:90:d4:b9:4e:c1:3f:23:
bb:ae:d3:ac:6b:28:09:54:08:14:2e:5f:e2:0d:48:
d3:ac:56:7e:2a:3a:86:2c:c5:66:44:f4:93:56:d9:
7a:98:12:85:ec:18:c4:6e:5c:c7:84:bc:0c:c8:91:
d2:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:46:B5:84:CC:88:CE:1E:0D:2C:D3:C6:AC:77:21:44:AC:1E:9A:D5
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/1-ka1hMyIzh4NLNPGrHchRKwemtU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.218.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:bf:4d:29:28:43:da:be:f8:e9:56:ea:26:9c:f3:fb:af:67:
e3:40:13:af:85:02:99:c2:e6:8e:63:89:66:26:da:63:70:ea:
da:c8:59:3b:f1:80:e8:50:58:82:d8:e9:5f:c2:1a:ad:8c:12:
df:58:17:57:62:ef:99:95:bf:40:52:0e:99:27:ba:4c:e8:07:
be:ed:8f:e1:30:a2:6d:ea:d7:7b:b7:8f:8e:13:d8:1e:16:03:
b7:52:62:2b:12:d4:7c:dd:c8:fb:c8:b6:42:dc:7f:1b:0b:bf:
6f:3b:c5:74:39:73:a0:77:9c:54:ac:c4:15:84:2b:1e:e4:5f:
f5:40:fe:c5:65:13:d6:9d:3a:93:a3:1c:96:29:3f:d8:4d:5c:
53:9d:04:52:a8:b2:5f:0a:7c:1e:24:0a:4b:f6:96:d7:e1:b5:
9e:f5:32:9c:43:8b:3b:c2:0f:3a:ce:0d:13:5c:5f:89:0f:31:
d0:39:91:da:f4:fb:2c:23:b1:c1:6b:2b:ec:53:87:da:54:55:
e6:ac:a3:4b:10:83:6f:7e:04:76:21:29:55:5f:60:70:84:33:
02:7b:e9:84:96:b7:64:4f:e4:dd:43:43:fe:81:5e:0c:0f:87:
6d:45:25:f6:c1:af:f7:7e:bf:be:8b:18:b0:11:e3:27:d3:b5:
6b:6a:f7:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org