Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/4qTIVohf5oR0YGzIhnM1D2tJcJs.roa
File: 4qTIVohf5oR0YGzIhnM1D2tJcJs.roa (raw, json)
Hash identifier: EXmge3f3EyC1bHB5TiBnupF9CTf5G/mxLO+Vz9L7CsA=
Subject key identifier: E2:A4:C8:56:88:5F:E6:84:74:60:6C:C8:86:73:35:0F:6B:49:70:9B
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 01847665A865D10D55122674EA64C9570EA9
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/4qTIVohf5oR0YGzIhnM1D2tJcJs.roa
Signing time: Mon 14 Nov 2022 13:48:04 +0000
ROA not before: Mon 14 Nov 2022 13:48:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211373
IP address blocks: 85.158.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:76:65:a8:65:d1:0d:55:12:26:74:ea:64:c9:57:0e:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Nov 14 13:48:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e2a4c856885fe68474606cc88673350f6b49709b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:c3:32:00:1d:da:a8:a8:c0:82:18:4e:e4:0c:
cc:91:4c:e1:38:2f:10:02:f6:ce:76:60:97:24:37:
9c:fc:e2:a7:9c:d2:a4:30:ec:62:7f:1a:24:ec:6e:
a6:45:04:3b:2c:39:ac:0d:a2:86:58:aa:57:29:a3:
d4:08:82:c5:07:b8:77:8b:64:95:81:b5:1e:dd:74:
a3:4e:5f:3c:cc:c0:ae:18:4f:e0:54:f4:b6:aa:2b:
15:84:30:02:24:db:7b:40:ba:dd:85:28:77:75:44:
b4:ad:d7:0a:a2:90:cc:c8:2b:9f:75:13:35:6a:74:
b0:f9:a1:43:d3:78:c7:56:34:14:99:f0:35:a9:ce:
28:d8:89:f4:7e:a4:7a:be:dd:10:84:b7:05:1d:db:
65:b4:2f:ec:de:8e:76:3b:ff:8f:5a:84:73:51:13:
d0:34:8e:26:58:b5:77:54:18:40:fd:0a:2b:4e:b9:
c0:9a:97:48:99:12:66:fb:b2:e1:25:95:9d:19:e8:
7c:31:45:33:e5:4b:f4:26:ef:c7:3f:89:29:53:52:
bd:d3:b1:a5:82:7f:90:da:75:ce:d6:ab:b1:f5:62:
5d:5d:44:00:0c:2d:9b:86:99:42:96:e1:22:d9:af:
92:bd:a4:11:a5:1f:c0:49:05:21:5a:34:62:c4:00:
7f:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A4:C8:56:88:5F:E6:84:74:60:6C:C8:86:73:35:0F:6B:49:70:9B
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/4qTIVohf5oR0YGzIhnM1D2tJcJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.56.0/24
Signature Algorithm: sha256WithRSAEncryption
10:16:02:60:23:d6:33:26:ad:c7:90:ef:68:45:47:d9:14:b1:
7c:43:29:db:24:26:fb:ce:e3:21:c3:66:80:aa:77:cd:f4:2d:
52:d3:3a:0a:05:8c:98:c7:3b:8a:f6:4b:ce:22:fa:c1:39:03:
11:97:6b:29:b4:24:cb:0f:75:ea:3b:23:a5:81:ab:7d:ee:71:
fc:f8:40:e5:c0:c6:c5:75:02:e4:6c:3a:69:db:7b:e4:02:a2:
be:2c:c4:ce:99:3f:ac:34:2e:d5:48:76:11:02:b6:33:e8:0b:
92:fd:bc:0c:e4:9f:8c:79:50:2e:ba:c8:97:10:1a:10:de:be:
c9:58:56:ac:89:1a:e9:41:34:e0:ee:41:c9:59:2a:fb:21:9e:
2d:43:f5:8a:aa:0c:c0:11:34:34:2b:37:31:6a:f0:ff:b3:df:
16:51:2b:16:21:a7:0a:7c:78:0d:da:45:8f:6f:23:5b:cb:2b:
63:9b:36:66:d1:25:4c:22:88:c8:b3:c9:37:43:8a:71:ff:45:
09:b3:48:4f:6b:1e:44:e2:30:0d:69:b4:38:f2:d4:eb:b8:e1:
f5:a2:12:a7:c7:16:87:e8:2e:31:94:5d:84:ab:35:b4:d0:1d:
3a:2d:b7:57:1d:d8:8c:3d:be:99:f5:1e:5f:16:04:84:a2:98:
93:57:94:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org