Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/BMQ2-en7oCEfAj9ZyxbWkNnbuxI.roa
File: BMQ2-en7oCEfAj9ZyxbWkNnbuxI.roa (raw, json)
Hash identifier: QvE2sMK4AIaPWswfGh8HcX139LZVICjLFp6rKT16VDY=
Subject key identifier: 04:C4:36:F9:E9:FB:A0:21:1F:02:3F:59:CB:16:D6:90:D9:DB:BB:12
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018571DE8F4104EB07E0A8315C99CB6CB890
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/BMQ2-en7oCEfAj9ZyxbWkNnbuxI.roa
Signing time: Mon 02 Jan 2023 09:44:49 +0000
ROA not before: Mon 02 Jan 2023 09:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34984
IP address blocks: 85.237.223.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:8f:41:04:eb:07:e0:a8:31:5c:99:cb:6c:b8:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 2 09:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=04c436f9e9fba0211f023f59cb16d690d9dbbb12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:25:1c:f2:9e:e0:b1:13:af:48:40:09:84:ab:
74:58:4c:d3:6b:87:dc:e6:a1:74:f0:27:05:9b:55:
ae:36:90:b9:41:4c:72:29:53:4e:72:f1:61:bd:9b:
76:77:5e:25:8e:84:18:f5:83:dc:54:33:3f:2e:84:
68:c6:e9:8c:6e:24:fb:3f:26:66:68:ee:5b:e7:98:
ad:fe:9b:e1:81:48:4e:3a:47:65:2e:3e:dc:08:0a:
3b:18:12:f0:6c:76:1c:c0:51:f2:7a:52:91:78:5f:
f5:20:32:64:1a:80:a5:2a:49:d6:b5:85:cd:b0:d7:
8f:ee:f6:df:04:ba:7b:4f:b8:21:18:1b:af:fc:08:
08:e7:42:68:4e:0c:9d:54:2c:a4:b1:74:8b:01:96:
f5:6c:19:74:05:b5:16:d7:0f:aa:e6:0b:c5:68:e5:
37:6b:32:10:ad:5f:8b:ce:03:88:e4:89:91:5e:ab:
24:50:fc:3a:cf:77:b4:22:11:2b:f5:fc:be:fc:fb:
3a:bd:50:91:7d:d6:94:fb:90:82:a1:bf:50:b6:39:
9f:1b:ae:d9:07:58:2c:09:e5:8c:e5:73:0d:13:ad:
46:03:f1:d4:d4:81:ae:e1:79:c7:89:1b:10:01:28:
e6:32:d5:d6:11:c5:ca:5f:fa:5f:81:20:e8:ef:48:
95:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:C4:36:F9:E9:FB:A0:21:1F:02:3F:59:CB:16:D6:90:D9:DB:BB:12
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/BMQ2-en7oCEfAj9ZyxbWkNnbuxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.223.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:3e:24:a5:9c:74:12:f7:6d:33:fc:4c:cf:7f:56:e5:25:d7:
44:b7:79:b4:dc:04:5c:c3:5a:aa:af:bf:cd:b4:a2:af:1e:30:
a3:60:5f:eb:1a:f9:43:93:cf:32:b8:72:1a:71:d4:17:62:9d:
75:7b:ab:b0:3a:e2:0d:23:16:0c:47:f2:06:da:14:bf:39:06:
31:99:58:87:c3:bb:5a:4b:c9:bc:81:f2:47:93:0e:6c:ab:a8:
5f:66:db:d7:c2:eb:ed:eb:52:33:09:27:61:b4:70:fe:7a:cc:
bf:72:52:bb:c8:04:5d:f6:e0:f5:e6:8e:83:01:36:30:b1:0a:
77:8e:61:0c:45:fd:88:f3:ea:56:1f:b9:bf:79:40:4d:99:67:
f9:8d:c8:30:3b:1a:0f:ce:bf:ac:d0:e9:0f:4d:11:06:4f:ca:
fd:99:50:25:f0:5b:4c:5c:b0:f4:77:6f:77:ea:9c:4f:ea:70:
2b:c4:19:63:cf:48:37:d1:48:9a:e7:87:21:6d:05:cf:ed:a4:
c7:6d:be:b5:47:3d:d6:36:39:9e:92:c4:30:fb:82:3b:87:fd:
34:98:d6:c1:71:8f:bf:c4:05:2d:45:1e:96:f1:2f:47:4c:39:
ca:fc:83:04:57:9f:45:d6:84:08:4b:6d:c5:f5:4b:93:2f:9c:
16:91:fa:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org