Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/KJqWZOfLACpCymRNOeqw7tJUxyc.roa
File: KJqWZOfLACpCymRNOeqw7tJUxyc.roa (raw, json)
Hash identifier: Z+0IQ2D/mnEnLK4ZwPwLS4TSk3A3uFj8cgjvpwcQSEo=
Subject key identifier: 28:9A:96:64:E7:CB:00:2A:42:CA:64:4D:39:EA:B0:EE:D2:54:C7:27
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 0186C62C38E675A0FE8CB1017E76FD96FCC8
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/KJqWZOfLACpCymRNOeqw7tJUxyc.roa
Signing time: Thu 09 Mar 2023 11:40:32 +0000
ROA not before: Thu 09 Mar 2023 11:40:32 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212238
IP address blocks: 85.237.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:c6:2c:38:e6:75:a0:fe:8c:b1:01:7e:76:fd:96:fc:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Mar 9 11:40:32 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=289a9664e7cb002a42ca644d39eab0eed254c727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:67:ff:3d:22:47:5a:96:3b:36:fa:3c:e7:6b:
5e:fc:ee:73:02:8e:02:a9:bf:5d:96:f2:d1:92:f0:
86:ce:d6:2e:81:70:24:5e:51:96:4e:3d:a4:0b:c9:
2f:95:bc:55:cf:c7:1c:63:54:5d:84:57:11:b0:45:
1b:f8:5c:dd:f1:ce:84:90:bf:f9:60:d0:3d:c7:e3:
b2:7f:ec:8b:0d:2c:87:54:38:de:cc:fd:ce:cb:9e:
45:e9:c5:91:69:84:a0:64:7a:af:ca:b8:70:03:ec:
97:c7:27:40:df:61:7a:bb:2d:37:cb:4b:19:4c:d6:
62:0d:8d:d7:a7:ca:54:2d:b2:92:27:b4:bd:83:19:
2f:f9:11:d7:70:2b:35:e1:f2:20:43:2b:76:04:fd:
29:cf:9e:58:1c:8f:aa:cd:18:90:2d:af:36:a8:ac:
87:1c:7d:04:b4:89:6f:f1:36:6d:de:9b:00:08:03:
12:4d:3a:da:ab:6c:0a:48:96:0d:30:8f:9a:d2:75:
43:a1:5f:2e:c1:9e:8c:74:7a:a2:8c:26:40:4c:d2:
0c:17:ad:c2:51:93:64:2b:ee:4a:35:40:ac:3e:fa:
14:5b:0f:54:5a:6f:ac:11:f7:e1:5e:0b:aa:eb:50:
db:d2:2c:fb:fa:63:cd:ba:d0:48:60:37:a9:c9:08:
25:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:9A:96:64:E7:CB:00:2A:42:CA:64:4D:39:EA:B0:EE:D2:54:C7:27
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/KJqWZOfLACpCymRNOeqw7tJUxyc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.202.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:3f:9d:6e:a0:d5:ae:f3:75:71:c9:38:1a:cf:81:63:b2:30:
ef:66:e3:8f:86:cb:50:77:07:76:b0:31:a9:5f:56:22:f6:53:
a6:b3:a6:ba:12:43:58:47:ee:69:bb:34:b7:81:2f:08:6b:62:
ed:51:ca:a8:4d:53:eb:bb:e1:ca:f1:d1:1e:29:1a:a6:e3:93:
a7:97:cb:cd:b4:c6:ec:16:df:86:1d:57:cd:86:6e:56:4b:49:
fb:1e:bd:1e:e7:cf:72:82:54:c8:3c:df:09:07:bd:ed:16:be:
7c:60:36:55:ad:ac:85:18:ef:82:3d:e4:9f:58:36:e7:7a:44:
b0:90:84:13:a8:35:88:9e:9e:90:8d:b0:fe:d4:f3:00:2f:37:
98:6c:86:6c:d9:e1:6f:83:4f:5a:5a:73:6a:99:f7:06:63:d0:
23:6c:fe:d1:b9:bd:9e:e8:40:be:59:e6:de:cd:8d:a0:89:c1:
91:7f:38:64:e1:fe:60:87:18:54:66:d3:2b:7d:86:23:70:0a:
b6:04:9d:cc:67:46:b0:c7:26:56:28:a3:31:7b:06:e2:f4:05:
19:80:26:0d:8e:9e:a7:df:2b:67:8f:b9:99:8e:cd:2f:c7:94:
01:16:08:88:a2:f8:e6:2c:6c:3d:12:d2:28:e2:8f:cf:e6:2d:
c5:ad:77:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org