Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/QWQDcS7fmNMVTKxWGskZtShwhyk.roa
File: QWQDcS7fmNMVTKxWGskZtShwhyk.roa (raw, json)
Hash identifier: kwLaVMUHB+hbviIPx7uq5F86PDnAsZgBbTlKs77aKVs=
Subject key identifier: 41:64:03:71:2E:DF:98:D3:15:4C:AC:56:1A:C9:19:B5:28:70:87:29
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018796A835BC15952355A502486B623AF28E
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/QWQDcS7fmNMVTKxWGskZtShwhyk.roa
Signing time: Tue 18 Apr 2023 23:16:58 +0000
ROA not before: Tue 18 Apr 2023 23:16:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 85.237.206.0/24 maxlen: 24
85.237.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:96:a8:35:bc:15:95:23:55:a5:02:48:6b:62:3a:f2:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Apr 18 23:16:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=416403712edf98d3154cac561ac919b528708729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ab:9c:4d:98:88:ce:4c:be:91:2c:46:4a:9e:
59:44:b6:06:58:48:e8:c6:84:57:da:13:7d:47:df:
db:47:2a:78:1b:31:b3:66:65:c0:df:79:fc:f5:a5:
30:c6:b3:b0:60:80:74:26:41:07:82:90:ce:92:3c:
55:c0:1f:2f:bc:41:fe:59:d9:72:58:cb:36:cd:96:
12:a5:b3:bd:ee:11:68:20:c7:b5:12:5f:df:ae:d7:
72:d0:2b:af:22:95:03:34:05:95:a1:31:81:09:6e:
b0:63:69:66:7a:33:65:fb:f9:12:79:2e:15:50:89:
7b:2a:9b:1b:39:90:ab:08:18:69:61:bc:9c:39:71:
bb:e0:93:09:39:1c:9d:57:2a:ee:9e:7c:71:0a:e2:
cc:03:95:a3:57:44:fe:24:2a:27:d0:70:da:28:43:
53:27:05:86:16:08:39:dd:47:fa:d2:81:33:31:88:
51:68:ae:2e:52:33:60:b2:9a:80:a0:79:a0:97:50:
6c:a3:43:95:38:65:f6:c6:60:95:9f:92:15:26:41:
ac:8e:c2:e2:2f:de:0e:f6:8b:69:47:8e:35:80:01:
11:99:98:e2:bd:a0:ce:72:6d:63:88:50:f1:35:a8:
82:b3:ad:3c:3a:b5:de:69:1c:7b:6c:c8:b7:f4:17:
88:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:64:03:71:2E:DF:98:D3:15:4C:AC:56:1A:C9:19:B5:28:70:87:29
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/QWQDcS7fmNMVTKxWGskZtShwhyk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.206.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:38:ab:2a:64:8a:e6:f6:97:ad:46:ed:9d:ea:a2:e1:ed:8f:
fb:65:0a:10:e8:71:a5:2c:1e:07:2c:41:0e:05:9e:2f:95:5e:
62:c9:31:91:c2:66:d6:c0:43:b6:e3:b2:33:61:07:32:20:1d:
e1:a9:99:25:43:02:ec:9c:97:8e:b9:ba:d3:13:19:86:62:1e:
98:2a:de:c1:94:f3:d8:ef:6b:af:07:6f:9e:f8:96:40:7d:e4:
c2:62:3b:6d:16:06:c4:15:4a:b0:ca:2a:a2:da:24:01:55:64:
c6:d4:a3:8f:5d:0d:50:ac:f6:d7:d0:49:64:88:60:b4:63:ae:
b0:26:32:59:62:2e:bd:76:52:d5:4b:18:0e:d0:11:6b:17:42:
fe:c9:e3:59:6b:b0:2c:33:74:d9:91:63:b3:1f:ed:6b:84:92:
11:03:ad:94:27:0a:9e:85:dd:39:5c:d3:26:95:05:e2:96:c1:
de:1e:1e:0c:e3:e2:05:80:58:a9:62:be:3c:2b:50:b5:ef:bd:
48:81:4c:a2:67:25:20:39:c4:55:3f:d0:a8:77:fb:f1:72:76:
7c:22:f8:5f:05:cf:e1:4f:dc:38:2c:41:8d:9c:5c:60:49:d6:
61:07:8f:81:9e:56:3c:ce:50:4f:60:93:1a:73:f1:1c:8b:d8:
38:d3:17:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org