Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/QfuExDxDiOgZt2lif2g_Yc2Doms.roa
File: QfuExDxDiOgZt2lif2g_Yc2Doms.roa (raw, json)
Hash identifier: L+cjuFPY7vY/lXgpo8zgGKLFIEAkhKH94VUvkQMiaU0=
Subject key identifier: 41:FB:84:C4:3C:43:88:E8:19:B7:69:62:7F:68:3F:61:CD:83:A2:6B
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018463EFAF77D5EEC8A0DFD4CBAA39420AAA
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/QfuExDxDiOgZt2lif2g_Yc2Doms.roa
Signing time: Thu 10 Nov 2022 23:46:03 +0000
ROA not before: Thu 10 Nov 2022 23:46:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 85.237.202.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:63:ef:af:77:d5:ee:c8:a0:df:d4:cb:aa:39:42:0a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Nov 10 23:46:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=41fb84c43c4388e819b769627f683f61cd83a26b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:81:3d:e4:89:bb:ed:bb:ef:52:6f:2a:1b:3f:
cf:50:c6:45:dc:68:24:ab:87:bc:6a:97:eb:b0:b7:
70:94:f2:bf:7a:ad:f1:bd:5e:46:1c:ad:75:73:f8:
5b:8f:33:3b:82:e7:d6:7e:b3:1d:34:3e:a2:37:25:
e6:da:6b:88:08:da:48:f5:5f:e2:bd:09:9d:4a:be:
4e:ef:3f:6e:85:57:8a:af:9f:3c:6a:9c:56:de:d6:
1c:9f:56:bc:7c:a3:09:00:c1:fd:d9:9d:3a:e0:88:
5b:0b:dd:7c:b5:ab:9f:87:7d:8a:19:f6:03:86:23:
c0:0f:86:4a:66:c6:28:b7:aa:e9:3b:2c:6d:27:63:
e8:11:a1:11:43:bc:92:a1:9c:1c:be:a4:68:82:28:
ea:94:22:9f:23:b5:e8:2c:3f:80:3c:be:65:b6:00:
9d:b1:58:9c:d2:24:54:36:fb:d6:3f:cc:d4:41:f2:
90:23:d0:35:f7:50:1f:2d:ca:2d:ac:8d:1e:67:b9:
1d:76:02:38:5c:89:a6:89:0b:41:dd:49:d0:4d:ae:
6b:04:98:24:3d:97:d2:f4:98:10:92:7a:72:f3:ce:
03:25:8c:bd:a8:fd:20:77:a3:2f:0f:a6:37:e8:bc:
63:b3:fe:3f:0e:55:98:2d:35:96:c4:4e:7e:7f:fc:
80:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:FB:84:C4:3C:43:88:E8:19:B7:69:62:7F:68:3F:61:CD:83:A2:6B
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/QfuExDxDiOgZt2lif2g_Yc2Doms.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.202.0/24
Signature Algorithm: sha256WithRSAEncryption
49:02:ec:1c:df:2c:81:ab:1b:62:a2:c5:3f:58:41:08:4e:19:
e8:22:36:03:57:51:d0:ed:1d:32:27:f6:75:9c:e2:f0:94:98:
e3:b8:4b:c2:5c:7c:86:f5:88:46:89:0c:50:3e:14:d0:b7:94:
fb:ab:a5:78:ad:ef:10:79:be:bb:51:2e:77:17:9b:ab:4d:9d:
f2:a2:13:11:16:6a:b0:ee:43:4a:14:8f:55:06:1a:5b:93:22:
f1:43:a5:8d:bf:3e:55:31:5f:db:9d:00:64:bf:63:05:66:70:
74:95:49:57:f1:a4:3e:e6:d0:d0:cc:d8:63:6d:ba:81:c0:7c:
c1:66:f5:b6:33:1e:f8:b8:3c:35:f4:c9:23:bf:ac:3c:6d:51:
7f:aa:44:ea:4c:5f:8e:a3:9f:04:e4:fe:a4:93:91:b5:73:2a:
27:51:6b:17:41:07:f4:75:ca:6d:35:bd:1d:a0:3c:9e:c2:cf:
17:ac:40:c8:d0:35:43:8c:cb:e3:ff:ed:89:b0:e8:21:d5:68:
2a:2c:41:f1:07:47:c0:0a:d1:c6:9d:be:3d:38:8b:8e:f6:b4:
8b:8d:d4:73:4e:b8:07:da:ab:5a:97:89:33:2d:f6:10:a8:26:
61:af:28:75:ee:ad:5f:5c:d6:4c:3d:41:5b:43:d0:94:75:74:
32:54:4f:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org