Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/SxXqK_qnA62GPc9kanjgKGiAJaM.roa
File: SxXqK_qnA62GPc9kanjgKGiAJaM.roa (raw, json)
Hash identifier: kSzjOaWrFfoT8gbIea8CufLfuyCHx6d29FmT/gj3XDs=
Subject key identifier: 4B:15:EA:2B:FA:A7:03:AD:86:3D:CF:64:6A:78:E0:28:68:80:25:A3
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 01849F5F0CA032A2663C9D1BFA09ADC4359A
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/SxXqK_qnA62GPc9kanjgKGiAJaM.roa
Signing time: Tue 22 Nov 2022 12:45:17 +0000
ROA not before: Tue 22 Nov 2022 12:45:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207429
IP address blocks: 85.237.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9f:5f:0c:a0:32:a2:66:3c:9d:1b:fa:09:ad:c4:35:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Nov 22 12:45:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4b15ea2bfaa703ad863dcf646a78e028688025a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:03:f8:5c:c6:f3:67:d8:d9:f9:1a:ab:3c:b3:
08:cf:fd:57:78:fb:8a:65:f1:42:0a:c6:bb:5f:bf:
7c:91:d5:02:00:f0:d5:3a:51:7e:79:ec:37:c6:1a:
12:af:67:8c:db:29:e8:7f:69:db:7b:db:2e:15:ff:
56:c1:3b:5e:04:b3:8a:a7:b9:28:1e:05:d5:22:64:
ff:11:bb:ba:38:a4:27:c9:5b:2e:c5:62:f2:40:28:
11:2f:d4:32:72:13:8c:83:79:dc:c0:df:35:10:d1:
62:2b:f0:65:f4:53:bf:2e:54:ec:07:86:c1:ac:13:
f0:10:28:0c:63:fc:1d:31:25:fe:3d:99:f2:58:a6:
e7:ad:99:e4:71:8a:ff:9c:81:63:e0:39:e0:87:f1:
5a:e9:cc:c8:aa:26:98:bb:36:0a:99:e8:c5:c2:20:
97:6a:f3:7b:1a:8d:20:1c:ca:53:54:39:d5:c0:cc:
12:ef:29:79:da:c9:e9:fd:3e:d3:67:32:81:43:03:
06:e1:3e:8e:96:41:ab:1f:ef:6d:2f:bc:2d:e4:9e:
fd:db:46:50:e2:12:f0:e6:ef:17:a8:dd:cd:d2:de:
52:95:6b:74:3e:89:c3:99:6c:5a:94:5d:e8:9b:45:
2b:ca:ed:08:0f:67:05:24:17:d0:f5:cf:ee:0a:3e:
f7:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:15:EA:2B:FA:A7:03:AD:86:3D:CF:64:6A:78:E0:28:68:80:25:A3
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/SxXqK_qnA62GPc9kanjgKGiAJaM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.209.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:9a:a3:6c:ba:69:07:c0:52:1e:39:b5:82:ce:dc:64:93:1f:
9e:6c:22:29:dc:a9:6b:0d:ff:4a:eb:7a:ab:16:90:12:6d:7f:
35:b8:bc:66:ef:2c:e0:06:24:f7:9b:51:24:f8:04:79:ff:bd:
cc:35:e3:0a:d4:c8:4d:d2:0e:b9:94:95:f0:55:1f:7d:53:10:
aa:a4:0c:8d:a8:91:91:7f:d3:bb:6a:6c:88:bc:0a:76:d9:f8:
38:2a:ef:65:7e:09:77:5b:54:3f:c5:18:23:7f:f6:d0:ec:e3:
1b:c6:95:ff:24:5d:38:d6:a5:6c:6a:7e:ce:cd:80:c2:82:b1:
74:a5:d9:1e:5a:29:7e:be:51:44:18:72:68:e1:fe:4e:01:f3:
74:b3:06:ad:08:85:1f:f6:0c:18:91:43:f5:11:1f:da:6e:f9:
5c:d1:ae:6e:a1:4a:7a:98:1e:73:03:80:29:d5:bf:e7:34:8f:
64:91:00:34:2e:35:d9:d1:72:14:48:4f:ec:05:f4:8d:7f:77:
06:84:ef:92:94:7e:4d:55:46:19:7b:52:ee:4b:45:ea:4c:fd:
ed:23:37:0e:9d:69:e8:2a:0c:18:1f:54:c1:ac:ee:2b:27:79:
36:7e:1b:c5:a6:78:dc:56:1a:7b:d9:a0:e6:09:9e:25:0a:ce:
d0:d5:c0:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org