Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/UGfoyCvDupNirZnLV_t0QQJfAVk.roa
File: UGfoyCvDupNirZnLV_t0QQJfAVk.roa (raw, json)
Hash identifier: YXDRxZ9pZ/l5Bnde5nlR764K3PNZKiqAuPGe7gqrtKo=
Subject key identifier: 50:67:E8:C8:2B:C3:BA:93:62:AD:99:CB:57:FB:74:41:02:5F:01:59
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018571DE9EF53030C1157B4D3D5631A05768
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/UGfoyCvDupNirZnLV_t0QQJfAVk.roa
Signing time: Mon 02 Jan 2023 09:44:52 +0000
ROA not before: Mon 02 Jan 2023 09:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211193
IP address blocks: 85.237.213.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:9e:f5:30:30:c1:15:7b:4d:3d:56:31:a0:57:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 2 09:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5067e8c82bc3ba9362ad99cb57fb7441025f0159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:ad:39:be:7e:d9:43:16:0b:b2:d1:9e:77:1d:
6d:b2:d4:41:d5:d8:00:a4:5b:3b:d5:c0:38:5d:96:
9a:c3:b0:d3:cc:9a:be:3d:98:fc:9d:39:ed:94:cc:
4c:df:92:20:92:66:70:01:60:29:50:93:87:09:6c:
12:f3:09:44:20:5a:7a:97:04:72:7e:1b:dd:21:30:
fe:ea:fd:ae:1b:84:fa:cc:33:0a:1f:23:61:ca:c7:
32:2e:e0:bf:1a:86:7b:cd:de:39:86:24:04:86:eb:
df:8c:e5:76:b5:79:d3:29:31:d0:76:8b:e1:bd:14:
47:d5:66:0e:a6:4c:2e:1c:e3:74:31:bd:f2:a6:d8:
93:98:32:09:74:4b:72:e4:d1:00:bf:e5:d1:d1:99:
53:18:b4:ce:56:18:c9:ff:f6:91:ce:fe:78:6a:07:
d1:31:81:c5:7b:c1:f9:97:a6:d4:49:b8:6a:ef:10:
03:63:c0:09:9e:13:2b:c8:b0:24:0b:7c:28:83:7c:
02:47:51:62:6d:e1:fa:d4:4e:ca:0f:39:d1:c1:2d:
fb:ba:c1:34:84:0c:e3:68:f7:85:78:c2:2f:43:63:
22:80:02:07:ff:fd:bb:0f:72:a5:e5:c7:3b:bf:fc:
d6:a2:ea:81:8b:2b:ea:7e:a8:72:8d:b0:76:48:ff:
61:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:67:E8:C8:2B:C3:BA:93:62:AD:99:CB:57:FB:74:41:02:5F:01:59
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/UGfoyCvDupNirZnLV_t0QQJfAVk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.213.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:ef:ba:ba:91:18:b3:07:b8:fd:c9:96:59:cf:82:9b:8f:cb:
dc:bc:07:64:47:23:31:15:14:fb:98:c8:46:46:c3:ee:16:00:
02:0d:e3:1e:fb:ad:b9:7e:d8:d8:f1:ab:f6:6c:47:7e:ab:62:
ec:77:28:a0:db:05:5d:88:38:c5:f1:83:d7:af:dc:72:1d:04:
04:09:56:dd:58:9a:73:12:90:63:40:52:b6:92:09:a1:37:3d:
2d:b0:c4:de:d3:34:ff:47:69:07:00:bb:8f:6e:aa:e5:69:2f:
32:d0:1f:fb:41:b3:56:60:fe:b0:95:b0:e9:1e:ac:b8:ef:fa:
bc:f8:b5:4f:cd:67:07:ac:db:a8:26:04:ca:9a:81:99:7c:8e:
57:05:34:18:0a:c3:8f:00:9a:ef:28:de:61:54:46:9e:44:4c:
67:55:0c:81:76:ae:05:db:c5:a3:92:60:b8:da:77:7a:b1:64:
58:7a:9c:f0:7a:08:ca:b2:8a:44:68:50:b3:ba:4d:6d:54:cf:
f4:11:18:9c:bf:48:10:bf:bb:49:20:f9:6d:e8:37:0c:45:67:
02:1d:5e:15:72:63:27:a9:af:5f:75:38:7c:c8:03:40:8c:89:
d7:85:f6:9b:70:f3:3c:ff:6c:db:58:7a:18:69:9c:a7:bb:0d:
22:5a:ec:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org