Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/UTG3X71DNjqe7Rmx6xVNiRw0YLE.roa
File: UTG3X71DNjqe7Rmx6xVNiRw0YLE.roa (raw, json)
Hash identifier: VzgaifuiBw3Bb3McAxi1LLDZlO6z/sIJxYKcmWopsR4=
Subject key identifier: 51:31:B7:5F:BD:43:36:3A:9E:ED:19:B1:EB:15:4D:89:1C:34:60:B1
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018820AA92DAF1261207460D835650F77B1A
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/UTG3X71DNjqe7Rmx6xVNiRw0YLE.roa
Signing time: Mon 15 May 2023 18:27:09 +0000
ROA not before: Mon 15 May 2023 18:27:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 85.237.206.0/24 maxlen: 24
85.237.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:aa:92:da:f1:26:12:07:46:0d:83:56:50:f7:7b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: May 15 18:27:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5131b75fbd43363a9eed19b1eb154d891c3460b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7f:81:3f:23:c7:5b:67:26:8b:33:78:f1:73:
37:d7:84:5d:e7:f7:96:26:58:17:f5:d5:ec:6e:2d:
7b:d2:b6:00:63:5b:03:fa:55:bf:57:15:0c:a2:46:
df:d3:bb:58:f7:63:c7:cd:6a:08:39:d8:34:7a:27:
65:46:d2:55:9d:01:a9:93:20:55:1e:2a:d2:72:d1:
80:39:59:ec:55:fe:92:d1:e9:51:03:35:65:29:9c:
cc:bb:08:9d:51:6b:ae:b1:85:3a:2b:cd:bb:eb:bb:
68:f0:a2:d8:bf:e7:57:c4:98:ce:87:a1:54:9b:8e:
db:36:e6:92:0f:bc:56:c1:4d:4f:3d:37:68:90:f7:
b0:d3:b9:84:a0:11:06:e5:db:ba:05:bb:2c:21:04:
37:1f:2b:d7:e7:62:74:a8:00:55:5a:61:2d:0b:53:
25:41:7c:5d:35:57:58:2f:5a:3f:f7:5d:73:32:28:
79:f4:42:d8:f6:43:eb:09:1a:cc:8a:04:a3:3a:22:
9b:66:82:16:8b:fb:4d:25:e6:23:6b:fa:6f:9f:72:
08:b6:34:a3:2a:3c:45:bc:fb:be:39:6f:11:bb:72:
73:c7:2c:a0:b8:38:76:8c:e9:22:3f:e8:da:c2:7d:
12:c9:98:27:63:49:47:92:fb:e9:5b:1c:d1:d3:7a:
a3:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:31:B7:5F:BD:43:36:3A:9E:ED:19:B1:EB:15:4D:89:1C:34:60:B1
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/UTG3X71DNjqe7Rmx6xVNiRw0YLE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.206.0/23
Signature Algorithm: sha256WithRSAEncryption
87:7f:a8:13:94:7f:a9:d7:60:ae:44:22:29:2b:fb:ce:cb:67:
d9:46:12:f4:e0:4d:0a:90:be:48:bc:88:2b:0a:51:11:29:f6:
fc:52:e0:d0:3d:85:c2:f0:5f:04:88:77:ad:c9:a0:8d:77:a1:
31:7b:fa:83:a9:db:b0:58:c8:15:11:00:a4:a5:73:38:33:94:
5e:67:ab:12:cc:81:dc:5a:09:22:78:e8:c3:04:b0:aa:6e:af:
d8:1c:8d:19:9f:52:ff:72:4f:12:af:da:f0:99:c7:6b:11:4a:
3f:a0:85:40:a7:c0:fa:b3:ed:a0:84:05:a3:b0:29:93:ec:08:
30:a7:6d:74:32:83:1f:fa:7a:72:4e:30:8b:8e:95:34:b2:1c:
62:b9:22:e0:6c:5b:73:0f:93:6c:90:a2:9d:08:7e:3d:ff:e8:
2d:51:a5:db:e0:b4:92:6a:3a:18:18:6e:3f:b7:a7:63:c2:d8:
60:04:ee:24:1c:5e:aa:3f:ad:ee:b1:6d:3e:e7:d8:0f:65:20:
c2:ee:16:82:54:0d:5f:a0:e7:b2:7d:0f:23:77:dc:29:35:7c:
ba:2c:7b:72:df:eb:cd:56:62:84:b1:b9:f1:b0:f1:ab:98:0e:
4d:7f:d5:2d:d8:b7:d8:3f:dc:36:94:82:4a:85:82:be:61:ff:
b1:52:13:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org