Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/ddA_5b-jNBcOydgWcap5mgFH3HQ.roa
File: ddA_5b-jNBcOydgWcap5mgFH3HQ.roa (raw, json)
Hash identifier: uqGT9PYq6muNuiAvXtI92gHLfR2KCTq7GqIUVJ4cUno=
Subject key identifier: 75:D0:3F:E5:BF:A3:34:17:0E:C9:D8:16:71:AA:79:9A:01:47:DC:74
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 0186783DBE3AA5FE6F28BA0B119182EA2BE3
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/ddA_5b-jNBcOydgWcap5mgFH3HQ.roa
Signing time: Wed 22 Feb 2023 08:29:17 +0000
ROA not before: Wed 22 Feb 2023 08:29:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207326
IP address blocks: 85.237.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:78:3d:be:3a:a5:fe:6f:28:ba:0b:11:91:82:ea:2b:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Feb 22 08:29:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=75d03fe5bfa334170ec9d81671aa799a0147dc74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:12:6e:74:3c:65:6b:79:2a:3c:0f:2d:11:72:
b2:fe:f0:7d:0a:be:2c:12:dc:b7:7c:f1:3c:ad:d2:
0c:97:c3:da:d9:2b:5d:19:cd:70:cf:32:1d:d9:6d:
2a:30:39:78:3f:aa:b9:b5:a1:bc:a9:3c:45:49:1d:
47:e0:c8:c1:bd:07:ae:d6:58:81:5e:7c:c6:90:a8:
6b:92:ff:fc:65:48:ee:06:1d:58:a7:d7:4f:43:ba:
30:9d:b9:a1:a6:06:8a:8f:4e:3c:a3:1e:7b:9c:03:
d8:07:8f:ac:40:d0:a0:02:78:58:1a:a9:bf:80:97:
4b:87:93:f4:02:6a:90:f3:94:97:fd:95:77:df:a2:
81:05:a0:f0:38:85:a8:43:bd:f4:35:23:9f:ef:17:
11:60:7c:8c:98:d3:da:45:71:ea:26:1b:ab:65:16:
93:aa:00:bd:05:4a:be:47:67:3f:8d:f3:ca:ae:63:
04:83:58:59:f4:c3:78:d9:71:42:13:f8:a3:22:43:
bf:3a:f0:de:be:6f:ea:1f:0e:ae:32:f0:43:90:3a:
53:46:bd:cb:ad:97:c2:c7:4a:af:5b:16:18:16:14:
c6:bb:f6:05:b7:7b:f0:41:f8:17:cf:c3:aa:4c:d6:
d4:c2:e2:41:a9:14:f6:af:01:b7:0e:fa:25:98:43:
bb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:D0:3F:E5:BF:A3:34:17:0E:C9:D8:16:71:AA:79:9A:01:47:DC:74
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/ddA_5b-jNBcOydgWcap5mgFH3HQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.211.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:db:45:36:d5:2c:0c:5b:49:4b:57:04:3d:9c:7f:6e:6a:33:
9d:71:0a:72:9c:83:bd:e1:af:57:50:19:5d:31:2c:19:93:8c:
a5:df:4f:73:82:97:87:d0:3b:6f:ac:9d:2b:6f:89:85:ca:c3:
8b:68:b5:6f:36:7f:cc:94:13:f3:9c:41:b5:2d:27:b6:e7:82:
36:a5:95:d2:00:26:c8:52:7a:db:96:35:d0:1e:09:e0:ae:4d:
bb:18:f1:d7:e7:7a:b6:2b:f6:89:50:c2:ff:49:13:31:2d:81:
eb:38:98:ee:26:93:eb:24:47:59:17:54:d4:e6:a6:23:ef:1b:
ea:c6:0b:a7:e3:05:08:68:f0:e5:d0:6f:75:7f:8a:b0:6b:13:
26:32:be:87:ab:ef:4a:db:5b:8f:77:59:88:01:57:49:e2:a9:
db:81:e1:cb:cd:c1:5e:10:dd:a9:15:b8:0c:46:27:84:c5:95:
8e:7b:1e:9c:b0:e4:c3:ed:e9:6c:8f:c2:f6:c0:a3:fe:04:43:
9a:97:4e:03:98:5c:f0:87:34:e8:8b:10:ca:8c:98:f7:ca:2c:
b5:3e:45:be:74:2f:ee:92:3d:2d:44:d6:64:73:b3:22:13:eb:
20:63:22:ac:d9:5b:56:24:d8:9a:4c:9c:28:12:71:4b:d7:38:
54:6d:ce:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org