Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/kJ4Q8LjE7h-2yKX9U35gMgLZX_k.roa
File: kJ4Q8LjE7h-2yKX9U35gMgLZX_k.roa (raw, json)
Hash identifier: fv2VMEBlKgv97nNNjFqNUmzs5VXgYTweSdSWptu0kzE=
Subject key identifier: 90:9E:10:F0:B8:C4:EE:1F:B6:C8:A5:FD:53:7E:60:32:02:D9:5F:F9
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018571DE8B505E3BEB476C38C30113EE2AD0
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/kJ4Q8LjE7h-2yKX9U35gMgLZX_k.roa
Signing time: Mon 02 Jan 2023 09:44:48 +0000
ROA not before: Mon 02 Jan 2023 09:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 85.237.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:8b:50:5e:3b:eb:47:6c:38:c3:01:13:ee:2a:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 2 09:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=909e10f0b8c4ee1fb6c8a5fd537e603202d95ff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:9f:b6:8d:fa:60:fb:ca:35:c0:10:ef:b1:28:
5e:c4:f8:a9:ad:a0:63:62:04:9e:4d:4b:e4:3a:46:
97:1c:33:ed:9a:c9:7f:9e:29:58:4b:10:28:aa:3c:
1d:f6:bb:22:9c:c1:10:80:e2:95:f5:97:f2:27:cf:
be:74:c6:cf:2f:91:9a:19:df:15:ba:96:a1:2a:8d:
e8:cc:83:13:a4:51:8f:2e:b1:d7:5b:16:f2:d9:5f:
d6:7a:7c:33:81:db:d4:e7:7d:2c:f5:db:d7:89:6d:
8d:ea:c0:92:49:62:b1:12:7c:22:f9:ce:15:92:19:
50:3c:db:63:bc:f5:d6:2a:7e:12:71:3c:b4:bd:86:
72:25:6d:fa:e0:6f:f5:41:cd:52:1d:46:5f:c3:79:
4c:0b:fb:65:1e:72:d0:26:a2:5f:b3:d7:08:b0:27:
ed:f2:d9:0d:a4:33:03:1e:5e:8a:ef:05:10:26:c5:
ec:35:41:5e:5a:67:b3:be:8d:73:21:ad:42:73:d3:
09:4f:17:85:8b:cc:74:e4:78:13:b6:4b:22:f4:58:
37:0d:65:bf:e7:70:8f:44:f1:10:1a:60:bd:68:29:
6d:2a:36:eb:fb:ea:9f:b9:ba:d5:33:9f:93:64:d9:
14:e8:bb:b7:bd:91:02:fb:77:78:b0:7e:ee:5e:f1:
0b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:9E:10:F0:B8:C4:EE:1F:B6:C8:A5:FD:53:7E:60:32:02:D9:5F:F9
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/kJ4Q8LjE7h-2yKX9U35gMgLZX_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.215.0/24
Signature Algorithm: sha256WithRSAEncryption
93:54:29:c9:66:37:cd:4a:a8:69:63:3f:11:36:d5:55:b1:0e:
35:e0:09:d0:47:de:13:9f:73:19:dd:19:ac:e7:bf:b6:f0:9e:
ab:89:a7:39:70:f7:1c:c5:41:b0:97:51:c7:c3:ea:29:ff:00:
2f:e4:67:d3:0a:b6:20:48:f3:a7:59:af:1e:42:cd:c5:9b:f2:
fa:62:24:d9:63:e7:13:f3:5b:9c:1f:f1:58:dc:74:96:c0:17:
99:09:15:4c:94:49:d6:b9:a1:85:0f:56:0e:e1:88:f8:a8:cf:
6e:58:39:6f:b2:5e:14:ce:52:8d:e1:e9:7d:96:51:44:ec:e8:
3d:94:84:b2:05:b2:b5:af:80:fd:40:3d:84:d1:fc:cd:df:e8:
8b:bf:47:ca:58:c4:b0:b5:6e:70:59:33:a3:57:6e:41:3a:6e:
92:0f:29:69:33:f8:94:fd:d3:4a:2c:a0:f6:26:46:6d:5a:61:
d0:b8:ff:80:72:e6:71:14:1e:20:19:3d:48:83:59:99:5f:37:
49:51:43:3b:11:48:38:3b:33:0c:ef:5d:96:cc:9e:d7:1b:f5:
f5:fd:0e:80:8a:90:02:17:ee:9d:c6:d1:dc:45:e1:88:1f:aa:
e6:6f:98:ab:d6:06:61:91:39:e5:1e:c3:eb:e1:44:39:b2:e4:
09:3e:5c:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org