Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/nKboBvErXjg8gO7sa_EY01q7DCM.roa
File: nKboBvErXjg8gO7sa_EY01q7DCM.roa (raw, json)
Hash identifier: RqCLHOzxSw6tAKy4m7treEyWzYvoyKxbIGADOFh36hQ=
Subject key identifier: 9C:A6:E8:06:F1:2B:5E:38:3C:80:EE:EC:6B:F1:18:D3:5A:BB:0C:23
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 01849F5F09F25DFC4D4ADF871DE340CB4286
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/nKboBvErXjg8gO7sa_EY01q7DCM.roa
Signing time: Tue 22 Nov 2022 12:45:16 +0000
ROA not before: Tue 22 Nov 2022 12:45:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 85.237.209.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9f:5f:09:f2:5d:fc:4d:4a:df:87:1d:e3:40:cb:42:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Nov 22 12:45:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ca6e806f12b5e383c80eeec6bf118d35abb0c23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:40:90:ae:f5:56:99:be:26:87:d2:a6:19:50:
22:9b:c7:83:76:b4:60:89:68:c4:48:57:e0:a2:c4:
8a:88:6e:56:2a:d3:00:20:52:4c:c8:e8:d4:fb:a4:
d4:46:b8:29:86:cf:cf:cf:9c:a7:bc:96:a6:4b:24:
43:f3:c7:f4:eb:ed:97:11:f7:0d:c2:21:5d:18:57:
c9:2a:9b:77:da:5d:b4:54:02:3e:31:f8:c6:6b:85:
a9:e4:b6:ff:c4:95:bd:92:89:79:4b:65:5e:79:7d:
0f:47:3f:06:1d:64:bd:cf:3a:fe:60:ca:c1:66:7e:
da:76:2c:3f:7a:b4:1e:bf:fb:f2:4f:89:eb:1e:30:
8b:f9:78:9d:15:e9:fa:35:06:f5:24:12:80:e4:7f:
2c:72:64:42:a9:ed:c3:06:af:50:91:8c:ad:ac:ec:
c7:ab:2d:a3:ef:c6:02:9e:e5:2f:e9:0b:2e:65:c4:
6b:ab:31:0a:39:49:39:51:99:4e:5a:43:54:aa:72:
2b:6c:ea:f3:5b:4a:3b:9a:18:d0:9a:ec:83:1f:f6:
91:70:26:3b:6e:60:b4:a1:db:09:17:ca:be:7b:f3:
57:28:11:01:20:69:b1:74:a6:ec:72:0c:8d:bc:6e:
46:90:01:1f:42:7b:d6:2a:7d:ae:3c:22:ad:db:78:
b0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:A6:E8:06:F1:2B:5E:38:3C:80:EE:EC:6B:F1:18:D3:5A:BB:0C:23
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/nKboBvErXjg8gO7sa_EY01q7DCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.209.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:b2:65:bf:3b:24:7f:9c:9d:d2:2e:e2:a0:94:1b:88:ee:f7:
6a:40:86:1f:cc:a8:8c:03:0f:fc:d4:c0:e2:8b:40:b4:f8:22:
35:8b:24:48:89:f0:c9:d2:51:21:80:94:99:3a:d0:1a:9a:80:
e8:3a:cd:aa:9c:17:50:c1:5a:25:7d:64:f4:ca:61:8e:7c:b0:
38:4c:be:50:a9:93:50:23:8a:f3:44:89:dd:ce:0f:35:3a:1a:
8d:49:46:9c:81:d1:2a:94:48:ba:54:bd:87:63:27:85:29:c3:
05:79:39:db:c8:db:33:20:5b:e9:a4:60:4d:c5:08:a5:e0:10:
26:a8:5c:65:d6:a7:59:09:4d:bc:32:bb:64:65:a6:6f:08:38:
83:37:80:10:f6:90:cf:d2:2c:68:c7:f5:8b:d7:76:c0:77:43:
d6:6d:93:5c:84:4e:81:db:39:fa:99:38:81:a0:1f:ca:39:79:
3c:fd:c1:d0:71:81:a6:a6:a2:8f:da:a1:6d:af:b4:ce:65:fd:
9d:29:ba:ab:1d:4c:5c:e2:f7:a7:ae:f9:06:58:45:99:36:29:
6f:ea:fb:1a:80:1d:72:af:48:f8:a8:5a:3d:04:5e:70:49:52:
c8:5d:98:c3:26:9a:0c:d1:3b:e8:9f:f3:c0:69:5b:4d:70:ba:
0f:5d:e0:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org