Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/qUdrQhBnET382I8tY3y-obHAw9M.roa
File: qUdrQhBnET382I8tY3y-obHAw9M.roa (raw, json)
Hash identifier: BEbC9EVGxKnKLZKAR8FUS0WXWm/BuI1zrIPf1dLUNYQ=
Subject key identifier: A9:47:6B:42:10:67:11:3D:FC:D8:8F:2D:63:7C:BE:A1:B1:C0:C3:D3
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 0185E972D1DDC751DD9B7B8F996C9D789C96
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/qUdrQhBnET382I8tY3y-obHAw9M.roa
Signing time: Wed 25 Jan 2023 15:01:34 +0000
ROA not before: Wed 25 Jan 2023 15:01:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 135752
IP address blocks: 85.237.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e9:72:d1:dd:c7:51:dd:9b:7b:8f:99:6c:9d:78:9c:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 25 15:01:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a9476b421067113dfcd88f2d637cbea1b1c0c3d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:67:93:2f:aa:6a:1f:56:fe:61:5d:f0:76:5a:
2e:d8:0a:a6:f1:7a:2b:74:09:18:28:6d:af:03:26:
d8:2d:c4:ad:a2:d4:bf:7a:2f:ca:60:d5:4e:ad:da:
01:7f:78:42:94:d6:db:93:40:68:ed:4c:61:80:2b:
c1:17:f2:61:a5:e4:7e:48:21:0b:f2:30:90:db:5e:
a9:32:85:a3:c6:68:d1:e5:99:62:e9:81:63:22:6c:
4b:d0:d8:1c:cb:a4:ce:14:6f:4d:ea:d5:36:d1:ae:
54:38:04:9a:b1:50:eb:95:a5:3f:28:cc:38:0e:d4:
27:54:4e:2a:29:e7:13:2f:4e:64:2b:82:9c:32:91:
e7:48:26:c0:37:57:db:a3:06:12:88:47:c1:31:22:
ba:f4:46:9e:58:27:a3:61:01:43:63:15:79:21:6d:
a2:76:b5:28:e3:39:81:2d:83:8a:0d:68:b0:cb:52:
4e:60:78:75:26:c4:3d:a0:f7:dd:24:05:3a:35:50:
88:9f:c1:42:fa:57:49:d9:da:74:2f:c9:6f:9f:ea:
e3:e4:06:45:7d:d0:e8:8b:82:5a:ce:2c:7f:8e:db:
13:3d:7f:b0:f2:cb:79:5a:63:bf:03:43:cb:1b:c8:
6a:99:be:5c:fe:8a:5c:4b:8d:cf:b5:c4:13:61:1a:
c0:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:47:6B:42:10:67:11:3D:FC:D8:8F:2D:63:7C:BE:A1:B1:C0:C3:D3
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/qUdrQhBnET382I8tY3y-obHAw9M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.214.0/24
Signature Algorithm: sha256WithRSAEncryption
89:73:5b:77:70:88:b2:f7:02:c3:93:60:99:f1:8a:6d:05:2f:
8d:70:b0:bf:a9:89:88:5d:ae:ec:d6:a7:2c:de:21:bd:e8:ac:
a0:78:3b:cd:14:db:df:db:e4:4a:ae:17:46:ab:5e:5c:b4:54:
5d:d6:34:60:0f:fb:1a:a7:0f:f0:28:f1:9a:b3:e7:71:49:7b:
5a:e7:a3:4e:26:d8:81:0c:29:d2:b8:82:1c:ae:e4:84:0b:d5:
82:4b:f8:6b:a6:4a:c0:62:6a:41:33:c2:7d:39:a8:4d:c5:fd:
89:9d:2d:a0:60:d0:0c:5f:6f:63:a3:42:28:6f:f5:a6:97:1e:
3d:c3:36:12:89:7f:b9:18:b2:a6:f8:62:06:a8:60:e0:02:ba:
f5:e5:00:58:c8:3d:9c:9e:e3:99:8e:08:27:16:c1:b0:b4:46:
e9:f9:14:59:cc:0b:6f:71:a3:9a:9a:e4:05:a7:56:e4:38:4b:
88:bf:fe:8e:03:0c:34:1c:9b:e1:68:d0:0c:87:37:bb:fc:53:
2e:23:2d:62:05:91:54:72:e1:6b:ef:b7:3b:08:f6:ba:2f:77:
83:cc:98:cf:70:00:47:13:10:4f:ca:52:a2:90:9b:dd:46:08:
b7:fa:99:4b:96:c9:3d:df:af:6c:e8:fc:55:62:d0:76:21:02:
3b:2b:a8:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org