Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/rSX3leGKT5GHiKkp-FNvVQhC6wM.roa
File: rSX3leGKT5GHiKkp-FNvVQhC6wM.roa (raw, json)
Hash identifier: GNQWIfRBxSHhZx+bS1cvZyAzGyEuIEaJmTEt5LoaRY0=
Subject key identifier: AD:25:F7:95:E1:8A:4F:91:87:88:A9:29:F8:53:6F:55:08:42:EB:03
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 0443B88B
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/rSX3leGKT5GHiKkp-FNvVQhC6wM.roa
Signing time: Sat 01 Jan 2022 00:50:52 +0000
ROA not before: Sat 01 Jan 2022 00:50:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 85.237.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71547019 (0x443b88b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 1 00:50:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad25f795e18a4f918788a929f8536f550842eb03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5b:3c:5b:cc:63:7f:5e:31:0a:e0:bf:4a:15:
6f:1b:2b:7b:3d:e4:a3:7e:13:2a:28:6b:92:2f:56:
1a:ed:44:ff:94:b8:ed:5a:1f:29:34:b0:30:20:80:
12:71:98:e8:57:db:4b:4d:57:bc:eb:d0:95:53:eb:
6c:ab:5f:fd:3f:1f:a8:89:e2:e5:08:c8:b7:de:b6:
4c:7c:cd:13:01:57:5d:2c:96:87:39:97:61:7a:17:
0b:b7:76:80:c0:9c:f8:47:4a:45:27:ac:36:65:7b:
30:31:85:b0:c0:6a:a6:44:80:7a:cd:13:75:04:18:
2d:f0:b3:63:74:a8:91:56:ef:e8:d1:d6:39:ff:61:
c4:61:41:c5:a2:ee:54:65:65:54:e1:cc:3b:31:13:
d9:1a:51:38:eb:ed:10:48:7c:e6:53:64:b6:6b:cb:
74:8c:49:5b:95:dd:a3:af:1a:dd:49:a2:0f:0c:cb:
e2:dd:40:6a:da:a0:59:8d:3a:37:6a:b1:2d:4c:38:
f1:6c:67:db:d2:cd:96:e5:b3:57:1e:f4:a9:1b:c8:
72:06:e0:18:a3:6c:97:14:2f:f1:e0:9b:9c:c4:cb:
6e:0c:3a:7b:fe:70:77:d9:e6:2b:5d:ee:04:35:59:
af:bc:b7:00:52:aa:f9:4c:93:b5:bc:7d:94:b7:d6:
37:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:25:F7:95:E1:8A:4F:91:87:88:A9:29:F8:53:6F:55:08:42:EB:03
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/rSX3leGKT5GHiKkp-FNvVQhC6wM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.203.0/24
Signature Algorithm: sha256WithRSAEncryption
43:a4:9e:22:36:98:22:6a:3f:11:45:5d:01:f9:fa:1e:28:fe:
bb:35:26:16:0f:d8:ca:90:82:27:10:27:8d:08:bd:be:38:b9:
a8:70:72:be:ff:58:9d:d1:db:e3:62:1f:df:13:98:25:e9:70:
49:4e:6e:b7:4f:4b:4c:3b:df:1e:f4:5b:ce:8b:b8:cd:41:d6:
74:78:ac:47:ce:84:6f:41:9a:7d:53:35:e7:f9:a7:38:31:d5:
9d:8c:61:42:1e:bf:6c:29:6e:d0:8b:bf:a4:9e:7b:a0:01:f4:
ef:2e:cc:9b:d2:5d:90:07:dd:1f:19:b7:d7:d6:1e:e7:52:0e:
b6:9f:46:06:7a:f3:a7:c8:0b:5b:bc:17:69:40:b3:45:c0:cb:
d8:ab:a6:b1:0c:e3:71:b3:d7:c2:b4:5f:b7:f7:a9:13:fb:ee:
d5:87:f8:41:99:02:0b:36:5c:02:16:b2:5d:04:0c:12:fa:18:
45:d4:49:88:25:4a:e6:cc:16:ca:22:3d:5e:92:6d:ce:35:fb:
56:a9:50:ad:e4:ed:c2:f6:6a:9c:7b:3f:ac:bd:84:fe:96:c9:
04:7c:f9:ae:e1:f8:04:3a:26:4d:cd:68:2b:a4:23:b7:24:43:
27:0d:19:7d:e8:c5:a9:c1:8a:00:8e:c7:c9:06:c6:08:de:9e:
f3:37:38:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org