Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/yDoblQdC22wF4GUg7K0QhyjEuek.roa
File: yDoblQdC22wF4GUg7K0QhyjEuek.roa (raw, json)
Hash identifier: ulUbNLxicTbCVdpfYBuinktEd1oznY8N59t7Hhzvy4w=
Subject key identifier: C8:3A:1B:95:07:42:DB:6C:05:E0:65:20:EC:AD:10:87:28:C4:B9:E9
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 01847664BC25AF825D9E7D62C60F160A8BAC
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/yDoblQdC22wF4GUg7K0QhyjEuek.roa
Signing time: Mon 14 Nov 2022 13:47:04 +0000
ROA not before: Mon 14 Nov 2022 13:47:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 85.158.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:76:64:bc:25:af:82:5d:9e:7d:62:c6:0f:16:0a:8b:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Nov 14 13:47:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c83a1b950742db6c05e06520ecad108728c4b9e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:40:1c:c2:5d:5a:ff:4f:8c:4c:ae:ef:79:d8:
02:c7:6d:96:89:49:30:19:1f:6a:bd:4c:86:9b:d7:
cf:0b:26:fc:6f:18:e6:db:ce:25:fd:1f:ef:33:8e:
d0:56:d5:35:cf:1d:8a:78:c7:2d:84:f9:8d:21:4c:
8f:4a:65:32:6b:fc:9c:60:85:35:ce:12:8d:78:7b:
a1:aa:9e:5f:7c:16:90:c6:44:b9:99:a6:fb:37:11:
01:54:ec:f8:ef:dd:5b:12:2c:49:16:a2:7c:c8:0e:
bf:78:49:c3:42:81:c4:21:ff:f9:b4:61:d4:6c:70:
1e:87:f2:b1:b5:bf:eb:db:6d:eb:31:64:c8:d9:23:
e0:5a:e9:04:90:f8:69:66:98:2c:80:79:ca:bb:42:
c8:9d:a5:b0:8b:63:53:32:8d:13:f6:97:da:fe:98:
be:ad:83:c1:d6:60:5d:b6:00:a4:9d:8c:9b:35:8d:
25:61:87:52:26:cd:19:d3:d0:0a:8a:d4:8c:24:da:
bc:b1:cd:63:cc:74:1f:5b:56:db:a9:fe:c7:51:a0:
f4:e1:c2:05:05:05:f8:b5:6f:ba:b6:f3:8d:3c:6e:
a5:5b:86:79:db:ca:95:b5:ac:dc:fa:97:9f:70:bf:
7e:91:c8:f9:ca:68:ca:af:bc:23:d3:6b:a2:7b:19:
52:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:3A:1B:95:07:42:DB:6C:05:E0:65:20:EC:AD:10:87:28:C4:B9:E9
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/yDoblQdC22wF4GUg7K0QhyjEuek.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.58.0/24
Signature Algorithm: sha256WithRSAEncryption
28:94:a6:3b:73:c1:16:7b:f6:a6:26:c4:d0:51:92:71:ce:73:
fd:dc:05:c7:66:73:06:7f:52:fc:87:bc:dd:fe:a0:19:66:46:
67:29:a6:49:c1:4c:b7:5e:21:0c:41:d6:1a:68:f2:75:8d:16:
3d:c9:69:16:8f:5e:99:36:26:24:32:9b:c8:3d:60:5d:c0:05:
41:53:3f:42:95:ac:2c:1e:e6:95:93:57:ac:17:e4:d8:c6:2f:
37:06:36:e9:15:e0:1e:89:b4:03:8b:3c:18:f9:b2:e5:a4:93:
fa:b0:2c:0f:e8:6c:7f:de:46:37:92:7f:de:1c:a3:c4:2d:59:
b0:0f:4a:7e:5e:44:50:b5:61:13:eb:c7:f1:59:64:fa:66:2d:
42:2d:7f:e3:03:bb:5a:4f:c1:68:c3:57:cb:45:dd:44:ab:e7:
85:f1:c3:e5:c7:ad:df:8a:57:24:40:55:28:23:db:fa:29:58:
9d:00:97:09:cd:85:a1:5e:9c:ac:e6:05:46:54:53:9d:b3:fd:
49:f6:e5:b2:37:7d:02:37:65:a2:72:e8:a3:68:b1:b1:e2:a4:
ce:45:13:04:7d:6d:13:7a:16:90:99:cb:45:e0:0c:2c:e0:b3:
0f:6f:78:0d:d1:c2:be:43:ca:c7:43:10:e7:98:a5:5b:63:ad:
fb:39:d8:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org