Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/UL8-onVqhZa1FMyfT1xffjRKVFI.roa
File: UL8-onVqhZa1FMyfT1xffjRKVFI.roa (raw, json)
Hash identifier: 7C4kRv8UaPbHQvqefmsQcYxZW/bk2nkGNhtH1kHHVzs=
Subject key identifier: 50:BF:3E:A2:75:6A:85:96:B5:14:CC:9F:4F:5C:5F:7E:34:4A:54:52
Certificate issuer: /CN=6deedc2210677512b9d728a891c1f2451d3d46aa
Certificate serial: 948652
Authority key identifier: 6D:EE:DC:22:10:67:75:12:B9:D7:28:A8:91:C1:F2:45:1D:3D:46:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/be7cIhBndRK51yiokcHyRR09Rqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/UL8-onVqhZa1FMyfT1xffjRKVFI.roa
Signing time: Sat 08 Jan 2022 19:07:02 +0000
ROA not before: Sat 08 Jan 2022 19:07:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207326
IP address blocks: 212.23.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9733714 (0x948652)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6deedc2210677512b9d728a891c1f2451d3d46aa
Validity
Not Before: Jan 8 19:07:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=50bf3ea2756a8596b514cc9f4f5c5f7e344a5452
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6d:eb:7b:ba:aa:ea:3f:20:ce:37:29:7b:81:
a4:e7:2e:eb:4a:30:b0:a3:bc:99:de:11:e9:66:18:
d8:10:2c:81:84:16:96:26:c7:54:46:2b:50:03:6a:
ff:0a:8c:e8:0f:ad:62:5c:80:b6:3f:db:7c:56:9b:
da:08:ad:b8:3b:14:f1:40:16:a0:6d:38:07:36:0b:
32:d3:de:ec:1c:28:8a:2e:c6:ce:6b:8c:ea:03:25:
3b:e1:94:82:c3:79:b6:59:de:ee:a2:0e:89:a3:b0:
67:32:52:df:24:cb:7a:06:8f:c5:02:64:bd:76:ef:
34:67:04:05:2d:22:85:15:75:1b:5a:30:f2:f1:39:
45:53:ae:03:df:7b:f6:b2:e1:88:02:d3:dc:bc:0f:
29:7d:92:89:ac:18:7e:20:d2:49:b3:8d:a3:12:22:
98:89:e4:46:ba:29:f6:4a:f3:ce:ea:84:15:f3:33:
5a:f8:d6:de:1d:62:7f:d8:6e:07:0c:ce:ec:e4:76:
d5:ee:d0:09:ed:da:ac:d2:db:88:ce:79:c2:98:d8:
c9:2c:cd:92:97:f8:32:05:83:06:a6:1a:58:69:4d:
7d:ad:a0:2e:bc:18:bf:46:8c:1d:ae:82:0a:ae:f4:
45:e2:28:1e:39:82:83:65:1a:46:a9:8a:84:0b:04:
e4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:BF:3E:A2:75:6A:85:96:B5:14:CC:9F:4F:5C:5F:7E:34:4A:54:52
X509v3 Authority Key Identifier:
keyid:6D:EE:DC:22:10:67:75:12:B9:D7:28:A8:91:C1:F2:45:1D:3D:46:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/be7cIhBndRK51yiokcHyRR09Rqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/UL8-onVqhZa1FMyfT1xffjRKVFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/be7cIhBndRK51yiokcHyRR09Rqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.219.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:3d:e2:b1:39:89:f4:27:aa:bf:47:81:7b:bb:be:9d:a2:4d:
80:7c:df:9c:4e:a1:11:c6:7a:ef:80:33:aa:1e:8d:f6:41:5c:
bd:07:d5:d9:ef:73:e3:b5:7a:81:f2:bc:ba:42:9e:6e:61:ef:
88:61:cb:b1:47:ad:00:20:b3:4b:a7:ce:52:06:84:b1:b4:74:
61:5a:a2:74:7e:da:4a:4a:a9:33:86:25:78:fc:75:4c:37:a5:
84:b8:29:db:1d:a5:c5:aa:35:d6:99:d8:b7:4a:e9:04:5c:90:
c2:05:61:33:e9:bf:9a:4e:1b:12:1e:92:83:e7:9e:df:cb:30:
ea:b1:78:43:dc:20:97:e7:02:6c:ed:e7:52:3f:38:dc:ad:e4:
8d:65:c2:c2:83:47:69:3a:90:1a:05:52:cc:8b:fd:58:35:4d:
54:35:ff:b8:fb:2c:7f:62:ce:33:1a:df:c1:8f:d0:e6:a4:59:
35:a4:2e:fa:b6:62:9f:90:5b:c0:d3:23:42:c0:55:e4:3e:f8:
73:f1:53:37:e9:90:1d:27:de:9f:c1:96:e8:e1:48:19:c3:99:
6f:e8:14:58:70:59:29:a7:d8:34:3d:c6:7e:4d:34:74:9f:a8:
0d:70:9c:e4:e5:97:5e:f5:85:bb:f6:b5:fe:07:e2:1a:59:15:
6e:3e:1f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:00 2023 by rpki-client on console-ams.rpki-client.org