Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/owkJ117kfiRcH5E1IivGIlmn3H0.roa
File: owkJ117kfiRcH5E1IivGIlmn3H0.roa (raw, json)
Hash identifier: qzDRTwxM8wiwOmXAIxV8hBlFj79i5MnNgvE7mci3K/0=
Subject key identifier: A3:09:09:D7:5E:E4:7E:24:5C:1F:91:35:22:2B:C6:22:59:A7:DC:7D
Certificate issuer: /CN=6deedc2210677512b9d728a891c1f2451d3d46aa
Certificate serial: 82B812
Authority key identifier: 6D:EE:DC:22:10:67:75:12:B9:D7:28:A8:91:C1:F2:45:1D:3D:46:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/be7cIhBndRK51yiokcHyRR09Rqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/owkJ117kfiRcH5E1IivGIlmn3H0.roa
Signing time: Sat 01 Jan 2022 02:53:43 +0000
ROA not before: Sat 01 Jan 2022 02:53:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 212.23.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8566802 (0x82b812)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6deedc2210677512b9d728a891c1f2451d3d46aa
Validity
Not Before: Jan 1 02:53:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a30909d75ee47e245c1f9135222bc62259a7dc7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:96:12:7a:4b:a4:60:e7:bd:18:d9:ac:c3:5f:
28:8b:ec:23:5f:10:d7:94:2a:81:3f:1e:c3:66:0b:
22:01:4e:98:0a:48:8f:a7:d9:05:53:d6:d8:36:cf:
a9:8b:3f:6f:19:48:93:71:7a:ef:d8:d3:7f:0c:9d:
16:b4:31:49:33:08:bc:f8:78:43:dd:fb:96:3d:d4:
f7:5a:fb:b6:22:45:0a:27:3f:fb:b6:c4:3b:d9:a2:
6a:22:12:17:7a:dd:e7:af:0e:0b:ce:7a:1d:c8:00:
16:3f:d0:eb:b6:76:de:a5:6e:ed:fe:c9:56:55:ca:
5f:db:4c:bb:cc:4a:0a:a8:35:40:32:52:59:9e:ee:
62:d2:2a:08:40:63:0d:2a:39:4f:96:e9:9f:b5:a0:
af:d7:67:8b:be:1a:79:74:4c:56:2d:33:07:ad:9f:
e2:a5:64:c0:8a:52:16:c9:91:08:79:32:7e:8e:1d:
d0:b4:fe:c4:31:4d:b8:55:fa:c3:5e:48:ba:cd:2f:
ff:7f:09:0d:7c:dd:51:2b:b0:ac:04:be:b4:cc:b3:
ff:c7:b2:f8:7e:fc:ed:2b:5c:cd:77:e4:46:53:3e:
77:25:c5:bc:37:8e:4c:8f:0a:6f:76:f3:b0:57:b3:
0d:be:d0:a4:d5:47:fa:fd:1f:f2:03:f3:dd:6d:d8:
67:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:09:09:D7:5E:E4:7E:24:5C:1F:91:35:22:2B:C6:22:59:A7:DC:7D
X509v3 Authority Key Identifier:
keyid:6D:EE:DC:22:10:67:75:12:B9:D7:28:A8:91:C1:F2:45:1D:3D:46:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/be7cIhBndRK51yiokcHyRR09Rqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/owkJ117kfiRcH5E1IivGIlmn3H0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/be7cIhBndRK51yiokcHyRR09Rqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.219.0/24
Signature Algorithm: sha256WithRSAEncryption
05:19:f5:a0:54:c7:41:a2:44:db:7f:2c:aa:60:d8:ee:8c:36:
cc:7a:64:8e:4c:a5:f0:47:0a:21:40:77:ef:3e:ba:56:1b:90:
fd:c7:6f:d2:b7:53:0f:6d:ab:b3:67:7b:d4:52:b0:83:a3:ce:
d5:27:4c:f1:5b:d1:5e:dc:2f:44:f1:a9:ad:3b:7e:45:93:d0:
20:cc:56:ed:08:f9:19:e8:c9:b3:64:a4:51:55:71:30:c8:2a:
be:24:5d:73:f0:1e:48:3f:64:cb:f5:68:8c:66:dc:8e:95:52:
a5:66:72:dc:79:77:37:87:80:66:a9:93:b4:e0:51:40:6e:20:
e9:e6:4a:2e:1e:75:13:b2:70:57:be:b9:e8:19:03:3a:05:21:
ae:a7:cb:b2:e9:49:e9:00:0e:1f:06:eb:46:54:2d:64:01:10:
e7:30:c2:81:68:64:50:e8:cc:45:5b:70:82:43:86:a2:e4:c1:
92:58:b1:f5:6f:c1:b5:25:92:e9:1b:70:f3:62:af:22:4c:2b:
8e:11:a8:70:a5:55:3c:81:96:05:4c:96:24:dd:0f:ce:51:c5:
8f:cc:bb:41:0b:e8:fc:dc:86:78:90:62:7f:54:8d:51:e9:2e:
1d:b5:5b:c5:40:72:00:cf:4f:e9:4f:f0:3e:f9:0c:cf:e4:09:
dd:91:12:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:12 2023 by rpki-client on console-fra.rpki-client.org