Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/suUfuxegTpg0NCc-BZh_lxYQBWY.roa
File: suUfuxegTpg0NCc-BZh_lxYQBWY.roa (raw, json)
Hash identifier: jts+sPF075KvOAWBNozmmLqduaG9gl8j7iYQMbGDL2Y=
Subject key identifier: B2:E5:1F:BB:17:A0:4E:98:34:34:27:3E:05:98:7F:97:16:10:05:66
Certificate issuer: /CN=6deedc2210677512b9d728a891c1f2451d3d46aa
Certificate serial: 0185737188A507D030A8676F3BEAAB678999
Authority key identifier: 6D:EE:DC:22:10:67:75:12:B9:D7:28:A8:91:C1:F2:45:1D:3D:46:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/be7cIhBndRK51yiokcHyRR09Rqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/suUfuxegTpg0NCc-BZh_lxYQBWY.roa
Signing time: Mon 02 Jan 2023 17:04:58 +0000
ROA not before: Mon 02 Jan 2023 17:04:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 212.23.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:71:88:a5:07:d0:30:a8:67:6f:3b:ea:ab:67:89:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6deedc2210677512b9d728a891c1f2451d3d46aa
Validity
Not Before: Jan 2 17:04:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2e51fbb17a04e983434273e05987f9716100566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4e:81:1a:d4:ed:53:34:0d:5f:bd:2f:8a:cc:
f4:68:08:1f:f3:df:bd:25:34:6e:10:ff:d4:1b:a2:
76:03:c4:3e:34:85:d2:f2:83:40:fa:b8:ba:9e:81:
0b:8c:af:15:bc:f0:64:f2:c9:1d:74:b3:b7:21:b0:
6c:0b:ee:4e:d1:50:20:f6:bb:a8:93:16:c4:e7:02:
55:a2:75:9a:34:57:07:2c:94:63:43:e9:f0:48:88:
95:25:c9:f1:95:b7:9c:ea:7e:91:80:22:9a:5c:e8:
44:cd:18:43:cd:b9:27:ab:30:6c:72:ab:7c:57:66:
cf:f6:63:99:2e:b5:31:22:a0:0b:6b:0b:6a:eb:8b:
1d:b4:c1:9d:84:20:88:4a:5b:40:67:6a:82:b6:28:
1f:a6:bb:58:a0:20:31:ef:76:2b:81:f1:da:4b:6e:
2b:14:a7:e8:4f:1c:87:db:c6:33:97:a5:9c:4f:11:
fe:c6:5a:22:f9:db:c7:12:49:0c:3f:e1:02:aa:99:
86:e4:30:0b:32:0e:20:1a:96:fe:e0:16:55:51:31:
14:24:ce:fa:2e:6d:64:c9:a7:1f:11:62:14:c5:a1:
57:79:1d:9a:d6:1a:35:b0:a8:0d:fd:0c:4a:2f:9b:
d6:eb:8c:e4:c4:04:b0:2c:6b:91:6e:70:0f:82:93:
bc:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E5:1F:BB:17:A0:4E:98:34:34:27:3E:05:98:7F:97:16:10:05:66
X509v3 Authority Key Identifier:
keyid:6D:EE:DC:22:10:67:75:12:B9:D7:28:A8:91:C1:F2:45:1D:3D:46:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/be7cIhBndRK51yiokcHyRR09Rqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/suUfuxegTpg0NCc-BZh_lxYQBWY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/70f985-ce2a-481a-bc5d-83dcba2503d0/1/be7cIhBndRK51yiokcHyRR09Rqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.219.0/24
Signature Algorithm: sha256WithRSAEncryption
44:8d:35:d7:4e:65:47:10:4c:d6:cb:31:e8:98:32:67:62:63:
42:f2:13:17:9d:c9:a6:67:71:46:4b:bf:44:c0:fd:87:8f:02:
d6:48:e1:b5:ba:13:20:0d:3e:48:b5:3c:d2:54:00:96:db:95:
1f:bb:e4:e0:11:06:40:ee:f9:f3:37:e5:7a:48:7e:23:78:09:
d3:48:fd:64:4f:e9:21:f0:65:c0:e7:f8:6d:f9:12:a2:9d:09:
26:9c:85:ad:f4:b7:11:63:4b:75:aa:cc:9d:c2:c8:5f:50:c6:
75:42:1b:9c:12:2b:a3:3c:c1:85:d1:71:bc:43:80:c3:8f:85:
12:08:07:72:6b:ba:4b:18:e8:86:79:f6:c9:a5:fb:76:59:a5:
da:36:2c:16:c4:47:10:69:ca:6e:15:d2:33:51:de:26:81:b9:
5d:d4:0e:ae:5f:07:47:b6:4c:17:f2:90:16:b5:ee:b1:d1:47:
64:c0:1d:a1:0e:b6:a0:f9:1f:29:d8:ed:cb:c1:35:a4:15:58:
83:39:55:c3:5b:b5:14:3f:a8:58:13:83:65:f0:07:51:11:c1:
b7:38:5e:42:30:05:66:34:9f:c0:b2:c6:79:43:a9:1b:3d:b1:
aa:64:fd:3c:94:37:49:52:50:98:3c:a5:5e:e3:f8:c5:2b:58:
58:a8:f8:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:02 2024 by rpki-client on console-ams.rpki-client.org