Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/10cf70-cb63-4515-ba8a-1e09c869df91/1/yuZ1ceW7PBVe9yOi3EYUgxAWAR8.roa
File: yuZ1ceW7PBVe9yOi3EYUgxAWAR8.roa (raw, json)
Hash identifier: UFD1AaBC0dsyH+XA7dLG6x7Y5gw/BcUxK+MwriVgS5k=
Subject key identifier: CA:E6:75:71:E5:BB:3C:15:5E:F7:23:A2:DC:46:14:83:10:16:01:1F
Certificate issuer: /CN=f711bb846c1b0434627cfdc93acc54762c2bff54
Certificate serial: 0186DBA11B5C9F1285EE2D7AC77B8754EFD2
Authority key identifier: F7:11:BB:84:6C:1B:04:34:62:7C:FD:C9:3A:CC:54:76:2C:2B:FF:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9xG7hGwbBDRifP3JOsxUdiwr_1Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/10cf70-cb63-4515-ba8a-1e09c869df91/1/yuZ1ceW7PBVe9yOi3EYUgxAWAR8.roa
Signing time: Mon 13 Mar 2023 15:40:13 +0000
ROA not before: Mon 13 Mar 2023 15:40:13 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43201
IP address blocks: 37.72.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:db:a1:1b:5c:9f:12:85:ee:2d:7a:c7:7b:87:54:ef:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f711bb846c1b0434627cfdc93acc54762c2bff54
Validity
Not Before: Mar 13 15:40:13 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cae67571e5bb3c155ef723a2dc4614831016011f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:f3:7f:64:96:5a:60:c7:e4:e5:d7:a8:5d:9e:
c6:ed:a9:bf:3b:33:e2:6c:15:a8:02:9a:af:01:f7:
21:a8:fa:36:42:a6:40:53:ca:fd:7e:96:59:a2:f4:
8c:a1:89:4a:2b:bd:48:ff:cf:72:6f:43:a0:03:6c:
3c:be:cc:d1:29:4d:ac:37:c0:40:3a:d8:ca:e6:66:
f1:16:0a:9d:3a:3c:36:0c:5c:3d:a3:cf:0d:90:62:
61:c2:4c:af:ef:12:23:cc:21:54:14:fa:47:74:a1:
c3:95:e0:f9:9f:ef:e7:55:2e:c1:0c:4e:6b:26:58:
d3:b0:45:a5:79:9f:c0:82:61:7d:e1:1d:b8:ca:81:
12:e3:35:df:50:7c:68:f5:52:e7:69:a8:aa:90:31:
88:dd:a4:80:0d:6a:40:40:2d:2a:7a:e4:cb:08:da:
d0:4e:ab:c9:5f:80:14:56:82:63:f7:8a:77:8b:d0:
1a:1b:2e:58:27:83:4b:16:c4:ae:85:da:e0:21:96:
a6:9d:8e:79:1a:70:2b:77:24:68:cd:b1:f1:e9:f5:
dd:8a:f4:8a:8d:f3:78:20:27:6e:3d:2f:08:b4:99:
55:38:65:83:46:5a:d8:75:84:58:09:20:3f:e8:4e:
75:05:ab:ef:45:59:c1:63:1f:52:c5:26:1e:45:bc:
64:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:E6:75:71:E5:BB:3C:15:5E:F7:23:A2:DC:46:14:83:10:16:01:1F
X509v3 Authority Key Identifier:
keyid:F7:11:BB:84:6C:1B:04:34:62:7C:FD:C9:3A:CC:54:76:2C:2B:FF:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9xG7hGwbBDRifP3JOsxUdiwr_1Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/10cf70-cb63-4515-ba8a-1e09c869df91/1/yuZ1ceW7PBVe9yOi3EYUgxAWAR8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/10cf70-cb63-4515-ba8a-1e09c869df91/1/9xG7hGwbBDRifP3JOsxUdiwr_1Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.139.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:2b:1f:08:22:da:80:98:bf:62:31:8d:5a:34:40:f7:8e:ef:
b1:7e:db:b7:47:94:fc:5b:fa:1e:7b:ff:8b:b4:f2:2d:4b:d1:
d7:37:01:40:cb:5f:10:5f:35:a7:41:48:fc:14:35:67:31:77:
56:03:32:6e:9f:a0:2e:93:ea:bc:c5:40:cf:b5:3c:8b:7d:36:
95:51:41:fe:6e:58:03:02:2b:15:d1:21:ff:70:18:9b:41:5c:
ea:7d:a7:5d:b6:93:22:97:59:f9:92:0c:be:6f:c1:1f:93:1d:
33:bf:17:ba:34:f3:2f:93:ca:9e:9e:7f:3b:7a:c1:a1:07:49:
a8:c8:4b:c2:be:2f:4c:66:fa:9a:0c:f4:61:77:cf:81:28:03:
cc:3f:62:db:4f:3f:22:be:c1:29:58:24:c7:3e:04:93:b8:ad:
df:fd:e5:cf:93:6d:d7:48:06:eb:c7:5d:bc:c7:26:74:36:9c:
0b:37:1a:37:0b:70:65:29:40:3d:56:81:19:66:13:1d:7a:e0:
21:4b:fa:ad:5e:23:0c:47:58:d7:4b:a5:18:d7:60:c2:4a:44:
7c:ed:13:08:7d:e5:bf:1c:2d:0d:58:78:5f:04:03:a1:0e:6e:
57:58:17:9d:d5:f3:c3:f6:dd:bb:e4:fe:84:07:c5:ff:0c:62:
bb:61:92:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 12 05:33:29 2023 by rpki-client on console-fra.rpki-client.org