Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/1813ba-a5e0-41fc-8d71-d45878b1202c/1/zNYePtHxTW7eNvqB3joz6wGDc_g.roa
File: zNYePtHxTW7eNvqB3joz6wGDc_g.roa (raw, json)
Hash identifier: f/1M3bwhlWbiUrkIHfqzJaxUnoXS68ArKGuHQRNdXXM=
Subject key identifier: CC:D6:1E:3E:D1:F1:4D:6E:DE:36:FA:81:DE:3A:33:EB:01:83:73:F8
Certificate issuer: /CN=aa292618e3b760e81c96eaa5dfc308050eaf14b1
Certificate serial: 0185711E84E5286B10B50C08BBA850EBAA3B
Authority key identifier: AA:29:26:18:E3:B7:60:E8:1C:96:EA:A5:DF:C3:08:05:0E:AF:14:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qikmGOO3YOgcluql38MIBQ6vFLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/1813ba-a5e0-41fc-8d71-d45878b1202c/1/zNYePtHxTW7eNvqB3joz6wGDc_g.roa
Signing time: Mon 02 Jan 2023 06:15:03 +0000
ROA not before: Mon 02 Jan 2023 06:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 212.23.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:1e:84:e5:28:6b:10:b5:0c:08:bb:a8:50:eb:aa:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa292618e3b760e81c96eaa5dfc308050eaf14b1
Validity
Not Before: Jan 2 06:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ccd61e3ed1f14d6ede36fa81de3a33eb018373f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:03:cc:8f:58:63:c9:04:0b:ad:32:1f:e2:b8:
3a:77:76:f2:c9:e2:ca:7c:3e:4b:7f:c3:d8:bb:ab:
ad:9e:be:07:55:40:b8:c9:4d:36:48:9a:ac:f3:2b:
65:db:89:c0:bf:8b:6e:f9:09:04:ca:6a:b2:df:97:
04:72:c6:8c:90:05:5f:a6:b6:65:5c:42:58:75:ce:
05:a6:08:94:27:c8:c4:b7:e4:d1:1d:2d:9d:c9:f2:
e1:f1:08:27:ff:4c:90:f2:f0:4d:ea:ab:82:7c:82:
0f:c8:f6:bb:9b:8f:23:d2:f6:09:39:5a:63:fe:1b:
18:f6:97:d0:83:6d:c1:b1:54:1e:bc:25:00:71:90:
ee:ee:6f:a6:ca:c6:bb:e7:66:3e:a7:a8:ee:a7:3e:
e3:fb:17:be:84:a2:68:3b:e9:71:4b:8e:09:42:f1:
7b:7b:64:7c:4d:8a:fe:5c:cd:31:3a:c3:d2:1d:ba:
60:84:0c:6a:39:09:e1:32:d0:f0:e4:8e:a1:a6:9f:
43:8e:4f:22:96:a6:87:d3:83:f0:02:43:34:03:75:
f3:9a:02:17:49:fa:87:f2:d7:c4:29:d9:cb:53:f1:
27:02:d3:f9:1f:83:ab:ae:ad:a4:a9:68:ce:5f:73:
de:b3:bf:27:e2:ff:8b:9b:82:b1:70:ce:4f:d7:ec:
e8:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:D6:1E:3E:D1:F1:4D:6E:DE:36:FA:81:DE:3A:33:EB:01:83:73:F8
X509v3 Authority Key Identifier:
keyid:AA:29:26:18:E3:B7:60:E8:1C:96:EA:A5:DF:C3:08:05:0E:AF:14:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qikmGOO3YOgcluql38MIBQ6vFLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1813ba-a5e0-41fc-8d71-d45878b1202c/1/zNYePtHxTW7eNvqB3joz6wGDc_g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1813ba-a5e0-41fc-8d71-d45878b1202c/1/qikmGOO3YOgcluql38MIBQ6vFLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.195.0/24
Signature Algorithm: sha256WithRSAEncryption
80:3a:b8:c0:51:e4:94:60:b7:de:e4:38:e3:60:43:4b:9d:05:
d8:51:a5:0a:10:ba:27:52:a4:a5:ae:62:8f:5e:43:9d:4d:33:
8c:ec:22:8d:4d:a1:70:f9:de:d5:d2:23:aa:80:9e:52:fb:3e:
60:9d:09:fb:d6:21:7a:c9:e1:88:a1:98:39:f9:29:1e:f2:13:
5d:93:ec:99:42:e9:b0:aa:16:8a:09:80:cf:53:cf:4d:b4:e6:
cd:10:8d:7c:fd:c9:5c:68:38:3c:aa:a1:43:37:a5:61:71:48:
22:c7:ea:08:c4:d0:08:f7:95:7f:e2:10:94:73:29:af:ff:08:
cd:8e:87:f0:47:25:f2:9c:4d:80:f5:00:e0:e4:20:4a:a2:3a:
63:c4:66:b1:fe:a5:69:47:35:8b:2c:d6:51:39:fd:77:2f:9d:
f9:ab:2a:ed:61:b6:a2:ae:e0:d8:28:1c:8d:2b:93:28:09:24:
56:02:23:57:4c:8d:9e:43:b3:be:62:f6:e7:2c:38:40:59:d2:
8e:ba:de:f2:f6:c2:b4:f1:c4:4a:04:54:39:4a:a4:53:a2:2a:
16:50:04:f9:c1:b9:e5:5b:7e:dc:84:63:57:e7:43:63:d0:1d:
d3:ea:b3:e2:c8:ab:5a:f5:b1:d9:74:e9:a6:d4:de:04:96:ab:
c5:6d:ab:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:00 2024 by rpki-client on console-ams.rpki-client.org