Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/2W5sCmJ_sFDOF_3thJn5Wrt_KEQ.roa
File: 2W5sCmJ_sFDOF_3thJn5Wrt_KEQ.roa (raw, json)
Hash identifier: N7jdR4XfhxjKNZif6VC+LnJl2UQzw4ZEcF84/Fho/xw=
Subject key identifier: D9:6E:6C:0A:62:7F:B0:50:CE:17:FD:ED:84:99:F9:5A:BB:7F:28:44
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 04E0FD17
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/2W5sCmJ_sFDOF_3thJn5Wrt_KEQ.roa
Signing time: Tue 28 Jun 2022 14:33:02 +0000
ROA not before: Tue 28 Jun 2022 14:33:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 212.2.236.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81853719 (0x4e0fd17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jun 28 14:33:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d96e6c0a627fb050ce17fded8499f95abb7f2844
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:60:0c:c3:92:80:e5:3d:bd:18:7c:bc:1c:08:
cf:e7:36:72:d4:a4:2f:97:d4:fc:83:ef:b6:6c:9b:
e4:fa:fb:bc:dd:01:fb:34:1e:a0:bb:f9:ed:41:f0:
07:cb:b0:8e:d7:3f:e9:dd:6e:f6:f0:33:10:92:c6:
f4:ff:fc:69:1d:00:b3:a3:34:fa:f7:d5:fd:55:a3:
92:8d:9d:31:93:48:83:e6:10:dd:f6:51:58:ab:bf:
33:5b:60:8f:de:23:e1:b4:0e:fd:3b:5b:d6:44:c1:
04:5e:75:91:7f:c3:de:8e:7a:1f:5f:5a:c6:d7:f7:
f0:17:ab:a2:97:77:07:78:96:11:35:2f:79:74:08:
cb:d0:5e:c7:f0:ca:8a:e4:22:7a:f4:67:27:7b:d6:
17:3c:50:d3:52:5b:05:1e:d0:25:f4:f5:4f:38:fa:
15:79:89:f2:58:be:8f:06:fd:2b:10:51:a2:68:de:
43:26:8c:db:6e:f7:fb:d7:e3:62:db:43:3a:05:0a:
27:38:05:be:6b:65:61:41:99:8b:18:a2:b7:6f:4c:
10:b4:ec:03:d8:43:ff:e0:6a:fc:94:cb:b2:ea:37:
5c:1d:b6:a2:b8:bf:dc:ee:1f:9f:a3:26:75:7a:ba:
76:c5:dc:5b:e6:32:fb:7a:6b:0d:80:cf:cb:06:8c:
d0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:6E:6C:0A:62:7F:B0:50:CE:17:FD:ED:84:99:F9:5A:BB:7F:28:44
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/2W5sCmJ_sFDOF_3thJn5Wrt_KEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.2.236.0/22
Signature Algorithm: sha256WithRSAEncryption
c1:4b:0d:85:ef:bc:ea:80:e5:55:ab:80:a7:b3:78:93:53:a1:
2e:9e:dc:f9:5f:e7:20:62:1f:8a:b2:a9:55:ac:ce:d7:45:af:
3f:2b:dd:d3:e2:af:f0:5f:87:ef:34:e7:da:56:25:c5:ad:76:
d5:46:df:82:fe:5f:8a:6e:bd:db:1a:9f:7f:08:b2:cf:fd:91:
ce:ed:3f:22:bf:9f:9e:36:c9:36:d5:42:a8:9b:4f:76:e2:b4:
07:9f:74:f2:c6:a0:44:87:6c:2b:9a:30:3a:75:36:6d:4f:73:
da:16:3f:72:05:73:15:ec:f9:6a:38:d9:76:d4:cd:98:dc:8a:
a7:9b:e7:ca:4a:60:e0:ba:81:f6:57:09:91:63:a1:5a:30:ea:
b2:27:67:0e:10:85:90:b7:f6:2c:84:af:af:01:5b:1d:8a:65:
4b:cf:b6:38:fc:ef:fa:ae:31:21:74:6b:40:02:e2:9a:2e:5d:
80:d3:67:72:98:37:6f:35:e0:ed:6b:45:59:d6:a0:63:88:a0:
7f:b2:ef:6d:22:f8:89:94:7e:19:b5:44:0e:0f:ff:18:3c:4e:
a1:c0:34:dc:32:c4:39:12:c7:9c:c1:5d:8e:69:e8:a3:d9:82:
ea:48:be:b0:1e:3d:69:86:9f:05:a7:bd:7d:3e:ae:1e:de:3e:
eb:f1:04:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:50 2024 by rpki-client on console-fra.rpki-client.org