Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IBuQd9ItL7Yr8appwiW1a9S34PM.roa
File: IBuQd9ItL7Yr8appwiW1a9S34PM.roa (raw, json)
Hash identifier: CiSoF3MWfTDob6eTZqypQkkTO3RbVl37lp9q0dkq4JU=
Subject key identifier: 20:1B:90:77:D2:2D:2F:B6:2B:F1:AA:69:C2:25:B5:6B:D4:B7:E0:F3
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 030A815E
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IBuQd9ItL7Yr8appwiW1a9S34PM.roa
Signing time: Sat 01 Jan 2022 01:50:27 +0000
ROA not before: Sat 01 Jan 2022 01:50:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136744
IP address blocks: 213.225.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51020126 (0x30a815e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 1 01:50:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=201b9077d22d2fb62bf1aa69c225b56bd4b7e0f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:37:e9:e3:f7:8a:a4:69:db:d7:45:0c:cd:22:
c9:0d:24:da:53:f1:f0:b5:e3:d2:f1:e1:ed:a7:da:
fc:2d:fc:be:fb:94:90:a2:cc:39:fa:6e:db:ec:aa:
e0:9c:fa:5a:a8:81:0f:08:b5:a5:10:14:f2:59:e4:
34:3a:13:4f:dc:39:e4:f0:61:29:99:d3:5b:99:f7:
68:1e:c8:47:cd:3e:9c:fe:ef:55:55:e5:ff:50:41:
73:49:7a:7d:c1:17:fe:58:7b:ec:da:2c:72:52:9f:
13:ad:07:54:c6:93:19:94:b5:28:22:c4:61:df:2b:
5d:b1:eb:fd:7d:06:37:29:05:0a:a2:17:b9:78:02:
42:6a:b4:39:0e:9e:d7:08:13:59:61:d0:2b:f8:bc:
4d:2b:7c:ef:e8:35:d8:5d:4e:59:97:12:46:0b:3b:
b6:1e:05:09:2e:6c:cc:20:03:78:4c:f3:f1:cb:4b:
81:d5:8c:54:d9:6f:cc:2b:1f:f5:ed:a2:29:ad:c7:
8c:6f:bf:d0:0d:2d:35:79:8a:17:09:f2:ed:1c:d0:
22:33:d5:ac:29:50:2a:3b:07:7a:4c:49:ad:d2:0c:
9a:00:74:d5:2d:5f:64:17:b3:7c:45:99:af:ea:e9:
13:75:15:1a:29:96:c1:ad:d7:b4:39:07:e4:e1:a1:
a5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:1B:90:77:D2:2D:2F:B6:2B:F1:AA:69:C2:25:B5:6B:D4:B7:E0:F3
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IBuQd9ItL7Yr8appwiW1a9S34PM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.225.236.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:2b:34:e5:c4:ea:d5:d4:a7:87:c3:10:f8:9a:e7:62:a4:73:
56:4f:c7:c8:87:d3:f3:e7:d2:0d:c0:4d:41:31:dd:3f:02:39:
86:e6:7c:a7:0f:ce:97:37:9d:1a:b3:de:49:fe:df:bd:1f:ee:
ee:13:57:39:a9:92:47:e0:38:73:cb:14:60:d8:72:ff:51:d8:
ba:bd:4e:dd:04:0b:68:b1:75:9d:70:0d:da:4a:0f:b9:da:75:
f2:df:01:b0:57:05:7c:9c:ed:ef:ec:1d:8d:aa:77:1c:f8:00:
1c:e4:20:39:cf:71:57:e1:d0:3a:fd:62:07:21:14:b4:bb:1e:
84:a1:72:8f:75:2d:1a:2a:8d:29:98:b3:d6:1a:69:c3:05:ea:
4a:3c:9f:83:30:26:8f:28:71:23:ac:d0:fc:ae:7c:aa:c9:99:
4b:c7:c8:02:02:d4:c4:e8:2d:ca:b7:bf:5e:c4:10:d8:eb:a9:
82:c2:71:b3:a8:03:10:9f:c5:88:32:12:0b:ef:21:eb:dc:73:
a0:34:29:32:eb:96:13:cf:6e:82:20:f0:c7:f7:5b:35:88:41:
98:33:e9:ad:28:37:b2:93:43:f3:c4:6b:65:9d:2b:b7:83:2e:
fc:77:8e:d9:da:0b:1e:59:67:17:c8:b3:a1:cf:0c:76:d2:8b:
41:53:e3:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:27 2023 by rpki-client on console-ams.rpki-client.org