Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/LfOAqYryr7cjuOoERyzVCCfQN-o.roa
File: LfOAqYryr7cjuOoERyzVCCfQN-o.roa (raw, json)
Hash identifier: JuABRwILMNdcrF+WBi0qxOrRbVbT03iJ0fomKvJFpe0=
Subject key identifier: 2D:F3:80:A9:8A:F2:AF:B7:23:B8:EA:04:47:2C:D5:08:27:D0:37:EA
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01856D9D161268E2C0DDF1FD7FD23BC9D305
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/LfOAqYryr7cjuOoERyzVCCfQN-o.roa
Signing time: Sun 01 Jan 2023 13:54:49 +0000
ROA not before: Sun 01 Jan 2023 13:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136744
IP address blocks: 213.225.236.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:16:12:68:e2:c0:dd:f1:fd:7f:d2:3b:c9:d3:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 1 13:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2df380a98af2afb723b8ea04472cd50827d037ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:59:2f:67:d1:86:82:3c:e7:4d:9c:38:d3:31:
5b:65:5a:5c:03:ed:b6:84:98:3a:da:84:89:25:0b:
fa:b1:af:ba:72:c0:fe:40:7b:d3:36:e8:41:c1:27:
eb:99:f4:c1:e8:12:10:18:f6:09:27:0c:8a:df:7d:
1c:c7:f9:2d:e2:f4:9c:34:9c:1d:78:b2:8d:16:1d:
f9:39:7c:89:76:81:46:e3:60:69:5f:10:f6:13:b0:
f0:23:a0:32:4b:13:2e:d5:4d:87:dd:85:0a:2e:82:
d8:47:83:16:c4:85:45:97:14:23:d9:b4:c1:11:f7:
fa:67:b7:03:78:79:26:38:ad:b9:7e:df:d3:a8:89:
a1:ef:9f:6f:51:f7:94:88:47:67:49:8e:61:59:13:
09:d7:31:d7:e8:4b:e5:1f:4a:f6:7b:ab:39:08:52:
72:65:90:4a:04:b7:af:a5:5d:85:0f:7a:23:bd:b0:
f2:55:b5:b4:9d:af:e5:89:39:ff:25:15:11:30:bc:
5c:9e:65:d9:61:a7:90:a9:59:c5:45:48:e6:f1:e0:
b7:ea:45:55:70:84:b0:41:dd:05:c9:98:96:41:6f:
d5:0c:f9:5c:61:2c:60:a6:06:72:fa:41:3e:ef:cd:
50:45:8f:83:52:85:ff:bc:bc:dc:ca:b4:c4:7d:5b:
d3:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:F3:80:A9:8A:F2:AF:B7:23:B8:EA:04:47:2C:D5:08:27:D0:37:EA
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/LfOAqYryr7cjuOoERyzVCCfQN-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.225.236.0/24
Signature Algorithm: sha256WithRSAEncryption
20:8a:ec:63:94:62:11:e8:24:b4:6f:fb:5b:26:0d:fb:68:86:
11:26:72:4a:0e:19:e7:5f:e1:14:d3:cb:04:0c:82:8b:fd:d7:
86:a9:5d:d4:65:3a:ca:08:32:8e:85:81:a0:b0:11:ba:53:6a:
0d:fa:a8:73:8f:76:49:aa:b7:c7:23:0b:c3:65:2d:92:06:1b:
e9:09:c2:b1:29:17:ac:0c:af:e8:da:df:ba:56:69:b4:1b:c1:
89:1a:58:74:63:82:7f:5e:12:7e:63:75:ab:5a:55:7e:5b:80:
81:31:ae:53:50:03:76:b2:f3:fe:c6:c3:ae:5c:30:77:db:97:
58:aa:52:d4:8e:b6:da:00:6c:94:cf:3d:04:70:1c:f2:df:81:
ad:56:c8:09:04:05:52:f9:3a:28:ec:51:78:39:9a:27:25:1f:
03:52:19:f4:60:7d:a7:1c:46:1a:8c:60:55:a7:ea:ce:a9:e1:
eb:1c:d3:01:8d:d8:8c:a1:e6:aa:a4:77:29:dc:ae:33:8c:7a:
d3:41:08:ce:65:5d:24:a0:94:07:d6:f8:e8:87:bb:d0:fc:a1:
c0:1c:42:3a:2c:03:79:7a:c0:76:50:97:a1:3f:92:c5:20:2f:
6b:05:e5:cd:44:89:42:ec:7a:db:63:e2:e2:3a:c6:1c:b9:72:
1e:19:6a:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:50 2024 by rpki-client on console-fra.rpki-client.org