Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/QvDZC3NfoIMlbA2i_1nrIuU3aIs.roa
File: QvDZC3NfoIMlbA2i_1nrIuU3aIs.roa (raw, json)
Hash identifier: KDxf/sQo9dkzAFOod9TGwwJwWjUhS7eoqrGTK+X3QLA=
Subject key identifier: 42:F0:D9:0B:73:5F:A0:83:25:6C:0D:A2:FF:59:EB:22:E5:37:68:8B
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 018205CDD01D92F005FA72E6ABD70930EB22
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/QvDZC3NfoIMlbA2i_1nrIuU3aIs.roa
Signing time: Sat 16 Jul 2022 06:59:10 +0000
ROA not before: Sat 16 Jul 2022 06:59:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 213.225.239.0/24 maxlen: 24
213.225.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:05:cd:d0:1d:92:f0:05:fa:72:e6:ab:d7:09:30:eb:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jul 16 06:59:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42f0d90b735fa083256c0da2ff59eb22e537688b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:4f:db:28:47:57:d6:2b:eb:fe:ad:c7:4d:11:
5a:f9:c9:a6:57:0e:3d:94:9f:cf:2f:87:d0:ed:9a:
17:b0:18:dc:c2:62:c3:f0:f0:4a:6b:35:c3:57:e6:
56:34:80:10:b6:8d:26:36:37:7f:22:57:68:9c:9c:
88:d2:22:2a:be:31:74:13:8e:18:57:eb:b1:a0:a4:
fa:10:82:45:2a:37:5e:34:a9:e2:83:c2:e9:e7:09:
f4:2b:e1:47:8f:45:34:81:70:1d:22:40:fc:35:e7:
74:a1:11:f4:f0:89:88:48:1a:06:85:83:ba:aa:39:
16:75:db:5a:1a:88:22:34:9b:3f:d2:96:51:6f:7f:
8b:78:b2:23:24:b3:83:ca:eb:42:6c:4c:39:fb:ea:
42:57:bb:e3:71:63:04:a5:d7:a5:9e:3c:6a:93:16:
00:cf:3c:e5:6c:28:9c:25:73:9b:67:77:c8:0c:c8:
78:91:0e:4c:2f:a8:94:25:cd:9b:d1:c1:e1:b2:2c:
80:60:26:eb:f3:3b:e9:8a:b0:7c:81:b7:1b:29:0b:
c7:16:44:c6:e8:e6:1c:18:d7:ff:70:e9:f6:5f:b7:
e3:39:65:5b:92:96:6f:c3:36:f9:34:8f:c3:fd:10:
28:5b:4a:7d:68:20:5f:bd:30:26:b6:8c:f4:31:ad:
51:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:F0:D9:0B:73:5F:A0:83:25:6C:0D:A2:FF:59:EB:22:E5:37:68:8B
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/QvDZC3NfoIMlbA2i_1nrIuU3aIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.225.237.0/24
213.225.239.0/24
Signature Algorithm: sha256WithRSAEncryption
97:47:f1:45:9a:9a:30:a3:ee:68:5a:73:d9:7c:80:b1:80:25:
f5:5f:6d:49:52:ba:f4:95:1a:a1:b0:73:2f:fb:f1:69:9b:c0:
99:70:f2:14:ad:97:fd:52:2f:c0:86:52:37:e1:48:2d:b0:b0:
e0:b8:4c:a1:20:8f:2b:1a:e7:03:09:e9:5f:bb:68:88:ab:a6:
63:a4:19:48:7c:c7:c5:f7:48:eb:37:88:aa:16:66:c4:54:f5:
14:12:4c:b5:3f:37:77:9f:db:2a:ad:33:d9:ba:92:ca:c5:5d:
36:1a:88:dc:a6:61:c3:1d:b9:64:c9:07:27:38:5f:70:10:a1:
24:ab:40:be:66:e1:cd:4a:df:da:c2:60:53:e5:12:a7:7f:ea:
ea:37:e2:61:20:88:bd:d4:f1:bc:51:e8:d0:b2:d2:8e:76:bf:
21:ca:03:e8:5d:ff:3c:99:9e:d7:bb:27:ca:74:c1:d4:69:b7:
02:36:2e:dc:68:3f:e0:3c:84:03:09:27:0a:32:1e:52:b8:c0:
ee:28:42:4f:0e:03:3a:df:1c:aa:81:a1:86:9e:c9:ab:b8:63:
1b:b5:32:48:be:d7:99:49:07:41:dd:05:45:28:e6:f9:76:5e:
f6:3e:04:04:a3:bd:19:61:b5:8f:67:05:c2:b6:35:56:ee:01:
ae:22:7f:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:41 2024 by rpki-client on console-ams.rpki-client.org