Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/hI3ZN8UJxLET3C6kQII_1ME4X7E.roa
File: hI3ZN8UJxLET3C6kQII_1ME4X7E.roa (raw, json)
Hash identifier: khV84nrh3pDSo+phWLxRCawbOwOpSkc3/i6F6vu2dMQ=
Subject key identifier: 84:8D:D9:37:C5:09:C4:B1:13:DC:2E:A4:40:82:3F:D4:C1:38:5F:B1
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01845EAE7A657C9C12C0337190302ED8232B
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/hI3ZN8UJxLET3C6kQII_1ME4X7E.roa
Signing time: Wed 09 Nov 2022 23:16:43 +0000
ROA not before: Wed 09 Nov 2022 23:16:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 212.2.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:5e:ae:7a:65:7c:9c:12:c0:33:71:90:30:2e:d8:23:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Nov 9 23:16:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=848dd937c509c4b113dc2ea440823fd4c1385fb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:39:f7:20:bf:2b:b4:8f:f1:05:ad:23:31:2a:
fc:22:97:9e:ef:7c:24:db:1d:e5:a4:e1:28:cf:ab:
ea:e3:b3:15:81:d6:e4:1b:bf:cb:47:f3:24:c1:72:
63:bf:fb:cd:ed:07:ae:99:e2:fa:a8:4e:88:88:6d:
85:a7:30:4d:fd:10:77:37:40:72:94:09:d6:88:63:
21:b5:65:0c:78:74:59:b7:88:3d:8d:77:29:13:3e:
2a:fa:a0:30:3f:95:71:aa:e7:f7:c8:25:99:cb:9f:
da:bb:13:5c:59:58:e0:a5:54:fc:58:89:89:35:86:
b7:16:5f:dc:73:85:6d:0c:3b:02:e3:d1:72:33:9c:
ca:d8:09:12:1f:ee:45:63:66:5a:8b:38:73:82:88:
6f:d8:4e:19:5f:e2:46:10:5d:b8:52:2f:2a:d0:0e:
3c:38:07:cb:66:42:82:11:0c:b5:7d:91:bb:37:9d:
66:79:47:aa:70:1b:24:96:2b:e5:13:c2:e2:1e:60:
a6:b4:bf:6d:c8:a4:61:b9:f6:30:b6:e9:9d:62:37:
e5:21:eb:54:ec:37:52:22:e5:2b:07:49:56:87:ab:
de:57:dd:00:5e:61:04:1f:2d:22:32:d8:9e:8e:13:
98:6e:cf:d2:77:e0:d3:06:db:3a:43:96:e5:a8:7d:
f8:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:8D:D9:37:C5:09:C4:B1:13:DC:2E:A4:40:82:3F:D4:C1:38:5F:B1
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/hI3ZN8UJxLET3C6kQII_1ME4X7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.2.237.0/24
Signature Algorithm: sha256WithRSAEncryption
43:8b:08:26:c8:0c:24:48:55:ed:94:bd:e9:70:ba:48:26:37:
16:8c:a9:a5:c3:96:dd:ed:32:d9:89:f2:9e:f3:d8:a7:7c:ed:
3e:2f:f7:e8:54:1d:4a:7b:38:a5:68:e6:e0:79:eb:36:9e:56:
09:59:55:e6:60:95:64:ee:54:5f:94:9e:e7:bf:9a:4c:f0:ff:
6d:99:85:ee:72:c6:3d:66:5c:8b:91:01:90:16:5e:bb:bb:3e:
41:0c:a2:46:d8:33:1d:ba:69:12:4b:d5:70:af:b4:4f:b1:27:
89:73:62:0d:18:d3:e3:1d:aa:6f:f2:16:22:93:77:b0:fe:df:
3f:b3:3c:30:6f:71:eb:06:37:22:4d:0a:9b:ae:37:1e:ee:55:
7a:50:c5:bc:52:f2:36:2d:e4:d5:71:0e:3c:86:88:f7:87:b8:
4a:84:59:5d:ef:95:fe:a1:72:0d:fb:23:41:ed:51:95:46:2e:
08:ae:0d:4e:e3:29:14:53:98:43:98:51:9b:f1:2c:2d:ec:eb:
14:40:c8:b4:19:1a:ae:eb:05:60:48:c3:82:69:f9:ff:90:10:
a5:bb:2f:fd:66:55:d7:cb:63:da:77:d4:a6:83:e5:b9:3c:f2:
d8:33:8d:b7:27:9f:63:c9:bc:18:ad:25:55:55:1a:b0:f6:de:
67:34:82:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:41 2024 by rpki-client on console-ams.rpki-client.org