Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/hnLx6QlaLD0GM83uE7rl2U71-Bo.roa
File: hnLx6QlaLD0GM83uE7rl2U71-Bo.roa (raw, json)
Hash identifier: 0hsmKnzKm+VY1UwJZw0HCvRGPaeKzX8owTFxmqHX1Sg=
Subject key identifier: 86:72:F1:E9:09:5A:2C:3D:06:33:CD:EE:13:BA:E5:D9:4E:F5:F8:1A
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01877753044535E8023CC49C3C3D076420D8
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/hnLx6QlaLD0GM83uE7rl2U71-Bo.roa
Signing time: Wed 12 Apr 2023 21:15:41 +0000
ROA not before: Wed 12 Apr 2023 21:15:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 213.225.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:77:53:04:45:35:e8:02:3c:c4:9c:3c:3d:07:64:20:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Apr 12 21:15:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8672f1e9095a2c3d0633cdee13bae5d94ef5f81a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:50:b4:68:4a:7b:f7:43:41:f9:af:ff:41:6f:
5f:f7:54:0a:52:24:1a:7e:e7:69:95:6d:21:69:79:
e2:81:40:76:0e:9c:22:bc:2d:39:53:d5:83:43:5d:
0c:ae:ae:89:28:a7:5b:27:19:ff:82:a9:a2:86:09:
19:96:e9:e5:0a:34:0d:00:fd:e1:cb:79:70:47:c2:
03:5b:52:d3:99:c4:df:42:b7:be:a8:58:88:39:a4:
b7:af:60:5f:b1:49:26:68:5f:e6:52:56:80:fb:e8:
29:a2:38:69:21:b0:1a:b5:6e:19:bc:ac:41:98:fb:
5d:d8:d3:fa:4b:41:87:49:82:1e:37:a9:90:a9:72:
68:f1:b6:f8:2e:de:80:ce:7d:b4:67:b3:17:3d:0d:
87:11:81:15:61:42:c7:e4:41:53:e7:95:f3:3b:4d:
85:59:bb:be:bb:95:dd:db:16:72:be:14:f1:f8:0b:
bf:97:51:30:3b:00:23:9b:dd:b9:25:22:df:c5:2c:
c4:68:6d:48:e5:dd:1c:c1:98:da:14:c4:98:4d:cd:
b3:44:4a:10:74:f0:ca:6f:85:ac:ca:e0:2b:1b:88:
14:dd:3f:04:0e:a3:29:a5:8d:5a:af:e5:e6:46:7e:
e3:cf:06:2b:c4:39:ea:34:f8:14:19:43:76:43:30:
1f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:72:F1:E9:09:5A:2C:3D:06:33:CD:EE:13:BA:E5:D9:4E:F5:F8:1A
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/hnLx6QlaLD0GM83uE7rl2U71-Bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.225.237.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:18:95:35:93:84:69:5e:d6:f1:11:1a:21:25:34:03:b5:ca:
03:81:4c:c1:22:3f:10:2c:7e:06:20:f3:0f:f7:9e:1a:99:be:
db:0e:93:28:80:46:8d:d8:41:2a:cd:32:0e:ee:66:a4:dd:81:
b2:ab:47:ef:5f:e9:8d:bd:94:0b:76:ef:81:ff:0d:e2:c4:67:
86:b2:e0:08:84:f4:29:a4:85:f6:fe:ec:05:f6:ea:07:e7:f8:
dd:4a:03:56:a9:a4:42:6f:1c:9e:4c:0b:0a:c1:b7:43:2d:19:
a4:77:5f:ed:41:2c:3f:01:a6:ce:3e:3a:3b:af:ab:c6:0d:83:
45:76:12:06:aa:c6:4d:e1:b8:cb:21:c4:1a:45:d1:4d:47:64:
45:07:68:fd:4f:32:64:e2:d3:cb:78:5f:83:46:df:3c:f0:70:
16:02:90:5b:72:c6:27:0b:7b:91:71:20:0a:b4:7d:e3:00:aa:
53:0a:ef:b4:a8:bd:a4:83:cf:7e:7b:e2:89:a1:23:ab:7a:3e:
4d:fe:a1:84:d1:ff:39:61:4e:2b:d6:04:24:e4:d5:df:6a:a9:
ed:70:8f:9a:bd:cf:7c:9d:78:a2:50:1d:4c:47:56:bb:1f:99:
0a:6b:25:47:ef:ce:ba:f1:01:52:47:0a:05:a1:b6:9b:17:0c:
1a:7d:46:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:50 2024 by rpki-client on console-fra.rpki-client.org