Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/pHq8U3RilO3AO4-iMBnca-aZYjQ.roa
File: pHq8U3RilO3AO4-iMBnca-aZYjQ.roa (raw, json)
Hash identifier: OQ3yLo0JsWxGJKmegIGo2F7x5ZdxBO8KYmVBqxWOrUM=
Subject key identifier: A4:7A:BC:53:74:62:94:ED:C0:3B:8F:A2:30:19:DC:6B:E6:99:62:34
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 01859D61A001624B71D4CE66DF6343BC7082
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/pHq8U3RilO3AO4-iMBnca-aZYjQ.roa
Signing time: Tue 10 Jan 2023 20:31:38 +0000
ROA not before: Tue 10 Jan 2023 20:31:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206446
IP address blocks: 212.2.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:9d:61:a0:01:62:4b:71:d4:ce:66:df:63:43:bc:70:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jan 10 20:31:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=a47abc53746294edc03b8fa23019dc6be6996234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8d:16:da:be:e7:ca:3b:14:b6:44:cf:88:a0:
08:b8:c0:92:12:82:99:aa:91:5b:64:b8:d0:e3:48:
e1:c9:05:ca:62:90:c6:08:f4:94:ce:db:10:8c:b1:
d8:ee:86:79:1f:5f:94:d2:0f:87:44:fe:f3:2f:20:
6a:75:a0:a4:d4:18:9d:ac:f0:3d:68:36:3d:10:0b:
17:9a:10:ed:71:e5:8f:cb:72:57:8d:4f:11:df:17:
bd:dc:1c:80:b8:a8:d5:92:59:51:53:84:c4:dc:5b:
69:80:7c:cf:71:a0:df:8f:6b:37:a6:bd:3f:26:d7:
44:1f:99:6a:37:ca:dc:46:76:7b:e7:45:23:79:45:
ce:cf:0e:6c:f7:cf:a6:82:f9:11:84:96:a5:08:89:
28:37:50:51:f4:34:87:38:51:68:dc:fe:10:c1:18:
ee:c4:87:e8:1d:f9:dd:05:d3:1e:20:d3:5c:51:71:
98:18:10:2c:e7:b8:83:38:ed:3d:37:96:d6:6e:ea:
d3:5e:c7:af:7a:63:1c:e4:1f:f3:b7:8d:29:c6:6a:
07:a1:8b:20:3f:61:7f:8b:5e:c4:e7:4d:f2:2c:7d:
5d:51:cb:b0:9c:4b:81:dc:b6:5d:e8:1a:f6:58:04:
66:62:c4:98:c8:db:c5:b7:ea:f9:62:32:65:d7:f8:
17:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:7A:BC:53:74:62:94:ED:C0:3B:8F:A2:30:19:DC:6B:E6:99:62:34
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/pHq8U3RilO3AO4-iMBnca-aZYjQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.2.237.0/24
Signature Algorithm: sha256WithRSAEncryption
46:28:9b:28:89:71:ed:94:14:14:1e:64:60:5b:5e:d5:01:1f:
71:1d:88:0c:b4:a4:b8:3e:a2:dc:ba:7c:a0:f5:3b:b6:e2:14:
15:81:32:ee:28:89:01:61:79:b5:46:3e:c0:56:af:66:c1:c9:
02:3c:98:21:32:0b:b5:40:62:d8:cc:77:4f:21:dd:72:d6:5d:
47:73:f9:73:6f:ab:21:e9:dd:d7:89:57:2e:be:6f:9d:0d:a1:
96:a5:e6:0b:d8:aa:81:52:af:b8:58:44:02:45:01:b7:d6:b9:
81:64:d3:cd:5b:8a:1b:1f:0c:5e:5d:8e:39:62:99:e2:d6:0c:
f7:bd:95:11:02:3c:1e:9e:d4:ad:b6:2d:fb:ff:fc:93:56:01:
09:e2:37:1c:1d:7b:5a:96:23:16:3c:4b:3d:b2:ca:c8:2e:73:
4c:ef:00:e7:1d:65:b3:76:cc:b0:6e:59:23:ae:7f:78:2b:91:
29:13:5f:ec:26:55:11:65:f6:47:18:38:16:8b:68:d4:53:b1:
c0:52:35:ff:75:2e:35:80:70:3c:51:8a:f6:0e:f4:64:e3:cd:
cd:5d:a1:fd:e3:92:0b:51:26:1a:8e:16:0a:f2:c0:b4:32:bd:
e6:b9:b0:4a:26:9c:a1:b0:89:d5:ba:28:66:09:66:ae:21:cf:
b9:e4:85:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:41 2024 by rpki-client on console-ams.rpki-client.org