Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/vTYScAIQXCQtTkBW4GoPT9qg1HI.roa
File: vTYScAIQXCQtTkBW4GoPT9qg1HI.roa (raw, json)
Hash identifier: 8thvkQ9+n2Ds706pSORIflEoqYPBQEjy/+7NXn8xShE=
Subject key identifier: BD:36:12:70:02:10:5C:24:2D:4E:40:56:E0:6A:0F:4F:DA:A0:D4:72
Certificate issuer: /CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Certificate serial: 04F8603A
Authority key identifier: 21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/vTYScAIQXCQtTkBW4GoPT9qg1HI.roa
Signing time: Mon 04 Jul 2022 17:09:25 +0000
ROA not before: Mon 04 Jul 2022 17:09:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 212.2.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83386426 (0x4f8603a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21814cf2ca3e1799349ccd4c7e6a76d63f834a3d
Validity
Not Before: Jul 4 17:09:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd36127002105c242d4e4056e06a0f4fdaa0d472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:19:34:d5:44:95:1c:42:57:aa:63:00:29:2f:
cb:ba:55:7d:65:d9:19:d5:31:25:49:5a:6c:5d:f5:
92:09:54:ce:2a:e8:41:81:98:9e:d0:c8:ef:43:08:
aa:18:c2:4f:8d:4e:c1:b9:59:46:22:7c:72:3a:be:
84:d3:87:5e:7d:4f:6c:1b:dd:bc:c4:3a:4e:7d:b8:
d8:26:13:5a:df:07:ec:4c:6e:ab:41:d6:fd:a9:fd:
b7:c7:14:73:05:f6:bc:d5:6c:1c:1f:81:9f:dd:db:
9f:fa:8d:6f:6e:ef:f2:1a:2b:a1:8b:da:99:bd:90:
19:0c:e0:45:1e:1d:b3:0c:7a:4b:3f:a3:55:aa:60:
00:63:13:b1:af:1d:a8:ff:a5:92:89:c2:a9:cc:5f:
d2:4d:67:47:e0:b3:c3:f6:a2:a1:a7:47:60:e1:46:
89:de:86:33:46:e3:d3:28:04:b0:2d:ed:41:f2:48:
d2:31:ea:28:c9:17:8e:90:b4:b7:89:54:55:81:21:
f9:2f:16:f6:29:65:48:b2:6e:33:ea:07:8f:3d:d1:
2d:86:00:fb:82:4d:67:f4:e5:fe:6f:bc:9f:26:39:
f4:47:ba:fb:69:8d:85:49:3c:1c:7c:1f:1e:58:4f:
6f:52:22:a4:23:6c:99:13:27:90:8c:75:29:43:fd:
a6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:36:12:70:02:10:5C:24:2D:4E:40:56:E0:6A:0F:4F:DA:A0:D4:72
X509v3 Authority Key Identifier:
keyid:21:81:4C:F2:CA:3E:17:99:34:9C:CD:4C:7E:6A:76:D6:3F:83:4A:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IYFM8so-F5k0nM1Mfmp21j-DSj0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/vTYScAIQXCQtTkBW4GoPT9qg1HI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/01f853-d445-4ace-a8d8-22701b4bb407/1/IYFM8so-F5k0nM1Mfmp21j-DSj0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.2.237.0/24
Signature Algorithm: sha256WithRSAEncryption
16:e6:00:dc:a6:fd:0e:33:bd:79:d0:82:1c:a3:d9:25:5c:14:
34:e3:ca:7e:75:40:02:26:79:04:5c:9f:2e:71:48:27:9a:9b:
59:71:6e:80:2c:62:e7:c3:6c:cb:d7:d5:e5:3c:99:fc:79:1c:
e7:05:58:60:95:c5:31:d6:04:9d:c1:b9:19:57:16:4b:fa:6a:
02:a2:f8:26:9f:c1:b6:4f:59:dd:67:30:54:06:22:a8:8c:26:
80:03:86:68:a1:82:5b:8d:9e:af:7c:f1:26:85:c0:b9:09:81:
6a:b5:60:4a:44:29:6a:15:18:9d:90:a5:84:f3:a8:3d:0c:d3:
a0:d6:66:b5:33:7b:90:50:f8:a3:65:e2:4f:ee:6c:0e:67:8a:
11:98:d6:9c:36:9d:cc:4a:37:1e:76:46:5e:cb:e3:ba:60:2b:
74:83:b8:ad:9a:85:90:35:c6:ab:95:35:3e:8b:70:b4:97:41:
12:39:3d:61:3d:ac:ae:3a:58:e3:6a:5c:24:22:a8:6b:42:39:
c7:20:38:09:58:4f:94:20:e8:85:47:ce:7d:cd:58:c6:43:70:
b4:ff:05:d4:b5:63:9f:66:71:0b:f0:4c:f1:65:53:70:bf:e7:
32:6f:1b:86:d6:64:8c:3c:0a:c8:ee:af:96:b5:f3:08:7c:91:
26:54:5b:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:41 2024 by rpki-client on console-ams.rpki-client.org