Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/a7df4a-77a9-43d8-bfd7-a853144879f3/1/cr-gHFck_ASTTeo3FpVQ9KPE88U.roa
File: cr-gHFck_ASTTeo3FpVQ9KPE88U.roa (raw, json)
Hash identifier: 6ng0I4c3k1aKTzcBl23uyNjpW148vJBXOPe68GdzIVg=
Subject key identifier: 72:BF:A0:1C:57:24:FC:04:93:4D:EA:37:16:95:50:F4:A3:C4:F3:C5
Certificate issuer: /CN=e4749c3367ba6e7e9f77354a55d388379135df0e
Certificate serial: 1BC3F8CE
Authority key identifier: E4:74:9C:33:67:BA:6E:7E:9F:77:35:4A:55:D3:88:37:91:35:DF:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HScM2e6bn6fdzVKVdOIN5E13w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/a7df4a-77a9-43d8-bfd7-a853144879f3/1/cr-gHFck_ASTTeo3FpVQ9KPE88U.roa
Signing time: Sat 01 Jan 2022 02:00:29 +0000
ROA not before: Sat 01 Jan 2022 02:00:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212328
IP address blocks: 82.102.14.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465828046 (0x1bc3f8ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4749c3367ba6e7e9f77354a55d388379135df0e
Validity
Not Before: Jan 1 02:00:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=72bfa01c5724fc04934dea37169550f4a3c4f3c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:93:c0:24:44:35:83:3a:e7:73:94:1e:1b:dc:
7f:22:9c:50:43:41:87:ae:99:ac:9e:57:3e:9f:55:
01:cf:b8:db:4e:67:28:2d:8a:ec:7c:04:88:55:ad:
8e:4b:aa:6b:7f:ab:38:4a:68:d0:93:22:17:af:5f:
5b:2d:9e:b0:75:c4:bb:b0:76:78:4c:cd:11:3d:a6:
bb:6c:97:2f:6f:3f:6d:35:bd:aa:58:2b:a8:ee:de:
fa:f1:b1:43:d3:16:6e:70:4d:1d:d6:f0:9f:81:d0:
d4:99:f9:fd:e8:a7:26:5f:f7:2d:fd:54:97:e2:b5:
5b:e2:6a:8e:65:25:0a:80:52:78:ed:b5:50:f5:6a:
61:36:af:26:93:49:ce:d8:75:14:66:a2:53:06:91:
66:ac:41:14:4b:fc:28:04:84:05:2e:8f:6d:63:e5:
6a:d0:4c:7f:7f:24:da:98:c7:88:ed:6d:7d:5a:82:
a4:18:38:82:5b:be:49:64:5b:a2:f5:81:14:3a:e5:
94:77:47:49:63:ad:fd:02:38:89:7c:de:ee:e2:d5:
11:7d:71:80:6b:b1:00:2e:9a:2f:3c:7a:1c:60:ac:
ba:5c:48:ba:51:8e:4d:23:b5:36:65:5b:67:10:40:
96:59:0c:80:c5:c5:07:16:16:b2:57:59:88:59:1d:
38:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BF:A0:1C:57:24:FC:04:93:4D:EA:37:16:95:50:F4:A3:C4:F3:C5
X509v3 Authority Key Identifier:
keyid:E4:74:9C:33:67:BA:6E:7E:9F:77:35:4A:55:D3:88:37:91:35:DF:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HScM2e6bn6fdzVKVdOIN5E13w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/a7df4a-77a9-43d8-bfd7-a853144879f3/1/cr-gHFck_ASTTeo3FpVQ9KPE88U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/a7df4a-77a9-43d8-bfd7-a853144879f3/1/5HScM2e6bn6fdzVKVdOIN5E13w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.102.14.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:1d:cd:bd:1d:ab:a8:2d:11:21:72:00:a7:bb:23:f2:0a:06:
cf:b6:aa:78:46:84:f6:69:1e:3d:bd:fe:6e:c4:11:f5:bb:5e:
70:fd:83:80:bd:fe:6b:18:47:04:bf:06:d3:49:d8:a6:81:7d:
04:56:3d:42:46:55:50:64:01:f1:51:43:df:71:04:a0:31:8c:
1e:91:27:2b:f4:38:56:3a:e2:12:62:61:df:e6:fc:6b:b0:54:
29:6c:8b:ea:b2:a7:a2:89:01:d2:ed:51:f7:5b:38:3d:90:44:
6d:93:4f:8a:59:d1:bd:09:89:9e:2f:b8:b3:69:ef:fb:d3:34:
81:b9:86:08:17:72:eb:9f:36:7b:fb:cf:2a:d6:60:64:67:09:
4f:ed:84:18:49:83:2b:2c:68:6c:e1:f6:dc:5c:91:9a:be:03:
eb:52:87:d5:9f:50:68:74:65:cd:41:36:b2:fa:da:73:32:d4:
a2:06:2d:bd:fc:5a:e8:7c:54:43:82:97:37:fc:e0:f0:39:98:
0c:96:5a:96:16:bd:0d:d7:ec:dc:84:32:5c:80:c0:bb:1d:6e:
b9:01:29:a4:25:e5:09:fb:8a:1e:82:f0:90:5a:13:e1:b6:7b:
9b:9d:3b:65:bc:e3:7e:be:99:cc:4e:20:00:6a:23:21:e4:58:
ed:0a:f1:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:25 2024 by rpki-client on console-fra.rpki-client.org