Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/ff1697-8993-45fb-95cf-b99e22cd1338/1/m517QZoanxL9xKjuvN0CgXuBhEA.roa
File: m517QZoanxL9xKjuvN0CgXuBhEA.roa (raw, json)
Hash identifier: 5kR4xbFweKc+FbJqQOEQsd8WC+VNmQEKvsyPkQwRhSs=
Subject key identifier: 9B:9D:7B:41:9A:1A:9F:12:FD:C4:A8:EE:BC:DD:02:81:7B:81:84:40
Certificate issuer: /CN=aee70e72bdff01301bc3bffbf521343d1014cd06
Certificate serial: 01856FD4E90DCF3E595648D739F6C9489545
Authority key identifier: AE:E7:0E:72:BD:FF:01:30:1B:C3:BF:FB:F5:21:34:3D:10:14:CD:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rucOcr3_ATAbw7_79SE0PRAUzQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/ff1697-8993-45fb-95cf-b99e22cd1338/1/m517QZoanxL9xKjuvN0CgXuBhEA.roa
Signing time: Mon 02 Jan 2023 00:15:02 +0000
ROA not before: Mon 02 Jan 2023 00:15:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57752
IP address blocks: 83.136.148.0/23 maxlen: 23
83.136.150.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:d4:e9:0d:cf:3e:59:56:48:d7:39:f6:c9:48:95:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aee70e72bdff01301bc3bffbf521343d1014cd06
Validity
Not Before: Jan 2 00:15:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9b9d7b419a1a9f12fdc4a8eebcdd02817b818440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:f3:1b:9a:28:a5:62:63:23:77:47:2c:46:99:
da:83:a4:72:44:dc:cf:e4:1f:a4:9c:f9:f6:99:d2:
55:c0:f9:cd:06:d1:74:ab:be:5d:a8:bd:7b:d0:32:
62:1d:2d:82:12:db:f3:0a:d7:aa:5f:ff:72:72:31:
04:d0:d9:a0:15:78:79:2b:66:49:71:26:55:22:64:
25:d1:5b:a5:52:fe:4e:33:fa:4e:0e:53:b2:b8:66:
8c:91:26:8b:75:80:2d:bf:da:3d:95:4b:c7:41:1a:
a0:e3:3a:a5:c3:e2:6a:11:1d:00:88:b4:c9:0d:be:
5a:3e:f4:d9:f5:e1:d5:b9:4e:a0:90:fe:42:ec:8a:
bb:26:4c:27:8e:b2:88:ee:3d:68:49:5a:a4:fd:2a:
7b:74:74:ee:56:b7:b0:37:b6:a4:2e:62:dc:ae:97:
50:52:fb:5b:87:03:28:5b:3e:03:0d:39:79:a8:f2:
83:30:27:07:7c:a5:6b:45:e6:31:f7:db:ff:2a:39:
5b:e7:ac:09:cd:4f:fb:86:32:38:97:ce:31:a7:d7:
4b:ff:fe:b3:4f:43:0b:99:bd:01:2c:0b:94:9f:9c:
ec:02:4f:07:70:2e:7b:6b:c4:a1:d7:4f:8d:11:e0:
0e:36:e8:c9:bb:77:c4:e5:95:dc:50:64:97:99:03:
6f:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:9D:7B:41:9A:1A:9F:12:FD:C4:A8:EE:BC:DD:02:81:7B:81:84:40
X509v3 Authority Key Identifier:
keyid:AE:E7:0E:72:BD:FF:01:30:1B:C3:BF:FB:F5:21:34:3D:10:14:CD:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rucOcr3_ATAbw7_79SE0PRAUzQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ff1697-8993-45fb-95cf-b99e22cd1338/1/m517QZoanxL9xKjuvN0CgXuBhEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/ff1697-8993-45fb-95cf-b99e22cd1338/1/rucOcr3_ATAbw7_79SE0PRAUzQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.136.148.0/22
Signature Algorithm: sha256WithRSAEncryption
45:75:a8:26:b3:e5:5c:84:9f:49:66:57:64:25:99:9e:75:78:
e9:f8:f8:b6:1e:53:34:14:c5:b9:6f:28:f7:cc:8f:8c:39:f1:
b5:f7:1c:80:1a:27:6c:e2:a8:23:56:08:d4:eb:8e:54:41:e1:
30:70:28:cb:89:07:76:d1:4a:1d:30:37:6f:cc:b4:e3:40:84:
14:f1:33:f5:ed:ec:56:e7:f5:44:5f:b0:d4:ca:2a:b7:05:ed:
f1:19:1d:ee:84:df:13:25:17:b7:4d:32:c8:86:19:22:95:02:
2c:6e:a3:31:54:8b:74:88:07:06:14:47:15:ea:41:54:15:64:
ba:2e:db:02:36:f1:0c:03:42:f7:f0:b7:8a:89:f6:42:a8:b8:
73:10:e2:4f:84:ac:8a:32:5a:e6:78:ba:2a:00:c0:0c:1a:d7:
8e:eb:0f:ed:45:07:ff:93:06:11:3a:b1:f1:2d:e9:18:44:31:
d6:7f:04:c5:91:5c:d9:91:5b:4a:7f:48:b0:04:d7:6b:5a:e2:
a0:4c:ae:cb:39:1d:8f:2b:1f:b0:75:c4:67:a3:5c:19:7f:e7:
5f:a7:2f:af:11:00:47:4a:bb:f6:26:ff:5d:e3:73:09:c8:73:
1b:25:c3:b3:14:aa:a2:f4:da:11:5b:f6:4c:17:f3:f1:8e:30:
a8:27:aa:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:43 2024 by rpki-client on console-fra.rpki-client.org