Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/er64diahQ3gBUImzl1S1-H0NX2c.roa
File: er64diahQ3gBUImzl1S1-H0NX2c.roa (raw, json)
Hash identifier: eoLeKSz2aXWBgDBeevQTVcx1RiWTTuvp7xe3HHcHW/I=
Subject key identifier: 7A:BE:B8:76:26:A1:43:78:01:50:89:B3:97:54:B5:F8:7D:0D:5F:67
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 0184448927AC58032F7CF990C58CA048EED2
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/er64diahQ3gBUImzl1S1-H0NX2c.roa
Signing time: Fri 04 Nov 2022 21:25:50 +0000
ROA not before: Fri 04 Nov 2022 21:25:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 212.46.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:44:89:27:ac:58:03:2f:7c:f9:90:c5:8c:a0:48:ee:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Nov 4 21:25:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7abeb87626a14378015089b39754b5f87d0d5f67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:67:d5:94:2f:0a:d0:12:fe:30:30:0c:f9:d9:
6a:5d:5b:d7:a1:35:7d:43:ff:a7:69:e9:6b:8d:c8:
22:b8:48:b1:48:83:f2:c7:ad:1d:89:97:1b:0e:e5:
3f:99:7d:3f:47:5e:97:13:b4:ed:52:e1:5e:74:b7:
37:74:eb:8d:f1:aa:bb:a7:d4:57:a3:fa:33:c3:64:
17:dd:ce:2e:39:8f:79:05:b7:2c:d3:93:e5:56:aa:
0c:62:60:85:f0:0a:c9:07:04:21:9b:ae:1b:76:3a:
92:c0:9c:aa:f7:1f:71:4f:20:19:a0:1e:4b:57:ac:
c1:d4:fb:12:54:96:c5:bb:a0:eb:25:67:7d:0e:b9:
12:65:11:ed:a8:d2:d7:c7:6a:88:e2:95:10:1a:30:
5a:25:a2:cb:69:11:06:6d:a0:d6:03:00:fa:25:e6:
d7:f4:a5:d1:a1:78:7b:66:ae:8a:55:36:cd:35:71:
16:d0:1c:e3:fc:d2:8a:50:d6:1e:52:59:3f:53:cf:
1a:73:47:c5:97:69:11:5e:35:10:b3:a5:49:25:a9:
5a:60:08:fd:73:5e:1f:c4:2a:fd:c9:2d:45:b8:af:
1a:7b:55:d1:aa:be:1e:34:74:18:89:04:d9:de:16:
37:f9:5a:3f:87:56:ce:27:7d:49:7a:70:59:31:72:
38:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:BE:B8:76:26:A1:43:78:01:50:89:B3:97:54:B5:F8:7D:0D:5F:67
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/er64diahQ3gBUImzl1S1-H0NX2c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
6f:cc:2a:bc:71:16:fb:f5:1c:53:3d:fc:20:f9:71:22:23:5d:
04:0e:1b:13:28:37:60:3d:07:44:74:1a:7e:8c:16:98:b2:2f:
b5:e3:13:92:14:9b:59:67:cd:f3:ff:ca:96:9b:e9:c4:14:a3:
ab:c7:bd:1e:0c:b3:96:5c:e1:47:6c:f3:56:40:e3:17:ae:f4:
9e:ef:f5:00:31:04:6e:08:bc:aa:5d:22:a5:0a:7c:1c:0f:4d:
bb:0b:bd:11:d8:51:ef:70:ce:d0:53:51:56:f4:36:d5:b6:be:
cc:46:5d:9e:68:3e:8d:1f:26:c0:cd:fd:30:8d:25:71:1a:c4:
f7:10:d0:b6:fb:06:92:fe:bc:4a:7c:82:ac:88:b8:e3:d4:52:
b9:79:6d:e4:df:9a:b3:94:ea:cb:8b:b5:23:91:9d:e2:f8:c4:
99:91:df:a5:64:8e:8b:da:1f:7f:8c:50:5a:27:17:2a:f2:9c:
20:c0:f1:51:c6:29:69:18:4d:ca:e8:f5:4d:c8:5f:a9:b8:cf:
91:48:b4:89:98:fd:15:0c:cd:eb:2b:14:63:f7:15:22:fd:e3:
68:ca:a7:6e:41:a9:48:e0:70:48:73:23:23:bf:35:11:f6:1a:
ac:81:0c:d9:c0:0e:19:0e:d9:c5:f7:de:26:04:fc:7a:16:54:
91:c1:9c:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:09 2024 by rpki-client on console-fra.rpki-client.org