Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/sh3vf6uHxXUOXdjmieSsDORNZO4.roa
File: sh3vf6uHxXUOXdjmieSsDORNZO4.roa (raw, json)
Hash identifier: N53GZJk3HGMPAPb3VIeH0Hv9C7g7gkP70uaDYUdfDAI=
Subject key identifier: B2:1D:EF:7F:AB:87:C5:75:0E:5D:D8:E6:89:E4:AC:0C:E4:4D:64:EE
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 018DF1825AF689827370854F908582891630
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/sh3vf6uHxXUOXdjmieSsDORNZO4.roa
Signing time: Wed 28 Feb 2024 20:57:48 +0000
ROA not before: Wed 28 Feb 2024 20:57:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 0
IP address blocks: 212.46.37.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:f1:82:5a:f6:89:82:73:70:85:4f:90:85:82:89:16:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Feb 28 20:57:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b21def7fab87c5750e5dd8e689e4ac0ce44d64ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:82:3f:c5:5b:ed:9c:b9:d8:4f:8f:76:d3:b6:
33:d9:bb:2e:70:d7:3d:22:83:15:78:21:db:3c:53:
b0:a0:84:14:95:40:eb:5c:ad:5d:51:9d:b0:2c:6e:
03:fe:81:e7:ff:b9:6b:f9:0f:08:a9:0b:e6:dc:1d:
93:ec:f7:38:1f:92:0e:fd:fd:3b:19:d9:16:19:3e:
18:b8:33:71:a0:9e:d3:3b:ef:e7:6d:45:3b:fa:3a:
91:e0:c2:ee:6b:27:3b:fb:f9:63:06:bf:5e:21:9c:
ed:0f:c4:5b:6d:25:ca:0d:49:9c:21:16:64:f7:38:
d1:89:a3:20:55:9b:0b:b8:bd:f7:05:f8:3e:44:59:
ce:54:b0:a2:5c:7b:db:f8:dc:30:ea:30:91:4f:bf:
dc:bc:a8:c3:87:7c:73:28:59:3f:f9:5b:05:d1:d8:
58:1b:a4:64:c9:ae:6c:8e:24:4e:ea:d6:d9:a8:fe:
1a:85:be:b7:dd:dc:ca:b9:94:f7:37:ea:26:bf:6b:
27:ad:ce:a5:39:f2:8f:93:41:54:6d:1f:0b:65:48:
55:c9:15:ed:21:4b:e0:96:31:a5:db:a5:84:1b:0a:
ff:15:5d:5e:6f:fa:ff:21:79:b5:05:35:68:30:90:
b5:6d:e7:68:3e:c0:a8:a9:d5:9f:c0:d6:39:ae:07:
51:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:1D:EF:7F:AB:87:C5:75:0E:5D:D8:E6:89:E4:AC:0C:E4:4D:64:EE
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/sh3vf6uHxXUOXdjmieSsDORNZO4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:63:38:ba:e1:8c:82:fa:7a:6a:ee:dc:7b:0b:7d:bc:cc:4a:
b0:6a:a8:ba:0a:4e:43:cb:ea:00:9d:d9:4d:00:65:dc:e7:3e:
ee:a7:fa:92:f2:06:4b:bb:a5:50:ab:85:69:6c:2a:29:a1:cf:
21:fc:41:51:82:8e:c4:d2:32:50:a2:1d:ad:11:d6:ae:80:c6:
5c:de:40:9d:7c:d4:1e:71:e6:18:ba:1f:e4:08:30:67:0b:b0:
05:eb:93:3a:a0:4a:0a:66:b4:da:dd:c6:8f:bf:43:d6:08:60:
d9:db:b9:3f:b8:45:a6:b3:ed:cb:25:9e:7c:42:06:90:74:2f:
9c:a0:73:20:7f:cb:60:44:b2:70:e4:47:38:00:ac:44:52:84:
96:65:9d:25:8f:eb:96:2c:ca:61:b0:49:3c:14:c0:18:b5:1c:
bc:a0:7b:91:07:27:5c:57:99:84:f6:4a:62:bc:7d:16:e5:c7:
cb:79:07:26:33:6d:12:72:db:ab:66:1b:49:ad:d5:f8:72:06:
83:d8:b5:e9:96:dd:3a:2f:15:2c:57:6b:45:02:d1:07:67:95:
fb:9c:7a:3d:e2:a8:a6:93:e9:e4:74:5d:2e:16:0c:bd:dd:c2:
71:33:78:73:b0:b2:3d:14:dd:56:75:66:7f:04:6c:b3:1e:c3:
2a:d7:5a:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:09 2024 by rpki-client on console-fra.rpki-client.org