Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/2a4b7d-0372-41bf-bf38-796b059a3b93/1/S12DBZhxStcCCGgaWc1WwEY35ec.roa
File: S12DBZhxStcCCGgaWc1WwEY35ec.roa (raw, json)
Hash identifier: vDNcaaZYCne8jkKgDI0lPVrwTwCeF3qntfsVgZtU49Y=
Subject key identifier: 4B:5D:83:05:98:71:4A:D7:02:08:68:1A:59:CD:56:C0:46:37:E5:E7
Certificate issuer: /CN=b536bd81b38c70bf1fb259bc9752eacebe55b738
Certificate serial: 01857255A96C459237EC388ACAD261BFD8A8
Authority key identifier: B5:36:BD:81:B3:8C:70:BF:1F:B2:59:BC:97:52:EA:CE:BE:55:B7:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tTa9gbOMcL8fslm8l1Lqzr5Vtzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/2a4b7d-0372-41bf-bf38-796b059a3b93/1/S12DBZhxStcCCGgaWc1WwEY35ec.roa
Signing time: Mon 02 Jan 2023 11:54:54 +0000
ROA not before: Mon 02 Jan 2023 11:54:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 5483
IP address blocks: 194.39.160.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:55:a9:6c:45:92:37:ec:38:8a:ca:d2:61:bf:d8:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b536bd81b38c70bf1fb259bc9752eacebe55b738
Validity
Not Before: Jan 2 11:54:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4b5d830598714ad70208681a59cd56c04637e5e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:47:72:13:a3:d8:ed:d5:d6:68:71:1a:fd:a2:
eb:8d:4a:ee:a1:34:0a:fd:9d:57:46:a6:88:90:e3:
5f:b9:62:dd:d5:c1:9e:5b:d6:1a:f1:e1:6d:3a:5c:
a7:1e:59:9a:e8:bc:b7:52:91:d2:ec:24:13:ce:43:
5e:f2:05:b4:81:23:93:8a:2a:a1:ab:cc:00:b9:5f:
77:0b:2d:43:6a:f5:23:fe:2e:f7:16:e8:c2:4e:7d:
8c:bd:2b:00:67:73:5d:d2:5c:7c:d9:b4:a8:06:82:
ea:d0:02:18:45:3b:c5:f0:45:27:2b:f6:34:49:c0:
f9:16:6c:b4:eb:bc:60:ae:d5:f4:92:96:b1:55:19:
2d:46:45:29:f9:cb:16:54:19:0b:13:5c:9c:f2:47:
9b:80:9c:cb:8b:f6:b1:db:07:57:5c:29:52:7e:fe:
a8:9a:19:9a:84:ca:de:6a:37:ca:c0:13:65:60:06:
64:f4:d2:db:0a:3a:1b:77:f5:15:16:0f:af:5c:b8:
b3:53:43:13:d3:92:15:7b:a3:9a:60:66:e3:0c:1a:
9f:b3:b6:60:48:30:3d:b8:f1:fd:07:09:09:66:50:
ba:97:bb:16:09:d6:0d:27:f2:82:f6:c2:f8:be:b4:
be:47:e0:6a:b6:61:df:54:9e:3e:8f:02:4b:03:5b:
48:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:5D:83:05:98:71:4A:D7:02:08:68:1A:59:CD:56:C0:46:37:E5:E7
X509v3 Authority Key Identifier:
keyid:B5:36:BD:81:B3:8C:70:BF:1F:B2:59:BC:97:52:EA:CE:BE:55:B7:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tTa9gbOMcL8fslm8l1Lqzr5Vtzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2a4b7d-0372-41bf-bf38-796b059a3b93/1/S12DBZhxStcCCGgaWc1WwEY35ec.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2a4b7d-0372-41bf-bf38-796b059a3b93/1/tTa9gbOMcL8fslm8l1Lqzr5Vtzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.39.160.0/22
Signature Algorithm: sha256WithRSAEncryption
6f:0e:b6:cf:db:9e:80:04:8d:74:8d:f4:86:45:1d:ae:34:4f:
68:1a:f7:98:36:80:aa:0c:fc:6a:8e:2a:3a:ad:50:ba:9f:ed:
d6:20:b0:61:1d:58:b4:e8:4d:95:a7:c6:32:a6:4e:0f:bd:3b:
09:a3:21:6d:70:57:ee:80:89:4f:fe:e2:fa:b1:ac:7d:65:59:
c2:60:6e:fa:a8:57:12:00:0f:5b:f1:3e:56:a0:ab:15:9c:af:
24:34:23:f7:21:0c:ae:2c:53:75:aa:6a:dc:1a:1d:c4:88:24:
8d:c5:36:47:47:88:da:38:5b:63:d2:84:a6:be:f6:15:5a:ff:
48:91:38:6c:fa:c9:45:07:bf:d2:14:aa:f1:b9:4e:83:d4:a9:
e6:27:e0:e5:3a:c7:6d:1b:fd:2a:25:64:5a:9b:bc:e6:da:57:
2c:cf:58:db:ec:cf:5b:c1:2b:c0:d5:a9:f5:19:cf:3d:32:c7:
44:e1:81:75:72:6a:f1:97:95:7e:da:d5:4b:57:9b:41:0c:e0:
0b:4c:c7:be:bd:02:56:01:c4:98:22:35:fd:12:47:18:7d:c9:
94:f9:02:09:08:a2:5d:24:0e:30:09:77:01:fc:bb:ab:ab:40:
95:84:d5:94:73:8f:1c:66:a2:c8:94:ba:a7:6a:e8:59:c2:6f:
1f:61:4c:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:38 2024 by rpki-client on console-fra.rpki-client.org