Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/262638-e859-41ce-8eb0-aea8e66bc349/1/XIGJIPwUJsm1USMb0jhhv18LXX0.roa
File: XIGJIPwUJsm1USMb0jhhv18LXX0.roa (raw, json)
Hash identifier: NERuMw5nlhmsME8HS2pX7ZqSnyHR8nRgUpJnYcOlwVg=
Subject key identifier: 5C:81:89:20:FC:14:26:C9:B5:51:23:1B:D2:38:61:BF:5F:0B:5D:7D
Certificate issuer: /CN=2eb4dad071a660948945cbf6d8dcfd2cdbd52e82
Certificate serial: 01883050AFB0D368E4D9259CF1F17D9C534D
Authority key identifier: 2E:B4:DA:D0:71:A6:60:94:89:45:CB:F6:D8:DC:FD:2C:DB:D5:2E:82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LrTa0HGmYJSJRcv22Nz9LNvVLoI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/262638-e859-41ce-8eb0-aea8e66bc349/1/XIGJIPwUJsm1USMb0jhhv18LXX0.roa
Signing time: Thu 18 May 2023 19:22:54 +0000
ROA not before: Thu 18 May 2023 19:22:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49424
IP address blocks: 37.140.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:30:50:af:b0:d3:68:e4:d9:25:9c:f1:f1:7d:9c:53:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2eb4dad071a660948945cbf6d8dcfd2cdbd52e82
Validity
Not Before: May 18 19:22:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c818920fc1426c9b551231bd23861bf5f0b5d7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:64:2d:95:ec:f9:45:ea:8a:a2:13:21:99:85:
02:d6:cc:8b:30:d1:39:66:30:16:7c:77:f9:04:b2:
d7:50:e2:88:fd:29:a4:e7:44:ea:95:e5:17:94:0c:
b6:71:05:cb:a9:12:a3:7e:60:61:3b:51:bb:d8:19:
19:f2:f3:eb:4d:ff:af:a4:92:6b:81:9b:7f:77:bc:
2b:98:50:21:03:87:4d:70:38:a6:08:36:69:e2:fe:
9a:64:f3:3b:ca:45:e8:4b:3a:ca:04:c1:95:84:a1:
35:1a:db:d5:6c:21:13:e2:a5:a0:3c:69:14:96:a9:
cd:ab:6a:d3:81:39:48:a5:50:d4:1e:79:fa:ab:38:
8e:b7:17:8c:11:d4:99:34:f9:18:2b:a4:f1:75:0d:
4a:80:28:47:68:41:e4:7f:f6:c6:f9:7b:38:b3:8e:
ef:23:ec:73:e9:18:e1:b3:88:89:7a:ae:6b:bd:bc:
e4:8b:00:73:46:c2:4b:87:fd:24:b8:2b:51:36:73:
bb:33:10:8c:55:3c:e3:da:57:37:85:54:ea:0b:7b:
9e:bf:6e:00:be:cf:5e:64:fb:ad:1a:49:0b:79:63:
ea:19:b0:41:ba:27:cc:ab:2e:6b:7d:e9:b9:f9:55:
46:44:8d:4c:82:89:50:6b:3e:05:99:86:81:bb:70:
64:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:81:89:20:FC:14:26:C9:B5:51:23:1B:D2:38:61:BF:5F:0B:5D:7D
X509v3 Authority Key Identifier:
keyid:2E:B4:DA:D0:71:A6:60:94:89:45:CB:F6:D8:DC:FD:2C:DB:D5:2E:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LrTa0HGmYJSJRcv22Nz9LNvVLoI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/262638-e859-41ce-8eb0-aea8e66bc349/1/XIGJIPwUJsm1USMb0jhhv18LXX0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/262638-e859-41ce-8eb0-aea8e66bc349/1/LrTa0HGmYJSJRcv22Nz9LNvVLoI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.216.0/24
Signature Algorithm: sha256WithRSAEncryption
35:80:82:27:5a:8e:fd:cb:5b:5d:ac:b5:87:f5:c1:89:a9:57:
e9:a5:ea:cc:0f:cc:c6:c2:7a:29:c7:b9:10:92:ca:7a:55:23:
e1:94:80:6f:38:e8:c6:52:ab:92:21:23:e7:86:7a:01:44:f6:
06:38:4a:c7:12:78:3b:35:0d:6b:55:33:33:9a:43:4c:50:d4:
43:bb:24:06:4d:42:42:0c:76:7a:40:e9:a7:67:6f:b6:94:41:
df:3d:58:c2:60:6b:3f:88:e3:77:11:78:e9:b4:d1:ac:90:4b:
54:a0:c6:4a:84:18:3c:89:c5:da:f8:a8:25:39:3c:c9:b4:a0:
5a:d0:ce:b4:c5:00:d7:99:ef:e6:c1:d8:23:39:74:d1:53:51:
e9:5a:86:7e:18:2b:3c:00:81:70:0f:a4:1a:b4:5a:e7:32:d6:
41:83:e7:2b:e7:3d:35:ed:bb:e0:c6:0f:f0:40:06:bd:e0:25:
bf:e8:d8:6a:bb:cb:bd:92:2a:f6:41:7c:50:3f:22:d5:ad:09:
fd:80:75:32:59:7c:a2:c4:d7:dc:07:76:97:8b:fd:3d:16:dc:
fc:72:bf:09:4d:5c:cb:2b:2c:c6:ca:72:e3:0e:00:0e:3d:ef:
22:ad:0a:ac:b4:ad:b1:5b:5d:a5:6e:31:1d:f0:fe:e9:ca:40:
fb:6f:ae:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:04 2024 by rpki-client on console-fra.rpki-client.org