Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/523290-bd41-42f4-ab50-f9910bb56fcd/1/CQZEr5QzW7SOvzCQAzMaqlqFiB4.roa
File: CQZEr5QzW7SOvzCQAzMaqlqFiB4.roa (raw, json)
Hash identifier: 1turXq1PKzR9dTFv1FtfK3vV/9Muxwj7pNm0ZKVInY0=
Subject key identifier: 09:06:44:AF:94:33:5B:B4:8E:BF:30:90:03:33:1A:AA:5A:85:88:1E
Certificate issuer: /CN=878c83598fc7365aa909d6ae117bb1907d5192fd
Certificate serial: 01856CAF3B49C020F1F04A476253EBC14D7B
Authority key identifier: 87:8C:83:59:8F:C7:36:5A:A9:09:D6:AE:11:7B:B1:90:7D:51:92:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4yDWY_HNlqpCdauEXuxkH1Rkv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/523290-bd41-42f4-ab50-f9910bb56fcd/1/CQZEr5QzW7SOvzCQAzMaqlqFiB4.roa
Signing time: Sun 01 Jan 2023 09:35:01 +0000
ROA not before: Sun 01 Jan 2023 09:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206995
IP address blocks: 37.140.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:3b:49:c0:20:f1:f0:4a:47:62:53:eb:c1:4d:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878c83598fc7365aa909d6ae117bb1907d5192fd
Validity
Not Before: Jan 1 09:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=090644af94335bb48ebf309003331aaa5a85881e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:bf:ae:fb:cc:79:90:04:3e:0e:d6:2d:e4:5a:
89:1f:01:9b:9f:3a:f4:b4:df:14:e8:38:86:e5:d0:
a3:5d:9c:d1:2c:da:41:72:5e:4f:bb:0b:ff:4c:ad:
9f:eb:75:05:b4:f6:49:1d:d8:96:6e:88:43:27:3f:
64:60:c7:e5:db:34:24:5a:ad:02:92:de:69:ad:8d:
f9:ff:03:cb:dd:cf:b7:93:57:04:5e:00:5b:0c:53:
f6:aa:58:23:b1:47:00:e8:15:e0:df:c6:64:65:20:
18:93:28:3a:c5:2b:70:db:5d:da:48:32:dc:db:b3:
bc:f6:0d:1b:03:1a:ef:c2:9a:64:3b:bc:b4:23:d7:
64:90:cb:2b:68:e3:bd:b6:d2:45:e3:ef:5c:c1:89:
90:09:66:19:5c:e2:54:eb:31:37:5b:7e:9e:1c:ad:
ba:1b:af:50:88:ad:f0:9a:6f:3a:22:db:b4:7c:df:
5d:34:a6:67:df:44:94:66:65:8d:66:d4:f9:0f:08:
d6:ec:34:bd:33:e1:5a:8c:fd:ae:39:55:fb:23:bd:
0f:9f:4c:83:e4:12:ef:93:b9:f8:4d:c3:d0:6e:08:
1b:4f:35:f8:0b:17:1c:82:5e:58:fc:76:2f:e8:96:
4d:75:e1:0a:6e:48:e5:46:70:15:cf:fd:97:eb:7c:
78:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:06:44:AF:94:33:5B:B4:8E:BF:30:90:03:33:1A:AA:5A:85:88:1E
X509v3 Authority Key Identifier:
keyid:87:8C:83:59:8F:C7:36:5A:A9:09:D6:AE:11:7B:B1:90:7D:51:92:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4yDWY_HNlqpCdauEXuxkH1Rkv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/523290-bd41-42f4-ab50-f9910bb56fcd/1/CQZEr5QzW7SOvzCQAzMaqlqFiB4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/523290-bd41-42f4-ab50-f9910bb56fcd/1/h4yDWY_HNlqpCdauEXuxkH1Rkv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.242.0/24
Signature Algorithm: sha256WithRSAEncryption
02:52:e1:ce:33:71:01:28:50:2c:01:36:b3:9a:9e:66:f2:46:
69:9e:f9:d2:8b:8f:12:af:84:ff:cc:aa:19:fc:1d:ba:f1:78:
bd:4f:06:f1:28:2d:72:5b:64:cf:3d:8b:81:af:82:e8:11:54:
0f:99:c3:88:68:c7:c3:e5:79:22:94:f8:fd:a5:84:f7:85:c0:
de:13:42:b5:3c:23:55:e1:51:2d:de:07:b6:89:b5:95:bb:c5:
dc:e0:99:0b:85:31:5c:78:37:6b:c6:0b:1a:93:1a:6c:de:f3:
b3:41:f3:2b:07:9b:06:65:2c:10:18:56:bf:40:6c:ee:94:89:
c2:a9:f1:4d:d9:2f:0e:03:ff:f0:94:d9:4d:cb:3b:4a:c0:7b:
55:b9:f8:9c:9b:c8:8e:6e:ef:0c:55:95:fd:99:48:4a:86:54:
54:ae:f2:22:ad:f0:b4:7f:52:28:07:21:27:d2:c5:d3:fa:20:
b2:15:46:67:9b:8c:de:a1:b8:d3:eb:15:27:37:16:b0:c3:8f:
71:cc:d2:53:97:68:c8:e1:32:cb:f7:8b:9a:8f:9f:f9:72:37:
7b:32:16:24:1b:a3:b2:02:56:74:3a:70:1b:80:67:33:18:de:
1e:f2:9f:1e:61:3f:c1:39:59:02:91:87:f9:b4:00:01:93:c9:
9c:b3:24:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:52 2023 by rpki-client on console-fra.rpki-client.org