Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/523290-bd41-42f4-ab50-f9910bb56fcd/1/k8pSHCJN9qzBs_MOcPYhZ5-HGfY.roa
File: k8pSHCJN9qzBs_MOcPYhZ5-HGfY.roa (raw, json)
Hash identifier: aUSk1zSsKzSdY7pDnkiEwBVp+mUlEDrg3xtlfJPORZ4=
Subject key identifier: 93:CA:52:1C:22:4D:F6:AC:C1:B3:F3:0E:70:F6:21:67:9F:87:19:F6
Certificate issuer: /CN=878c83598fc7365aa909d6ae117bb1907d5192fd
Certificate serial: 01856CAF3AFE7085A6D14533B5B354245BD0
Authority key identifier: 87:8C:83:59:8F:C7:36:5A:A9:09:D6:AE:11:7B:B1:90:7D:51:92:FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h4yDWY_HNlqpCdauEXuxkH1Rkv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/523290-bd41-42f4-ab50-f9910bb56fcd/1/k8pSHCJN9qzBs_MOcPYhZ5-HGfY.roa
Signing time: Sun 01 Jan 2023 09:35:01 +0000
ROA not before: Sun 01 Jan 2023 09:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48678
IP address blocks: 37.140.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:af:3a:fe:70:85:a6:d1:45:33:b5:b3:54:24:5b:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=878c83598fc7365aa909d6ae117bb1907d5192fd
Validity
Not Before: Jan 1 09:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=93ca521c224df6acc1b3f30e70f621679f8719f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:1b:37:fd:c7:e4:55:f4:7a:51:19:e5:86:47:
df:80:f7:d1:41:b3:12:52:8a:8b:24:cc:d6:d8:4d:
0a:3e:cc:5e:69:43:14:1d:fa:6c:5c:13:e9:f3:d9:
ca:e5:6a:7e:e1:a0:ff:41:0b:6b:64:82:ce:68:30:
88:1c:91:63:65:bf:df:2b:cb:0a:90:cd:88:f6:d4:
84:85:c8:cd:b0:1e:34:d1:75:38:a8:ec:78:e0:2c:
3a:41:7a:5a:83:e1:b0:b5:e2:92:b7:19:6d:d0:bc:
50:ac:de:72:6c:f4:88:35:29:12:78:17:c7:f3:24:
ad:46:aa:2f:c6:05:eb:03:ca:e7:21:69:47:71:86:
58:51:3b:16:0a:35:76:4c:22:49:84:af:8c:ad:89:
41:ee:93:97:6d:08:f0:33:cf:76:52:30:b4:8f:e0:
aa:b6:29:c2:d3:63:f1:b8:6e:0b:a4:7e:a4:4b:d2:
b0:13:8c:df:3b:5e:a6:e2:83:99:39:c9:2b:c7:d7:
0c:42:d4:5b:58:b0:ce:a8:f9:1d:d1:74:f6:01:f7:
6f:4e:10:ac:cd:69:4a:28:1f:97:7c:11:ea:0b:c2:
a3:8e:c5:18:5e:10:e6:ab:2a:ea:5d:0d:3e:e2:cf:
2f:f4:b5:44:6b:81:f9:56:35:84:ed:fa:42:d9:93:
eb:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:CA:52:1C:22:4D:F6:AC:C1:B3:F3:0E:70:F6:21:67:9F:87:19:F6
X509v3 Authority Key Identifier:
keyid:87:8C:83:59:8F:C7:36:5A:A9:09:D6:AE:11:7B:B1:90:7D:51:92:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h4yDWY_HNlqpCdauEXuxkH1Rkv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/523290-bd41-42f4-ab50-f9910bb56fcd/1/k8pSHCJN9qzBs_MOcPYhZ5-HGfY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/523290-bd41-42f4-ab50-f9910bb56fcd/1/h4yDWY_HNlqpCdauEXuxkH1Rkv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.242.0/24
Signature Algorithm: sha256WithRSAEncryption
16:c0:a3:e0:13:19:8b:f7:f4:af:82:04:b8:3e:55:6b:d3:d5:
62:e6:b7:11:94:8b:50:c9:36:b9:7c:61:d2:73:d0:aa:6e:90:
5f:85:ac:6a:61:3a:bf:84:c2:79:1a:f9:b6:66:24:3a:b3:26:
9a:c9:60:64:03:cb:8a:66:4c:b5:0d:90:f0:42:54:8f:7c:dc:
5b:ad:86:e9:2b:53:16:f0:c8:c7:67:c4:5f:b9:c2:02:6f:ca:
5f:c3:2a:8a:c9:23:04:1c:1a:b6:00:26:5e:21:2f:02:56:53:
4b:50:cb:56:1c:45:64:08:81:89:fc:22:a6:d4:e1:48:b7:f1:
94:03:24:08:69:c0:8f:23:a4:d8:f7:b6:c9:6e:b3:0a:e6:f4:
49:02:1a:88:48:a2:ac:d9:96:14:18:d7:98:1f:85:c6:e7:fb:
b1:2b:9a:6f:a5:30:a4:f4:42:47:a8:13:7b:7a:7e:d8:7e:a4:
cc:82:3d:c3:b6:2d:d9:5c:77:10:9c:68:22:77:78:e5:40:a1:
c2:d2:fa:86:80:35:52:2a:15:a7:dc:96:a9:c5:ce:ea:2c:88:
db:20:98:3c:fc:f1:f4:4d:e8:56:e6:b0:39:ee:3f:d7:0d:5f:
fa:48:9c:f9:42:5a:83:72:c4:19:23:a8:d5:7b:df:9e:cd:d4:
0c:f1:0d:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:52 2023 by rpki-client on console-fra.rpki-client.org