Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/01fa18-ab6a-4899-b475-92a3661ec26d/1/OogXWApNMDf6nZrI6FLE4ic0H4Q.roa
File: OogXWApNMDf6nZrI6FLE4ic0H4Q.roa (raw, json)
Hash identifier: 6f2dP2YVcsK3WIcgIQIRa8xduh8gJEDJwyCdHI4+/T0=
Subject key identifier: 3A:88:17:58:0A:4D:30:37:FA:9D:9A:C8:E8:52:C4:E2:27:34:1F:84
Certificate issuer: /CN=02f81c37e9ed24d0b20e94c18690e88ae4b311ca
Certificate serial: FE0DCC
Authority key identifier: 02:F8:1C:37:E9:ED:24:D0:B2:0E:94:C1:86:90:E8:8A:E4:B3:11:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvgcN-ntJNCyDpTBhpDoiuSzEco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/01fa18-ab6a-4899-b475-92a3661ec26d/1/OogXWApNMDf6nZrI6FLE4ic0H4Q.roa
Signing time: Tue 05 Apr 2022 09:02:46 +0000
ROA not before: Tue 05 Apr 2022 09:02:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7155
IP address blocks: 37.203.192.0/21 maxlen: 21
37.19.96.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16649676 (0xfe0dcc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02f81c37e9ed24d0b20e94c18690e88ae4b311ca
Validity
Not Before: Apr 5 09:02:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a8817580a4d3037fa9d9ac8e852c4e227341f84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e1:a1:9a:63:12:9d:3d:69:cb:38:ad:7f:85:
8e:eb:b7:cd:94:e4:44:c9:00:3e:04:ee:93:6d:03:
9f:12:45:de:04:ba:2c:a9:fc:e5:c3:df:4c:51:84:
0d:74:c3:3d:d0:71:93:4a:a8:e9:62:92:30:99:35:
f6:3d:56:5b:f7:36:38:4d:c6:f8:0f:48:91:03:ac:
9c:5c:b5:c2:f6:ea:0d:24:46:48:f1:72:98:8f:f9:
03:e7:d4:b3:4a:33:c6:0f:3d:26:f0:07:e6:8b:9f:
6f:09:3b:d2:a6:a7:ad:5f:b2:d4:b1:ca:3d:fc:82:
dd:d7:58:5e:29:72:70:d7:05:09:68:f8:fc:42:86:
f5:52:35:b4:44:a1:72:60:ba:79:dc:c6:7f:78:5f:
29:6e:21:7a:30:66:b4:47:17:24:7e:f0:7a:f5:99:
ee:ca:b6:1a:ad:14:9e:79:f4:c2:63:57:36:00:05:
ea:3f:24:9d:27:59:17:d4:fc:c8:fe:b6:08:1c:da:
dd:ff:58:39:80:69:d7:72:70:33:7d:8a:f4:96:4c:
bc:c1:f3:e2:41:e0:21:75:14:db:40:66:c0:15:a8:
c3:d9:2c:5f:96:57:12:6a:a8:0b:ec:d0:30:b6:1e:
41:5c:ea:59:15:41:ee:87:5c:ce:fe:a9:1b:2f:3b:
7a:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:88:17:58:0A:4D:30:37:FA:9D:9A:C8:E8:52:C4:E2:27:34:1F:84
X509v3 Authority Key Identifier:
keyid:02:F8:1C:37:E9:ED:24:D0:B2:0E:94:C1:86:90:E8:8A:E4:B3:11:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvgcN-ntJNCyDpTBhpDoiuSzEco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/01fa18-ab6a-4899-b475-92a3661ec26d/1/OogXWApNMDf6nZrI6FLE4ic0H4Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/01fa18-ab6a-4899-b475-92a3661ec26d/1/AvgcN-ntJNCyDpTBhpDoiuSzEco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.19.96.0/21
37.203.192.0/21
Signature Algorithm: sha256WithRSAEncryption
58:cd:66:79:cb:ba:64:35:32:5e:20:3f:d0:fa:71:0f:6b:e1:
b2:3c:14:b1:83:80:2a:72:28:e9:36:9e:f1:4d:af:c8:af:af:
cd:03:5e:c5:56:d7:9c:f5:54:e7:af:9a:92:38:7d:94:80:e3:
3d:2a:c2:ac:a7:36:a0:f1:67:5a:a8:49:a8:9a:0f:4f:6c:15:
41:68:cf:c9:da:9b:1d:76:fd:f1:56:f9:fe:18:c8:62:e2:82:
a2:85:00:1e:44:3c:94:1b:2b:d0:a4:80:6a:28:ec:d4:ae:dc:
65:c4:02:40:5e:c8:e3:e5:1b:63:44:a6:8b:10:21:a2:7f:52:
06:f6:83:27:0c:32:54:6a:50:41:1a:4b:5c:75:d7:24:42:34:
f1:7b:be:a7:f6:c2:78:cf:17:34:f5:38:36:c8:ff:3f:23:1f:
27:2c:b6:ec:9f:6d:6a:70:7c:e2:f0:c9:85:55:48:94:24:ad:
4f:a9:66:a2:e7:0d:06:d9:0e:6e:a1:17:cb:60:e0:fa:51:4b:
9e:ac:af:ec:c6:e1:d4:b3:73:9f:0b:aa:09:f2:b9:63:00:30:
4e:15:ac:20:e2:fc:5f:68:7e:e1:4e:e0:54:bc:c0:41:fe:91:
c5:07:31:23:fa:5f:79:fb:f1:61:a1:2f:ce:08:c5:17:26:8a:
2e:d5:fe:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:51 2024 by rpki-client on console-ams.rpki-client.org