Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/246d61-ab75-4b19-aec2-a75abc2ab7e7/1/gMS5pIVbz750Oh4OVAJT_iWAkCg.roa
File: gMS5pIVbz750Oh4OVAJT_iWAkCg.roa (raw, json)
Hash identifier: +BUw4L5HcZlEiKRrkU1rlip7q5X1mrhjeRFWcU+BcJE=
Subject key identifier: 80:C4:B9:A4:85:5B:CF:BE:74:3A:1E:0E:54:02:53:FE:25:80:90:28
Certificate issuer: /CN=733bda0008dfb5a2eb4e2a56902448fed940d59f
Certificate serial: 023791
Authority key identifier: 73:3B:DA:00:08:DF:B5:A2:EB:4E:2A:56:90:24:48:FE:D9:40:D5:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czvaAAjftaLrTipWkCRI_tlA1Z8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/246d61-ab75-4b19-aec2-a75abc2ab7e7/1/gMS5pIVbz750Oh4OVAJT_iWAkCg.roa
Signing time: Mon 28 Feb 2022 18:34:34 +0000
ROA not before: Mon 28 Feb 2022 18:34:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 212.46.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145297 (0x23791)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=733bda0008dfb5a2eb4e2a56902448fed940d59f
Validity
Not Before: Feb 28 18:34:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80c4b9a4855bcfbe743a1e0e540253fe25809028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:19:ce:ad:75:4e:db:99:6f:6c:2f:9c:29:73:
b7:83:60:d9:0d:c1:b1:b2:6a:84:fb:68:d3:11:c0:
0d:d5:d7:54:22:51:3d:53:51:67:71:c8:ab:0e:97:
ac:cc:15:51:35:fc:7c:83:a2:e3:5a:c9:af:4d:fb:
e6:26:cc:8f:c2:6b:57:e7:cf:84:9d:06:df:62:c1:
2f:a6:8c:a4:d2:94:a3:95:86:23:d7:8a:ea:15:30:
53:4a:a5:a0:bf:4e:2c:6f:92:89:40:50:aa:db:71:
e6:a4:d4:07:fd:29:79:a2:60:09:6b:83:e6:b5:06:
61:1a:2a:ff:b9:5f:a6:1c:e1:d4:b7:c1:6e:06:df:
8c:84:f0:a8:b9:50:2a:95:75:c3:3e:12:51:7f:a4:
26:73:d2:8c:0b:57:2a:bb:08:b5:d4:b9:1f:c7:3d:
e6:1e:fc:e0:4e:a4:13:2e:5f:4a:ee:78:7e:f5:cd:
5c:06:44:07:28:87:38:d1:53:a6:41:93:d7:7d:0a:
33:f1:10:33:59:02:74:a6:7e:2b:e2:15:70:3e:9c:
ba:8c:15:d6:c7:6c:51:1a:9f:95:76:07:c6:c7:96:
bb:b7:2f:b6:bd:0a:3e:40:3f:4a:06:d9:35:56:e9:
92:b1:16:90:cc:02:94:c5:0e:dd:06:c6:91:0a:3e:
7d:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:C4:B9:A4:85:5B:CF:BE:74:3A:1E:0E:54:02:53:FE:25:80:90:28
X509v3 Authority Key Identifier:
keyid:73:3B:DA:00:08:DF:B5:A2:EB:4E:2A:56:90:24:48:FE:D9:40:D5:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czvaAAjftaLrTipWkCRI_tlA1Z8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/246d61-ab75-4b19-aec2-a75abc2ab7e7/1/gMS5pIVbz750Oh4OVAJT_iWAkCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/246d61-ab75-4b19-aec2-a75abc2ab7e7/1/czvaAAjftaLrTipWkCRI_tlA1Z8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.33.0/24
Signature Algorithm: sha256WithRSAEncryption
7f:9b:62:20:ed:7a:c8:4a:16:b6:0b:b3:aa:ad:9f:13:26:52:
0a:ad:81:5e:2d:d0:c7:44:c2:d5:01:81:c2:43:5a:73:d9:9a:
55:1d:2f:1d:5a:81:a3:5c:e6:c9:36:d8:8a:48:73:0d:bc:61:
f1:9e:c7:b3:e1:42:d1:52:c0:53:f7:ec:34:22:0c:0e:a5:71:
44:9e:79:e1:29:03:83:94:9b:95:09:53:a5:0f:b4:cc:a2:00:
88:59:f2:91:e9:95:14:5e:86:99:ef:58:2d:a5:56:9f:fe:a5:
c8:e5:48:97:03:95:9f:7a:31:c2:24:f4:22:42:c9:04:72:31:
27:8f:29:3b:06:df:8a:cd:15:07:33:ed:5e:47:44:50:60:e0:
e7:e9:49:11:a3:ac:8b:36:13:98:5a:25:a8:f9:f5:50:d8:6d:
a1:84:16:32:ee:cf:fa:4e:8a:a9:96:c1:b6:54:f9:56:45:ef:
1f:ec:6a:5c:61:7c:6f:33:9b:35:35:5a:d7:f4:1d:3e:f2:b0:
61:bb:c3:d1:74:16:c7:51:b5:04:b5:46:be:59:da:7f:25:53:
96:42:74:50:8f:9a:85:b5:0d:d2:5a:42:5b:d2:cf:d0:db:f6:
56:e9:b8:d4:1b:b3:1e:5a:20:5f:fa:d3:c9:cc:49:08:93:6a:
a6:f4:90:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:53:26 2025 by rpki-client