Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/418074-06b8-4ce4-980e-fadb113f6780/1/NY69AXMLXjulqOfP0wOatwdykT8.roa
File: NY69AXMLXjulqOfP0wOatwdykT8.roa (raw, json)
Hash identifier: pIHQAJO1b7ONn+6VdT0UgUhvEho3YJ6E2Racf0gMh6c=
Subject key identifier: 35:8E:BD:01:73:0B:5E:3B:A5:A8:E7:CF:D3:03:9A:B7:07:72:91:3F
Certificate issuer: /CN=de1b9ca1f3f157d7ff537ed34597f7c33707ccb3
Certificate serial: 018570DE67C2863E3158A81D3F7BDED1BD2A
Authority key identifier: DE:1B:9C:A1:F3:F1:57:D7:FF:53:7E:D3:45:97:F7:C3:37:07:CC:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3hucofPxV9f_U37TRZf3wzcHzLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/418074-06b8-4ce4-980e-fadb113f6780/1/NY69AXMLXjulqOfP0wOatwdykT8.roa
Signing time: Mon 02 Jan 2023 05:05:01 +0000
ROA not before: Mon 02 Jan 2023 05:05:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 212.23.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:de:67:c2:86:3e:31:58:a8:1d:3f:7b:de:d1:bd:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de1b9ca1f3f157d7ff537ed34597f7c33707ccb3
Validity
Not Before: Jan 2 05:05:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=358ebd01730b5e3ba5a8e7cfd3039ab70772913f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:82:fa:aa:5a:b4:68:20:33:6d:99:bf:ae:f5:
d0:9c:80:c1:dd:22:da:16:95:b6:be:7b:60:05:33:
f1:97:40:83:a2:af:d5:6c:36:85:9d:a6:a9:5c:03:
c8:bc:37:a8:59:15:a4:43:6d:90:15:68:c9:e6:e2:
69:5a:97:7e:92:93:42:68:4c:95:c9:0c:27:71:2e:
79:23:ac:80:e8:ee:a2:95:ea:1d:14:aa:69:3f:90:
15:71:3c:b7:c9:a4:f1:d9:4f:c5:2f:31:6c:c7:b0:
55:06:d9:d9:44:2e:47:44:74:81:9b:ba:36:26:b0:
56:29:2a:1b:a4:e9:ca:98:46:58:52:88:1a:7f:70:
69:cd:52:e9:8f:48:4d:d7:2a:58:3a:7f:2f:1b:0a:
37:93:69:d2:6a:2f:d0:71:40:40:6c:be:22:dd:f3:
2a:f4:06:12:37:fc:d0:c4:86:3c:56:42:4d:77:e6:
0c:9c:d9:ef:2e:8e:84:fa:a1:32:41:7d:74:9d:76:
33:58:30:bb:b3:13:59:db:eb:ea:81:e5:cd:ef:f2:
61:a5:fe:c0:31:51:f3:c8:7b:87:0a:9c:4d:ef:ec:
0c:fa:82:fc:eb:34:ae:e2:3e:12:dd:df:bd:77:c9:
44:08:72:bc:bc:1e:7b:6c:1e:fe:a4:c6:5f:62:d8:
91:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:8E:BD:01:73:0B:5E:3B:A5:A8:E7:CF:D3:03:9A:B7:07:72:91:3F
X509v3 Authority Key Identifier:
keyid:DE:1B:9C:A1:F3:F1:57:D7:FF:53:7E:D3:45:97:F7:C3:37:07:CC:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3hucofPxV9f_U37TRZf3wzcHzLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/418074-06b8-4ce4-980e-fadb113f6780/1/NY69AXMLXjulqOfP0wOatwdykT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/418074-06b8-4ce4-980e-fadb113f6780/1/3hucofPxV9f_U37TRZf3wzcHzLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.198.0/24
Signature Algorithm: sha256WithRSAEncryption
43:35:41:b6:00:cc:67:58:0c:79:a6:f3:13:23:b7:60:65:b7:
a2:e1:d5:24:56:5e:d5:d1:21:ad:c6:74:d5:15:dc:b8:51:00:
92:40:4d:08:86:02:eb:97:91:58:db:b8:3b:cd:56:bc:be:34:
ed:4d:bc:bd:35:8f:9d:4b:e4:62:ce:82:13:92:12:34:3d:cc:
76:bb:d2:b2:61:be:4a:8e:ca:e6:b4:c6:c8:14:19:2c:51:0f:
77:f5:38:19:fd:ca:55:ba:2f:17:8a:c9:e7:2b:bd:e6:0f:e7:
b9:05:b3:6d:49:a7:26:1c:c3:dd:1b:63:7b:24:20:1c:3b:87:
92:ac:7a:99:1b:fa:5d:72:7e:f0:cc:03:84:27:0a:80:be:aa:
37:05:d8:d1:81:9d:bf:7f:da:42:34:51:62:db:f1:0f:59:00:
46:9f:79:be:af:24:9b:c0:3e:ca:4f:c2:b6:a0:bf:bb:25:66:
2a:5a:5c:2d:c3:ea:d0:08:b3:b0:6e:71:de:c9:d6:d7:98:2f:
5f:f1:63:07:a9:5c:3e:d2:f9:62:5a:85:0e:a8:d0:1d:be:a6:
21:a4:40:73:3f:01:21:c3:fa:01:4c:0f:a6:ae:26:74:e3:f6:
ea:6f:d5:94:44:af:e2:a9:95:e6:a8:ae:09:54:90:ac:a2:84:
50:85:e9:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:19:18 2025 by rpki-client