Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/2da3de-f40c-49bd-af52-a9ae251e2fc5/1/3dIXYyHnkGUYuD-y5PeKJ27JdNE.roa
File: 3dIXYyHnkGUYuD-y5PeKJ27JdNE.roa (raw, json)
Hash identifier: fQ2EC2uGlpomJu/RXbaEe4+C0rnwOmdyduLP2uDz8Rg=
Subject key identifier: DD:D2:17:63:21:E7:90:65:18:B8:3F:B2:E4:F7:8A:27:6E:C9:74:D1
Certificate issuer: /CN=4235d69d8d896faec6e7c2171d30dd09b501a03f
Certificate serial: 018CAAAC273692B17ACD3EA6DD3774B9CD6F
Authority key identifier: 42:35:D6:9D:8D:89:6F:AE:C6:E7:C2:17:1D:30:DD:09:B5:01:A0:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QjXWnY2Jb67G58IXHTDdCbUBoD8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/2da3de-f40c-49bd-af52-a9ae251e2fc5/1/3dIXYyHnkGUYuD-y5PeKJ27JdNE.roa
Signing time: Wed 27 Dec 2023 09:47:38 +0000
ROA not before: Wed 27 Dec 2023 09:47:38 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62388
IP address blocks: 188.212.36.0/24 maxlen: 24
2a06:7900::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:aa:ac:27:36:92:b1:7a:cd:3e:a6:dd:37:74:b9:cd:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4235d69d8d896faec6e7c2171d30dd09b501a03f
Validity
Not Before: Dec 27 09:47:38 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ddd2176321e7906518b83fb2e4f78a276ec974d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:05:bc:92:1a:87:c5:5e:34:c1:33:96:48:a3:
c6:96:e0:5a:0d:7d:a9:49:e9:a7:53:67:b8:af:93:
a0:b9:a8:9e:ab:0e:88:ad:1f:25:72:1c:5d:1a:da:
0f:b9:32:0f:58:86:f5:eb:5a:0c:24:33:43:ab:ce:
90:71:83:0d:a7:db:5f:32:f3:16:47:4b:6c:65:06:
a3:1b:5e:42:e1:a6:85:99:13:df:12:96:d5:fc:64:
2f:0c:1d:f6:af:f9:b6:f9:7f:67:e5:71:7f:bd:71:
fd:5a:97:ae:72:f8:4c:fd:5a:6f:aa:66:f2:aa:2f:
98:96:80:9e:29:bd:98:c8:7e:b6:91:f1:19:46:eb:
45:4c:5d:8c:2b:d4:8a:26:1d:1f:7f:ab:75:70:09:
ec:2a:cc:f5:ed:6f:7d:5d:b2:9c:cf:2b:ea:c1:62:
f9:ba:18:eb:39:6f:b1:16:42:4a:ea:da:93:a0:b8:
60:1c:ed:05:70:1c:60:04:ad:9f:7d:d1:9b:ba:92:
55:11:a8:4b:e7:59:3b:d1:ea:2e:b7:e1:e6:39:c5:
10:47:11:de:34:bf:c1:ea:04:4a:b9:53:23:4d:ac:
74:8d:35:79:44:0a:4e:1c:02:2e:6f:c4:cc:e2:65:
22:45:40:3c:73:ff:72:35:a5:90:e0:52:21:6b:f2:
8e:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:D2:17:63:21:E7:90:65:18:B8:3F:B2:E4:F7:8A:27:6E:C9:74:D1
X509v3 Authority Key Identifier:
keyid:42:35:D6:9D:8D:89:6F:AE:C6:E7:C2:17:1D:30:DD:09:B5:01:A0:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QjXWnY2Jb67G58IXHTDdCbUBoD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/2da3de-f40c-49bd-af52-a9ae251e2fc5/1/3dIXYyHnkGUYuD-y5PeKJ27JdNE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/2da3de-f40c-49bd-af52-a9ae251e2fc5/1/QjXWnY2Jb67G58IXHTDdCbUBoD8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.212.36.0/24
IPv6:
2a06:7900::/29
Signature Algorithm: sha256WithRSAEncryption
59:09:f4:da:df:1f:34:10:ed:4b:e1:6d:69:8f:84:06:9e:05:
5a:d0:d9:16:6f:f6:06:05:53:be:af:04:45:82:96:38:17:c1:
0b:ad:c7:72:ca:6c:3f:ac:ce:cc:35:4d:7e:0d:eb:5a:02:23:
7e:2e:55:77:6e:f2:f9:62:6f:47:09:bc:59:30:70:84:f4:4f:
1a:df:6c:23:49:40:5f:e3:0f:0f:d2:e0:4c:f8:4b:77:26:df:
bb:f7:ae:fe:a1:ff:d7:ca:58:fd:86:f1:43:ce:53:3b:38:47:
b1:cc:f0:bd:af:06:4c:7c:29:31:9d:1a:a9:7e:ef:37:bd:8a:
85:11:d8:b8:cc:ff:ed:24:f8:fb:cd:9b:2b:80:38:45:14:82:
96:cb:a4:4b:72:06:96:15:1d:9e:45:f9:93:13:bf:91:c9:59:
29:21:bf:e6:80:80:c2:2d:ce:34:f8:95:5f:83:d4:e7:32:1e:
d0:1a:56:c1:7d:b4:41:95:8e:fa:54:a8:0c:9e:e3:0b:41:39:
94:ef:09:7a:ed:c3:30:ac:60:bb:16:51:75:34:55:7a:ce:bc:
f1:36:da:6a:1d:4b:20:dd:79:8c:90:8f:70:3e:19:43:a6:96:
98:70:ac:4a:e0:83:44:41:4a:3e:0e:69:f6:f8:06:e2:73:c0:
34:1a:95:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:03:18 2024 by rpki-client on console-ams.rpki-client.org