Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/d287ec-09ab-40da-8e67-4fe80d1c4349/1/KMrq40Ob8o5J-dfdW04IBZ8QQFc.roa
File: KMrq40Ob8o5J-dfdW04IBZ8QQFc.roa (raw, json)
Hash identifier: X7+ia+c0zHrcAEGXDcElvdLCqOoDNgxtGw85OOve+rw=
Subject key identifier: 28:CA:EA:E3:43:9B:F2:8E:49:F9:D7:DD:5B:4E:08:05:9F:10:40:57
Certificate issuer: /CN=a5c66ed880e4e28e8a6e4a1b5f9e092223502bb6
Certificate serial: 01856FF950205E7C79A3FB181B610C1C42F4
Authority key identifier: A5:C6:6E:D8:80:E4:E2:8E:8A:6E:4A:1B:5F:9E:09:22:23:50:2B:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcZu2IDk4o6KbkobX54JIiNQK7Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/d287ec-09ab-40da-8e67-4fe80d1c4349/1/KMrq40Ob8o5J-dfdW04IBZ8QQFc.roa
Signing time: Mon 02 Jan 2023 00:54:47 +0000
ROA not before: Mon 02 Jan 2023 00:54:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 212.23.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:f9:50:20:5e:7c:79:a3:fb:18:1b:61:0c:1c:42:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5c66ed880e4e28e8a6e4a1b5f9e092223502bb6
Validity
Not Before: Jan 2 00:54:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=28caeae3439bf28e49f9d7dd5b4e08059f104057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:89:03:7e:dd:b9:f5:40:43:13:ad:18:8d:d7:
86:c5:9f:09:5e:bc:99:ea:b8:2d:b5:e1:2c:80:4b:
e3:78:b9:af:cd:56:71:21:e7:65:02:6f:02:74:26:
9c:74:ea:11:9a:cc:db:b2:de:1d:ea:56:d4:47:09:
3b:24:d0:6a:fd:94:f6:94:11:bd:3f:bb:ae:fc:2e:
5b:68:58:14:41:aa:e8:00:66:c1:6d:a9:fd:07:3e:
ee:cb:34:b1:aa:75:1c:3a:18:01:44:21:63:d8:88:
7a:61:96:e1:bb:ec:d5:9d:c0:6d:5c:61:77:1c:46:
8f:89:c4:ef:92:20:6c:40:ee:c9:65:39:8f:99:13:
d6:15:91:35:7b:8e:c4:6f:e0:5f:fa:89:9d:70:02:
f8:1d:07:6b:b9:02:0e:93:c0:9e:9a:51:a9:55:2f:
9e:fa:48:11:8a:61:25:a3:87:1c:7d:e8:09:7d:e7:
13:98:75:ef:df:48:a2:3e:50:fc:55:8b:4a:ff:70:
9a:b0:ea:83:7d:e1:2d:d9:0e:aa:42:83:ec:3a:ef:
0a:dd:c5:6f:da:e1:50:da:5c:00:fe:da:b9:cd:e1:
39:26:44:df:34:54:04:9e:f0:79:4d:00:c2:83:34:
2d:81:45:17:ca:0c:94:f7:ed:64:ef:ac:2c:a1:04:
ce:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:CA:EA:E3:43:9B:F2:8E:49:F9:D7:DD:5B:4E:08:05:9F:10:40:57
X509v3 Authority Key Identifier:
keyid:A5:C6:6E:D8:80:E4:E2:8E:8A:6E:4A:1B:5F:9E:09:22:23:50:2B:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcZu2IDk4o6KbkobX54JIiNQK7Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/d287ec-09ab-40da-8e67-4fe80d1c4349/1/KMrq40Ob8o5J-dfdW04IBZ8QQFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/d287ec-09ab-40da-8e67-4fe80d1c4349/1/pcZu2IDk4o6KbkobX54JIiNQK7Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.212.0/24
Signature Algorithm: sha256WithRSAEncryption
11:f7:89:ca:a8:90:22:11:43:55:94:ae:5c:cf:67:f5:00:57:
71:7d:4a:59:b4:87:1b:dd:e4:45:12:41:9b:39:18:92:4e:89:
80:4d:93:ff:2c:5e:dd:15:2a:a7:84:15:da:d5:a0:8c:4c:7d:
13:08:22:57:7d:9c:3d:fc:56:34:1b:ea:0f:19:d2:d4:19:63:
e0:63:a5:95:72:63:98:f9:a9:56:43:ca:28:e8:be:16:5d:d6:
da:7d:22:ae:dc:8b:06:66:4e:21:64:7b:a3:a1:56:f0:bf:b7:
c2:15:05:2f:15:02:d2:49:b4:d1:8f:18:bf:1b:a3:b8:fb:0b:
e3:5c:b2:d1:e0:47:b4:2b:59:6c:f9:b9:73:ff:ba:ec:d2:b3:
81:9c:09:fc:22:f1:df:45:da:0e:3d:21:ec:11:ac:67:0e:80:
62:60:ee:85:2a:41:11:4e:ab:09:61:14:e2:24:1c:fe:c5:8c:
b6:28:0d:3b:b9:e2:19:4a:80:fa:b2:6a:21:29:6a:bb:3b:74:
6e:e7:97:76:48:e2:fd:d7:f6:3c:ba:da:c9:60:c0:53:15:a2:
ec:e0:60:58:95:2c:db:a0:77:aa:63:2c:4b:75:1a:2c:2d:99:
69:3f:ba:15:9b:d7:01:dc:9b:d5:95:18:e1:35:eb:03:66:92:
e4:6b:3d:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:10 2024 by rpki-client on console-fra.rpki-client.org