Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/b7392f-8c88-4c38-915e-0cf77c1e8584/1/uglN1FfKxut5ZfQMi90eTw1MmKI.roa
File: uglN1FfKxut5ZfQMi90eTw1MmKI.roa (raw, json)
Hash identifier: 3B7C9jVAkNPJKbOLflZqvQI2eogpzvBG9jo+lrBu1ZU=
Subject key identifier: BA:09:4D:D4:57:CA:C6:EB:79:65:F4:0C:8B:DD:1E:4F:0D:4C:98:A2
Certificate issuer: /CN=9ce4dd86bcfd8b8f506a408051605ec74db6cea0
Certificate serial: 018820867258D0949AE423C4473BBFF9665D
Authority key identifier: 9C:E4:DD:86:BC:FD:8B:8F:50:6A:40:80:51:60:5E:C7:4D:B6:CE:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nOTdhrz9i49QakCAUWBex022zqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/b7392f-8c88-4c38-915e-0cf77c1e8584/1/uglN1FfKxut5ZfQMi90eTw1MmKI.roa
Signing time: Mon 15 May 2023 17:47:42 +0000
ROA not before: Mon 15 May 2023 17:47:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 212.52.29.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:72:58:d0:94:9a:e4:23:c4:47:3b:bf:f9:66:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9ce4dd86bcfd8b8f506a408051605ec74db6cea0
Validity
Not Before: May 15 17:47:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ba094dd457cac6eb7965f40c8bdd1e4f0d4c98a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:9c:97:16:28:af:7f:2e:79:34:a3:f0:9a:68:
4a:24:7d:3e:74:84:68:34:28:a6:ae:bd:84:50:76:
f5:14:0d:40:01:c3:3d:a8:b2:a9:9d:ab:6d:75:28:
dd:f7:0b:1a:26:e1:c5:5a:f9:7a:88:b2:28:4c:99:
cc:09:f5:dc:f3:3a:b7:47:3b:2f:a2:50:b3:be:40:
74:6e:01:c2:69:68:25:f7:15:08:9e:56:7e:f2:85:
f8:d9:b3:14:86:af:c2:f4:52:71:46:f6:ac:04:e0:
b1:44:47:72:b1:04:9f:53:67:c0:db:49:f5:42:e5:
4c:17:3e:d9:91:24:25:c5:60:33:8e:12:08:8f:80:
48:cb:e4:71:5a:ba:a8:75:a9:86:da:93:39:40:5f:
9c:b3:b4:10:a7:4c:0f:c4:32:58:54:f5:83:de:a1:
9c:44:cb:dd:a7:d6:2d:ae:f9:e5:b7:f9:cd:2c:d4:
1b:d8:d2:da:9e:f1:73:a5:4f:bf:9b:05:4f:8f:98:
a6:34:a7:a9:88:36:e3:70:48:69:14:ac:4e:b2:27:
5c:59:90:a7:b8:19:71:89:d0:ed:c8:ae:b5:da:94:
5f:4d:e9:4c:2d:82:13:68:62:84:6e:ec:6c:21:b0:
4b:92:25:8d:e7:10:a2:b2:24:a6:3a:fa:f5:70:58:
92:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:09:4D:D4:57:CA:C6:EB:79:65:F4:0C:8B:DD:1E:4F:0D:4C:98:A2
X509v3 Authority Key Identifier:
keyid:9C:E4:DD:86:BC:FD:8B:8F:50:6A:40:80:51:60:5E:C7:4D:B6:CE:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nOTdhrz9i49QakCAUWBex022zqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/b7392f-8c88-4c38-915e-0cf77c1e8584/1/uglN1FfKxut5ZfQMi90eTw1MmKI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/b7392f-8c88-4c38-915e-0cf77c1e8584/1/nOTdhrz9i49QakCAUWBex022zqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.29.0/24
Signature Algorithm: sha256WithRSAEncryption
32:97:93:f4:0b:a6:66:0b:ff:27:59:8f:ab:76:32:f8:e3:7c:
26:82:76:c2:2b:1a:ef:2b:73:63:6e:7e:a7:64:a5:00:54:83:
f2:ea:eb:9a:58:cd:fa:0a:81:9e:c6:ce:3f:28:e2:2e:db:19:
db:df:fd:d3:20:90:88:b4:eb:72:6d:1f:91:14:bd:6f:53:f0:
77:69:0e:b5:6c:41:5d:f0:68:0d:d4:a6:e6:85:96:9c:6d:af:
4c:7f:19:7e:5c:33:32:44:44:ec:32:f3:eb:5e:1f:c9:d2:75:
53:7b:b2:99:4e:00:8f:a8:04:62:8e:4f:5f:fc:92:c6:4a:2f:
f1:82:7b:c4:83:7a:4e:84:0a:86:96:1a:7c:06:de:6d:0c:67:
8d:50:72:fb:b1:0a:06:fe:4b:58:a6:ed:4f:df:2c:31:69:06:
15:5a:16:09:ec:c8:87:b5:88:d2:a9:0a:03:6a:11:4a:38:77:
06:4d:1b:7e:dd:a4:27:6f:97:77:49:68:d6:fa:aa:19:45:cb:
49:5c:ea:73:4f:f7:e3:64:1b:32:f8:81:14:f6:ca:d1:18:ec:
7f:6a:bb:35:54:eb:27:db:28:e3:88:bc:6b:64:10:ec:2f:db:
b2:2b:cf:af:fc:ef:3e:42:16:5a:9f:98:fb:68:a8:e5:e0:14:
ad:f2:57:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 15 14:53:17 2023 by rpki-client on console-ams.rpki-client.org