Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/5c2c95-81d2-419f-a0d8-78552e8490d7/1/cyD2EoOe5cBUhj-hpdqP5vBhJB0.roa
File: cyD2EoOe5cBUhj-hpdqP5vBhJB0.roa (raw, json)
Hash identifier: ubhUdDpeX27skxuuSpgnVqrZirinfHLPq0WV5ktkOg0=
Subject key identifier: 73:20:F6:12:83:9E:E5:C0:54:86:3F:A1:A5:DA:8F:E6:F0:61:24:1D
Certificate issuer: /CN=02f3c0a781ca9c100499ea1445bc9dda09650a9c
Certificate serial: 01856DC19A409B9D722E77CB6B64FBC5F805
Authority key identifier: 02:F3:C0:A7:81:CA:9C:10:04:99:EA:14:45:BC:9D:DA:09:65:0A:9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AvPAp4HKnBAEmeoURbyd2gllCpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/5c2c95-81d2-419f-a0d8-78552e8490d7/1/cyD2EoOe5cBUhj-hpdqP5vBhJB0.roa
Signing time: Sun 01 Jan 2023 14:34:42 +0000
ROA not before: Sun 01 Jan 2023 14:34:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 37.72.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:9a:40:9b:9d:72:2e:77:cb:6b:64:fb:c5:f8:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=02f3c0a781ca9c100499ea1445bc9dda09650a9c
Validity
Not Before: Jan 1 14:34:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7320f612839ee5c054863fa1a5da8fe6f061241d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:fb:da:49:17:d7:ac:35:09:0f:48:f1:aa:26:
9e:07:83:04:e8:d3:f3:00:53:a2:58:d0:08:fd:ca:
ef:31:e8:4c:00:62:bc:b2:d0:4e:ee:60:34:5c:13:
e5:9b:c9:23:d9:6c:99:ca:39:d5:cb:b2:f4:7a:6e:
a6:08:7a:ad:40:fb:3b:c7:9a:c5:d4:35:4b:33:29:
01:70:d1:4a:9d:b3:20:a9:ec:c6:12:17:72:b3:c2:
36:fb:bb:ef:8d:2d:ac:f7:59:06:6a:f6:ea:06:0e:
5d:f3:47:b6:e7:31:aa:67:9a:ea:3d:e2:06:2e:f7:
02:55:a7:06:5c:6e:95:e1:ed:eb:68:cb:a0:ff:bf:
20:0e:70:f0:0e:76:9e:2e:79:02:f0:ba:98:8a:30:
2c:ba:d7:01:7b:97:5f:b2:2b:4d:62:c5:58:8b:04:
ec:cf:aa:18:d4:5d:ed:f5:94:a4:de:05:28:c2:fb:
bb:27:41:fd:b9:53:18:3f:a4:f3:63:0c:1e:3a:03:
56:9e:23:49:d5:38:12:67:ac:da:49:8c:0e:ff:8e:
00:18:91:7c:0d:cb:e4:1f:71:76:3c:50:6a:08:55:
c6:53:87:4c:20:45:52:c0:ad:4f:a2:dc:8b:bb:d7:
0e:4f:3e:a0:f2:66:74:26:f8:03:12:cc:a3:b9:ac:
36:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:20:F6:12:83:9E:E5:C0:54:86:3F:A1:A5:DA:8F:E6:F0:61:24:1D
X509v3 Authority Key Identifier:
keyid:02:F3:C0:A7:81:CA:9C:10:04:99:EA:14:45:BC:9D:DA:09:65:0A:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AvPAp4HKnBAEmeoURbyd2gllCpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5c2c95-81d2-419f-a0d8-78552e8490d7/1/cyD2EoOe5cBUhj-hpdqP5vBhJB0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/5c2c95-81d2-419f-a0d8-78552e8490d7/1/AvPAp4HKnBAEmeoURbyd2gllCpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.128.0/24
Signature Algorithm: sha256WithRSAEncryption
33:70:7b:30:95:88:4c:2c:5c:99:5d:f3:fd:f8:b4:2f:36:01:
c8:01:bf:8e:1a:c1:de:02:d4:86:8a:b1:05:93:b7:26:ee:bd:
3d:92:66:eb:77:28:0a:fa:a1:9c:51:7f:d1:40:9d:3b:78:4e:
08:87:a1:4a:97:05:89:00:dc:1e:21:b0:3e:2c:40:de:71:c0:
af:51:4c:9d:24:97:a8:78:75:0c:84:32:68:74:be:f0:f7:64:
14:fd:a3:e9:f9:10:04:82:dd:3b:e4:3c:10:9c:fa:17:ca:ca:
83:cf:ed:2d:ae:f3:4d:ce:c7:9b:7c:c5:c7:21:c7:ef:00:03:
51:76:33:ce:ab:f0:ca:3c:8a:b0:5f:19:40:48:46:16:24:c0:
81:3a:93:02:29:e8:1d:1e:af:b5:0a:92:d8:a3:88:6c:18:22:
2e:f2:ec:c7:2a:37:30:89:d4:df:5a:64:0d:b0:1a:bf:c6:a9:
e3:ff:6e:75:d9:c8:2d:54:34:4c:7e:bc:d4:f3:69:2a:99:df:
66:47:ad:e0:4c:0c:fe:83:94:5b:7d:ac:25:ed:57:89:c2:9d:
33:8e:9f:2a:7e:62:26:41:0f:1a:87:67:1d:c6:09:ae:af:d0:
cd:8f:ee:6c:7f:c6:39:7c:eb:87:d2:e5:13:77:71:bf:06:e3:
66:14:2d:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 9 12:46:33 2023 by rpki-client on console-fra.rpki-client.org