Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/3de42d-a77c-451d-8177-13c4ddd4229e/1/iSZ-1lh23Mbp4nighhuDgaKgxr4.roa
File: iSZ-1lh23Mbp4nighhuDgaKgxr4.roa (raw, json)
Hash identifier: QHnvsx3b9Sd5+v5NofJvBJJmo3lVddTBzn229ZSc4uk=
Subject key identifier: 89:26:7E:D6:58:76:DC:C6:E9:E2:78:A0:86:1B:83:81:A2:A0:C6:BE
Certificate issuer: /CN=6581dd2a05392973d28b2479fd5dd09808619d9b
Certificate serial: 01857079A4EF7D6EB131238259C54506E13C
Authority key identifier: 65:81:DD:2A:05:39:29:73:D2:8B:24:79:FD:5D:D0:98:08:61:9D:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZYHdKgU5KXPSiyR5_V3QmAhhnZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/3de42d-a77c-451d-8177-13c4ddd4229e/1/iSZ-1lh23Mbp4nighhuDgaKgxr4.roa
Signing time: Mon 02 Jan 2023 03:14:58 +0000
ROA not before: Mon 02 Jan 2023 03:14:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57878
IP address blocks: 212.46.59.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:79:a4:ef:7d:6e:b1:31:23:82:59:c5:45:06:e1:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6581dd2a05392973d28b2479fd5dd09808619d9b
Validity
Not Before: Jan 2 03:14:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=89267ed65876dcc6e9e278a0861b8381a2a0c6be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9b:02:b1:0f:50:c0:32:cd:f3:b0:44:d4:ec:
20:0a:1b:16:31:8e:bf:ba:9f:be:c5:6b:7e:df:63:
d3:e1:bf:db:b4:c7:65:bf:23:c4:cc:a2:b7:76:77:
5d:6a:9e:62:bf:58:ca:77:18:f7:dd:6d:ee:1f:30:
af:db:06:c0:bc:1f:e4:42:64:1f:61:cc:2c:f6:5d:
88:34:ec:82:b7:75:68:1d:b4:c5:cd:c6:28:e5:10:
47:83:ff:a5:14:e6:ed:ef:27:d1:ce:4a:7d:2d:f1:
e1:9b:59:c8:50:b9:cf:ec:60:73:9f:ea:44:ee:05:
c0:af:37:5f:aa:0a:4c:f0:75:13:a1:8b:d5:73:4a:
5a:b7:52:58:e9:89:e3:e7:c6:29:66:82:5f:a7:08:
ba:b1:c7:be:d4:bb:5b:0f:a8:ca:01:06:b5:92:08:
94:d2:1d:be:96:b0:f5:e1:eb:49:ad:bc:f3:b4:ce:
0f:81:30:88:c4:1e:57:be:34:9e:c6:86:81:38:d6:
d5:b4:28:e6:27:02:c1:e1:28:cb:30:de:37:d8:ee:
6c:1d:d5:82:f5:14:e0:fd:10:37:22:07:db:2f:11:
53:b2:f5:15:4a:d8:48:e4:41:3c:23:02:64:31:e4:
22:c9:7c:36:70:9b:d6:c0:19:e3:9d:a0:a4:8e:08:
bd:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:26:7E:D6:58:76:DC:C6:E9:E2:78:A0:86:1B:83:81:A2:A0:C6:BE
X509v3 Authority Key Identifier:
keyid:65:81:DD:2A:05:39:29:73:D2:8B:24:79:FD:5D:D0:98:08:61:9D:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZYHdKgU5KXPSiyR5_V3QmAhhnZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/3de42d-a77c-451d-8177-13c4ddd4229e/1/iSZ-1lh23Mbp4nighhuDgaKgxr4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/3de42d-a77c-451d-8177-13c4ddd4229e/1/ZYHdKgU5KXPSiyR5_V3QmAhhnZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.46.59.0/24
Signature Algorithm: sha256WithRSAEncryption
46:05:8d:f2:d7:37:6f:bc:ed:1f:36:5b:5f:9e:97:9d:7f:22:
68:9d:06:a6:f6:dd:1e:f0:5a:78:26:6c:5c:17:31:e9:28:46:
f8:6c:7c:b5:f5:ff:a0:5d:68:e9:6d:b9:31:81:e8:a1:92:6a:
cf:6d:44:b4:96:c0:c1:cf:da:6c:19:a6:5b:21:11:79:95:c1:
20:c8:dc:53:77:a7:4f:cb:65:02:0e:33:66:f1:ca:a2:8b:a9:
82:b9:97:ae:2b:7f:7c:65:5b:8d:3c:38:bb:cb:d8:00:23:28:
30:b7:ea:e7:73:d2:50:bd:9f:c5:1a:02:47:b7:4c:3f:6b:ac:
92:a2:ef:3d:cf:41:18:9a:a8:db:e8:1f:03:72:9a:77:bf:5d:
f6:ea:4d:aa:8b:63:49:5a:c2:a5:d6:80:d3:5c:1f:52:09:56:
eb:69:3b:d9:cd:01:85:87:a3:98:42:0d:34:6a:fd:1e:0b:12:
c6:b1:d4:7a:4d:93:fb:f2:b9:1d:0f:94:cf:31:51:24:f4:3a:
b1:7e:1b:ee:d4:f5:a6:f6:d5:90:7a:09:3e:48:ce:95:5d:8b:
e2:73:1a:1d:9e:bf:d1:42:35:c6:67:fb:23:f7:f0:e5:ed:33:
3b:87:0c:57:1b:e5:d3:b0:32:a1:01:5b:b3:7e:97:a5:4b:a8:
9d:19:30:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:59 2024 by rpki-client on console-fra.rpki-client.org