Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/AOg0wHbnUyuu-kxPUv7JWSjD91U.roa
File: AOg0wHbnUyuu-kxPUv7JWSjD91U.roa (raw, json)
Hash identifier: G/ug+EtXs5tvJjiZNOw7+SYBYKb7USlFVAp8kK/WV4A=
Subject key identifier: 00:E8:34:C0:76:E7:53:2B:AE:FA:4C:4F:52:FE:C9:59:28:C3:F7:55
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 04339D7B
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/AOg0wHbnUyuu-kxPUv7JWSjD91U.roa
Signing time: Sat 01 Jan 2022 00:50:42 +0000
ROA not before: Sat 01 Jan 2022 00:50:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25369
IP address blocks: 85.237.196.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70491515 (0x4339d7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 1 00:50:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00e834c076e7532baefa4c4f52fec95928c3f755
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:07:0a:c5:79:87:ba:e1:6b:d3:09:b0:c0:b5:
30:69:a9:21:9c:e6:07:44:60:f3:46:ba:e7:af:b3:
f8:d5:94:93:ed:87:85:10:c9:42:32:5b:d4:5e:3a:
3e:46:3b:a0:be:39:29:a3:58:30:3a:86:a5:d4:89:
7f:95:2c:cd:aa:63:87:32:85:e2:dd:60:c5:dd:36:
f4:6f:56:36:7f:53:46:f0:b3:4b:f6:17:79:cd:40:
67:72:fc:ee:e3:bf:62:b6:4b:a8:e2:52:08:e7:b1:
95:36:1d:13:13:71:62:49:16:00:0a:2a:2e:b4:cf:
52:0e:98:b1:c9:63:1a:48:5c:5f:80:a5:10:d6:ad:
6f:a8:e2:3a:76:d3:f9:bc:c5:e0:1e:0d:91:49:34:
96:4c:09:16:5a:ae:6a:55:6b:3b:2a:e2:4a:bc:87:
cf:b5:4a:c5:89:3f:5d:36:75:a7:4e:f6:9a:5e:b2:
9d:2c:09:3b:eb:ab:00:7a:65:6e:aa:f2:4d:cb:e8:
c5:95:1c:40:06:8d:c8:2a:e8:c8:fd:5d:06:f8:e2:
5f:c9:dc:0d:57:a9:39:5b:0e:4c:7c:8b:68:a4:2b:
6c:cd:b2:83:6c:77:8c:5b:c3:b8:01:22:0b:70:68:
7e:19:71:94:34:ef:16:83:5a:8d:77:62:66:60:5c:
c5:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E8:34:C0:76:E7:53:2B:AE:FA:4C:4F:52:FE:C9:59:28:C3:F7:55
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/AOg0wHbnUyuu-kxPUv7JWSjD91U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.196.0/23
Signature Algorithm: sha256WithRSAEncryption
95:88:24:6a:3d:0e:4f:15:18:67:6e:dc:5e:68:3b:1d:09:d9:
2c:5b:dc:b2:a8:b9:63:4a:bf:c2:31:d6:f8:e6:94:12:42:91:
79:13:53:14:c6:bf:fc:06:1e:99:7e:77:a2:06:86:5a:6c:ca:
ff:00:bf:84:fd:9e:d8:be:b2:1c:cd:fc:c9:e0:87:c8:93:58:
21:51:3c:85:41:9b:51:63:1e:11:e2:a7:68:3b:26:4c:c2:44:
d2:ac:28:02:78:fa:cd:4f:90:74:71:55:a4:3d:c2:11:ec:67:
2e:b0:22:b7:01:ea:e1:55:10:94:8d:13:27:67:5d:60:bb:d8:
6a:5c:bd:82:23:56:7b:ae:d6:7b:bd:30:df:09:22:9f:09:c8:
95:07:95:2d:c7:69:a4:ae:a5:54:ba:af:cd:f5:4d:3a:98:64:
3a:e7:53:b3:f0:77:7e:37:ea:d2:c5:70:15:08:a6:3d:3f:11:
f5:fd:bd:b2:e7:4c:1d:eb:c7:e9:ae:ff:9a:2d:7d:35:28:5e:
00:b4:6a:38:61:9e:34:e9:23:4a:ee:0d:17:c1:8b:97:9e:af:
ef:99:53:9a:d7:70:62:7a:3c:2f:ad:d9:a4:78:37:a6:2b:d0:
73:a8:45:f4:14:18:b8:a5:00:3c:1a:54:99:4b:bb:6d:c4:6e:
12:32:bb:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:13 2025 by rpki-client