Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/Ldqm_UYs9v8avl0EJrHy7kM1xzA.roa
File: Ldqm_UYs9v8avl0EJrHy7kM1xzA.roa (raw, json)
Hash identifier: ywouLy/c1X4T+TgzjPTv+5ySkWySEicCG4pLQzZH8F8=
Subject key identifier: 2D:DA:A6:FD:46:2C:F6:FF:1A:BE:5D:04:26:B1:F2:EE:43:35:C7:30
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 0185E967D23EC1270CF482E9B3EF9213F957
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/Ldqm_UYs9v8avl0EJrHy7kM1xzA.roa
Signing time: Wed 25 Jan 2023 14:49:33 +0000
ROA not before: Wed 25 Jan 2023 14:49:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209260
IP address blocks: 85.237.201.0/24 maxlen: 24
85.158.58.0/24 maxlen: 24
85.237.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e9:67:d2:3e:c1:27:0c:f4:82:e9:b3:ef:92:13:f9:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 25 14:49:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2ddaa6fd462cf6ff1abe5d0426b1f2ee4335c730
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:1f:07:6e:25:e0:2e:36:22:f1:69:ae:f4:e1:
62:09:be:63:25:26:a3:00:8b:3d:a1:9a:4f:a1:98:
63:e1:df:92:ad:fe:86:c7:45:5f:58:69:a0:45:1b:
06:3e:c8:71:a7:1d:86:af:90:15:e5:1f:6d:b3:08:
eb:fe:7b:e8:a2:0b:93:11:27:dd:c6:42:e5:be:e4:
e6:64:1a:41:89:a5:0e:f2:88:af:02:26:06:74:69:
3b:bb:6a:0a:fd:74:50:d3:3d:5d:39:e0:7a:00:a3:
e3:a6:97:90:67:81:af:e7:15:e9:c6:fd:06:b1:1a:
ef:e8:35:f3:62:0c:81:49:6a:3d:f1:bd:81:30:24:
15:b7:ee:42:a7:87:9e:57:9c:e5:d9:53:ff:3a:0d:
ea:65:c6:1d:20:ca:ab:08:f2:40:39:e2:6b:86:3e:
05:cc:07:29:7d:8a:10:34:82:57:3b:ab:86:27:c3:
e8:be:38:15:21:21:73:ea:88:3a:21:e6:cf:a3:54:
06:d4:6f:79:b4:0d:8f:75:29:2f:c6:c3:91:6c:dc:
9e:5f:5b:63:55:33:e1:4a:32:2f:f3:ef:e3:db:1d:
da:42:33:6e:e5:b7:52:fa:c7:26:35:ca:09:13:84:
16:74:aa:d7:63:f5:fe:c9:9f:a9:1a:18:29:d2:84:
a1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:DA:A6:FD:46:2C:F6:FF:1A:BE:5D:04:26:B1:F2:EE:43:35:C7:30
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/Ldqm_UYs9v8avl0EJrHy7kM1xzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.158.58.0/24
85.237.201.0/24
85.237.211.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:46:de:e8:85:bd:85:41:80:81:86:e5:78:90:d0:41:f3:7e:
f6:c7:b7:8f:cb:30:f2:21:f1:d0:01:09:50:93:f0:a6:24:13:
a8:52:ac:fa:23:7a:ad:8b:f0:6e:20:92:6f:3b:23:94:8b:be:
c8:f0:90:d0:73:91:4c:28:70:f1:cb:19:9f:be:d8:a6:7c:56:
cf:64:f3:17:8b:53:3e:d8:c9:b4:c4:bf:b0:02:b4:cf:64:42:
4a:fe:f3:5b:42:23:bb:4b:85:56:6c:b8:d6:77:bb:2f:90:d9:
7d:d8:13:c3:6f:17:f9:d9:33:eb:6f:39:52:33:c4:08:4c:73:
5c:bb:81:b0:24:92:35:89:ed:53:98:38:d0:53:b5:41:44:d5:
01:43:69:d8:1d:11:da:bc:ed:d1:80:ab:00:3b:84:5a:a4:67:
f5:ee:91:90:0f:32:98:8d:4f:fe:76:67:7b:8b:d5:2f:6d:27:
82:f8:7e:0a:fc:06:37:82:2b:5f:3b:bc:b7:59:98:4e:65:3f:
35:12:19:31:d7:77:d7:15:0d:b1:41:a0:5f:44:7f:23:d8:c1:
6a:4c:e1:04:ea:01:29:79:d4:15:a7:9e:1f:9e:01:91:a7:1c:
49:0a:d1:40:f9:2e:b8:52:2c:3c:0d:ca:fd:a3:8d:40:32:96:
46:e3:e1:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:29:46 2024 by rpki-client on console-fra.rpki-client.org