Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/NONhZzqq9BofDQc0BUdYsNNhs64.roa
File: NONhZzqq9BofDQc0BUdYsNNhs64.roa (raw, json)
Hash identifier: 5R/Y5HF07FB9fTR0ZiUG726p6ZqPoxVGyYSUekAL6/0=
Subject key identifier: 34:E3:61:67:3A:AA:F4:1A:1F:0D:07:34:05:47:58:B0:D3:61:B3:AE
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018571DE8E62CA33153A85261B68CB653AAA
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/NONhZzqq9BofDQc0BUdYsNNhs64.roa
Signing time: Mon 02 Jan 2023 09:44:48 +0000
ROA not before: Mon 02 Jan 2023 09:44:48 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 25369
IP address blocks: 85.237.196.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:8e:62:ca:33:15:3a:85:26:1b:68:cb:65:3a:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 2 09:44:48 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34e361673aaaf41a1f0d0734054758b0d361b3ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:65:c4:27:4b:fa:f6:f0:ff:fd:0b:24:ba:76:
98:b2:08:21:6d:19:09:fc:a0:f1:81:6b:02:5b:c7:
36:dd:2b:fc:19:3d:72:7d:cf:93:f2:bb:1c:93:14:
ce:43:b7:2c:45:47:63:1e:70:e1:d9:c1:19:79:2e:
f7:70:63:1f:fd:72:91:80:77:1f:40:f0:a6:f5:56:
71:21:d1:34:31:75:8a:55:1d:cb:6a:01:46:b8:86:
7e:06:68:08:d9:cd:c9:0f:35:b8:33:2a:bb:46:f6:
b6:9f:64:98:6f:48:b2:76:e7:19:e5:b1:84:0d:41:
c8:09:fe:c9:06:08:ae:85:06:81:d0:a9:6f:d6:d2:
d7:96:15:3b:7b:5b:a2:13:f2:99:8f:35:90:08:a7:
1a:f0:c3:54:a3:8c:b4:06:c8:8a:3a:a7:a0:37:f6:
72:d8:48:49:d8:0d:d3:f2:31:13:c1:82:7f:65:47:
28:66:82:02:38:97:a3:51:00:76:48:b2:bd:6b:29:
4f:ca:10:57:52:96:9a:cc:ca:3e:12:b0:2e:0a:fa:
7d:77:c0:00:61:d4:a5:e8:30:7d:f4:bc:2a:6a:4b:
53:5d:38:03:7e:70:14:f4:d9:f3:46:3e:98:94:4f:
4a:d1:b0:9e:3c:ce:b3:23:d9:87:f7:21:db:92:66:
fb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:E3:61:67:3A:AA:F4:1A:1F:0D:07:34:05:47:58:B0:D3:61:B3:AE
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/NONhZzqq9BofDQc0BUdYsNNhs64.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.196.0/23
Signature Algorithm: sha256WithRSAEncryption
63:01:a9:ed:bc:9f:33:2b:5f:5b:63:93:fd:71:3b:05:f7:09:
6c:13:f3:47:4a:38:22:e5:71:27:9f:d9:ea:bb:52:1b:8c:b6:
e4:2e:c7:fa:e1:96:2d:70:b1:76:8c:d8:a1:ec:b4:16:a8:c9:
d0:80:42:44:b7:cd:2f:46:77:7a:b6:6e:e7:15:2e:2d:d0:8a:
54:53:ae:e5:8c:47:d8:9d:32:eb:30:19:35:ca:4e:8a:4e:d5:
e4:3d:1d:92:6f:71:51:49:b7:82:d5:25:cf:c2:ef:57:22:c8:
63:a1:ee:a8:e5:05:24:6a:9c:c2:ad:be:d3:12:6b:2a:9c:50:
05:cb:45:49:38:e4:9e:77:63:35:8e:b1:28:65:ef:e6:b8:54:
11:5d:d9:a8:cd:e8:e4:9a:d8:e6:40:d3:32:6a:30:03:0b:4e:
cf:6c:7a:9f:a7:cd:17:ef:73:39:de:fb:30:35:3d:ed:37:37:
5c:b1:84:f4:98:0b:30:0a:a3:62:aa:d6:c9:21:04:72:f3:66:
1d:d2:ab:d4:6a:29:bb:3d:a7:37:fc:1c:dd:a2:3b:e4:23:68:
fe:f8:60:c4:16:90:b1:a0:5b:41:94:b8:1c:61:67:19:7a:c9:
86:e5:76:df:e9:06:cd:af:e4:3c:ff:cf:ec:78:9b:1a:1b:a7:
32:73:a2:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org