Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/ZxlnMUMB8zCpjYFH1hRp9aAQ7iY.roa
File: ZxlnMUMB8zCpjYFH1hRp9aAQ7iY.roa (raw, json)
Hash identifier: 3+wJ4QuhwtLkXxcnRPlO8WEgV881Y83q4MJggq4HZ/Y=
Subject key identifier: 67:19:67:31:43:01:F3:30:A9:8D:81:47:D6:14:69:F5:A0:10:EE:26
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 018571DE9CAAEC9690FEDA09C7E4C99D1CEE
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/ZxlnMUMB8zCpjYFH1hRp9aAQ7iY.roa
Signing time: Mon 02 Jan 2023 09:44:52 +0000
ROA not before: Mon 02 Jan 2023 09:44:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209181
IP address blocks: 85.237.210.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:de:9c:aa:ec:96:90:fe:da:09:c7:e4:c9:9d:1c:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 2 09:44:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=671967314301f330a98d8147d61469f5a010ee26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:22:b1:b0:6d:ee:df:56:b8:57:c8:89:e8:92:
db:fa:c1:f9:82:6c:75:73:fd:a3:eb:8d:f7:e5:34:
82:c4:ad:95:23:bc:48:3a:7b:32:2b:f1:5d:3a:b0:
be:5e:16:2c:df:ca:17:ce:d8:8e:8e:32:3a:a0:30:
2e:e8:ec:0f:f4:12:52:86:58:85:cc:73:85:d2:f9:
d5:44:f8:5f:44:52:7b:21:1a:7b:bc:46:85:7c:6a:
35:e7:94:72:78:f0:c8:4a:e6:4a:3e:7d:62:f6:64:
ee:61:82:b7:9b:db:07:d7:68:88:e4:b2:9d:37:67:
7a:75:9a:e9:f7:02:d5:65:df:44:8d:d2:e9:86:27:
b0:5b:c4:27:5a:08:87:f9:93:74:5d:6f:a4:ea:75:
01:28:c4:c4:28:d7:d2:fa:a7:d4:59:5a:80:50:b3:
dc:be:92:05:20:2c:7b:54:65:20:28:ed:ea:48:a7:
da:86:10:f8:04:75:b8:31:e6:04:4f:4d:ff:3e:bf:
e7:4f:36:65:86:4c:90:22:89:a7:3c:23:c5:96:09:
4e:26:b1:69:94:17:fe:09:9d:50:9c:80:04:2c:29:
c2:55:a2:30:c6:8d:29:5e:72:9e:bf:fd:d9:75:25:
e2:49:89:7f:ac:2d:83:24:80:f4:93:6e:36:5c:40:
70:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:19:67:31:43:01:F3:30:A9:8D:81:47:D6:14:69:F5:A0:10:EE:26
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/ZxlnMUMB8zCpjYFH1hRp9aAQ7iY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.210.0/24
Signature Algorithm: sha256WithRSAEncryption
21:06:3f:02:e0:fe:f5:57:1b:71:74:eb:5c:08:7f:af:47:74:
db:64:c6:bb:ae:70:f7:ed:8c:9c:b2:1a:87:cd:f2:86:eb:20:
3b:01:8f:50:86:4f:39:2a:bf:80:42:4c:66:10:60:a2:2e:83:
e1:dc:26:ef:e1:ed:52:3e:60:70:4c:5e:0e:a4:92:df:8c:e1:
a9:a1:e1:ee:00:68:e6:47:ec:c8:24:07:4b:f5:ee:c3:de:d5:
ea:88:86:c7:82:9d:42:37:89:d6:7b:ba:c4:ed:67:66:ab:8b:
40:45:3b:f8:ac:10:d1:d1:fc:3b:18:a6:9b:9c:8c:63:26:d5:
1d:ed:01:09:9b:b8:07:ba:38:23:86:1b:af:a1:6b:42:2c:0d:
55:0f:a5:eb:8b:ba:d9:f7:30:fc:97:74:f4:0f:72:f6:ab:fd:
d7:e8:88:03:11:2f:e5:7f:e4:6d:60:a1:b7:e4:a5:7f:0d:2d:
88:ab:05:40:08:68:06:da:41:1e:20:d9:5a:66:0a:85:25:7c:
09:6d:76:83:17:e7:80:60:12:3c:f1:24:02:3b:a2:bb:99:39:
ef:b8:4c:4c:3f:39:24:f5:29:3f:3f:eb:52:92:5e:ed:17:0c:
ab:ce:97:67:cc:c2:9b:c7:9e:39:dd:21:ed:6a:b0:6a:37:f9:
86:f3:9a:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org