Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/hAMYFHxjrRgbBs58DwziP6q46ro.roa
File: hAMYFHxjrRgbBs58DwziP6q46ro.roa (raw, json)
Hash identifier: ubQ6f53MaEbGEKgeDS7Z8vUiOAGmsBz1W1qa7GwFo/c=
Subject key identifier: 84:03:18:14:7C:63:AD:18:1B:06:CE:7C:0F:0C:E2:3F:AA:B8:EA:BA
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 01880FCA22B2E144FBB65C34C71ECE591F6B
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/hAMYFHxjrRgbBs58DwziP6q46ro.roa
Signing time: Fri 12 May 2023 11:48:05 +0000
ROA not before: Fri 12 May 2023 11:48:05 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212609
IP address blocks: 85.237.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:0f:ca:22:b2:e1:44:fb:b6:5c:34:c7:1e:ce:59:1f:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: May 12 11:48:05 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=840318147c63ad181b06ce7c0f0ce23faab8eaba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:e1:f8:e7:38:c2:b5:ef:8c:71:ce:da:73:87:
c1:26:8e:cf:44:ba:27:09:e5:5b:d0:fd:50:fa:a2:
c4:e1:ea:9e:7e:f1:47:a1:16:dc:b2:04:20:50:87:
e2:bb:f2:07:72:6c:70:d5:b6:d8:98:92:5f:22:4f:
e8:ad:31:2a:2b:25:84:d2:a5:c4:39:84:d9:7a:93:
40:dd:24:18:ad:ab:f2:25:78:7c:ce:3d:2e:de:57:
d5:d2:c3:20:01:c6:c1:b5:a5:1c:41:4b:31:d8:6e:
94:cd:d5:e7:3c:69:a0:9e:1f:96:5a:7e:4f:7a:2f:
2b:fd:23:61:41:9d:15:6a:f7:d0:e8:4c:33:12:a5:
03:63:ba:41:36:29:ce:9d:64:f8:ea:af:59:74:cc:
39:b6:f3:45:cc:63:11:64:3d:9b:ee:52:c0:e1:4f:
6d:a4:ee:01:57:5b:29:50:ca:c9:e0:97:3a:71:d1:
77:c0:57:95:0e:56:d6:6b:c6:d0:a8:21:c8:58:e8:
ad:8a:9e:58:b6:52:35:bc:05:59:d5:32:6f:20:11:
e3:2c:40:21:f8:e1:aa:a6:a1:51:30:67:91:ad:22:
0a:35:45:eb:e4:89:b2:d4:1f:76:63:f0:bd:7b:bd:
e3:a4:50:dc:a3:d6:e4:7d:50:07:9f:47:40:93:76:
48:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:03:18:14:7C:63:AD:18:1B:06:CE:7C:0F:0C:E2:3F:AA:B8:EA:BA
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/hAMYFHxjrRgbBs58DwziP6q46ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.218.0/24
Signature Algorithm: sha256WithRSAEncryption
16:d1:cd:cd:d9:3e:21:20:b6:9a:56:ee:e7:57:83:83:9e:19:
d4:fd:2d:bb:f1:ae:90:0b:63:71:28:5d:b6:f5:f2:ed:dd:1f:
9b:e2:f6:b0:fe:14:22:f3:76:88:70:2d:e5:d7:1b:af:99:83:
b8:30:5b:f6:6b:ab:55:6f:12:b5:02:c2:ec:ff:65:75:47:55:
c4:80:b8:17:a5:5e:06:a2:6b:9e:63:39:51:80:60:a2:d9:d3:
84:a4:f9:68:e7:6f:48:58:42:43:b5:35:f6:15:f8:0f:89:9c:
d9:8a:1f:cf:b2:06:88:bd:f3:f6:71:f2:74:60:e1:52:ff:90:
7c:af:80:31:66:e6:f6:4c:bc:19:cd:c6:45:20:74:e9:f5:59:
99:a8:7c:ef:e2:5f:64:e6:58:57:9c:77:01:f4:c4:e5:87:2a:
2d:26:c4:2d:53:fb:db:3f:72:a7:e7:05:3a:04:35:b1:5d:9f:
20:6c:4f:d4:b7:37:77:b3:56:ed:02:8e:46:00:03:b2:f7:42:
fd:14:39:6b:20:e4:27:ea:73:65:33:d1:ca:1e:9f:a0:92:7c:
f8:25:85:47:64:0a:6e:15:8c:d0:69:e6:9d:37:bb:e9:77:73:
2f:fc:5d:eb:fc:8c:68:a8:5b:fb:47:80:68:ef:01:ee:89:65:
48:f1:4e:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org