Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/hvysNxve3NI544Zid8-mVq1qxbo.roa
File: hvysNxve3NI544Zid8-mVq1qxbo.roa (raw, json)
Hash identifier: UlkKzwmjY/gnwVSKvlKLsIxoANag5Qez6eJbV517XS8=
Subject key identifier: 86:FC:AC:37:1B:DE:DC:D2:39:E3:86:62:77:CF:A6:56:AD:6A:C5:BA
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 04346412
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/hvysNxve3NI544Zid8-mVq1qxbo.roa
Signing time: Sat 01 Jan 2022 00:50:43 +0000
ROA not before: Sat 01 Jan 2022 00:50:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29538
IP address blocks: 85.237.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70542354 (0x4346412)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 1 00:50:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86fcac371bdedcd239e3866277cfa656ad6ac5ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:83:b0:f8:35:91:e2:44:1e:9f:36:56:d7:a3:
10:1e:89:86:3b:fb:8f:97:98:ba:16:83:8f:18:59:
5e:85:91:db:84:2d:94:7b:ec:da:c8:05:d2:b3:ba:
5b:de:17:ad:a0:0f:79:3c:89:65:e8:93:cb:61:e7:
a4:75:95:64:62:64:b8:72:5b:80:b8:48:82:c3:3e:
96:91:06:24:3a:8e:96:e0:35:dc:cf:38:d0:4f:25:
54:0b:81:9c:ac:97:3b:fc:0e:c6:f0:79:ac:6f:d2:
d2:97:1c:7d:6c:4d:cb:b4:23:3b:aa:b8:28:b6:86:
eb:ff:5d:95:b5:49:34:25:cd:87:e1:43:9a:c9:c9:
aa:d2:49:87:8f:8c:0c:0b:09:ff:e8:7e:8d:0d:74:
ae:21:3b:d6:28:64:b2:05:e0:8c:85:ef:66:6e:68:
89:fc:90:4f:59:db:b0:85:88:76:c5:db:b3:44:8f:
4d:9c:71:e0:13:b3:bc:67:a1:ca:c8:c0:59:3b:f6:
6c:25:b5:25:cc:4f:dd:80:f4:f5:16:8e:c4:e8:97:
85:a5:ea:36:7f:15:aa:c1:f9:96:75:01:25:6c:a1:
51:b5:49:d2:58:49:45:0b:ca:29:c7:d4:a5:a4:e4:
e8:34:a6:d2:e2:f9:df:17:a2:a0:06:3c:40:c0:13:
82:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:FC:AC:37:1B:DE:DC:D2:39:E3:86:62:77:CF:A6:56:AD:6A:C5:BA
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/hvysNxve3NI544Zid8-mVq1qxbo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.218.0/24
Signature Algorithm: sha256WithRSAEncryption
3d:2e:5b:14:58:b0:4b:f8:1b:dc:5d:b8:17:20:91:48:91:bc:
df:1d:40:f0:a4:76:ca:f9:3a:50:65:30:c5:cd:cb:4d:85:d0:
33:a4:80:d0:28:3e:89:88:e3:66:9a:5c:c7:e3:49:80:3c:43:
78:f9:d3:5b:11:79:e9:80:81:f6:60:1a:4f:b5:92:d2:57:b3:
14:74:e3:e1:47:aa:11:82:aa:af:52:27:ce:7d:18:ca:40:9b:
e0:43:cd:9e:24:65:18:cc:0b:62:aa:2c:ce:27:6c:5e:c5:dd:
fe:f2:01:d1:62:c8:4d:63:fa:07:0b:8b:2e:b4:5a:1a:16:5b:
d3:c8:7b:d0:0a:b3:41:9c:6c:55:8c:b3:55:82:dd:f3:6e:80:
1b:80:06:de:32:74:e4:c4:80:45:ac:4c:2b:c0:06:66:0c:96:
4d:c6:6f:96:7b:eb:20:e0:60:27:9a:20:fc:ef:b2:9a:2c:34:
29:a7:a7:41:c1:e8:d9:73:0c:d7:91:28:f4:f1:cd:2a:a5:8e:
9e:ba:a3:51:7d:4b:86:c4:ff:7e:65:77:64:30:aa:ee:19:c7:
aa:f1:ae:7e:40:93:aa:91:38:11:63:28:66:b5:46:2e:b0:27:
65:84:1a:d9:77:f3:ee:d3:6e:38:34:c5:ad:7f:a7:38:f1:60:
15:dc:38:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:07 2023 by rpki-client on console-ams.rpki-client.org