Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/ywtGLEP8zlVRmK-9Qj6fEaof9A4.roa
File: ywtGLEP8zlVRmK-9Qj6fEaof9A4.roa (raw, json)
Hash identifier: D73v4aLh2cu7Sse6KEaYBIxdrmUxqobZe3XWDmVAReM=
Subject key identifier: CB:0B:46:2C:43:FC:CE:55:51:98:AF:BD:42:3E:9F:11:AA:1F:F4:0E
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 047F2F98
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/ywtGLEP8zlVRmK-9Qj6fEaof9A4.roa
Signing time: Thu 13 Jan 2022 06:01:33 +0000
ROA not before: Thu 13 Jan 2022 06:01:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32181
IP address blocks: 85.237.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75444120 (0x47f2f98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Jan 13 06:01:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cb0b462c43fcce555198afbd423e9f11aa1ff40e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:37:ce:dc:2b:52:cd:9f:fd:be:ce:2d:19:90:
ac:26:ac:f6:30:00:a3:8a:0a:e5:4c:3c:14:77:8d:
8b:39:76:56:62:00:73:12:44:64:ea:a7:d9:98:70:
0b:33:9d:af:d1:69:46:5d:0c:fd:9c:a6:9b:76:a2:
f6:4b:98:5f:fa:ee:c6:3c:db:e2:b1:6f:7e:61:36:
8d:0b:86:8d:96:e3:11:80:a0:ab:88:a9:b6:e1:9a:
6d:c9:f9:1e:fe:4d:1d:7a:33:c3:63:18:18:e4:54:
0e:fd:d2:59:b3:24:0d:23:82:d6:ee:8b:19:8b:66:
31:5e:b0:fc:a5:72:ea:86:7d:2b:95:73:26:12:0e:
0b:77:3e:ee:43:24:de:9f:6b:09:54:02:8a:b6:f1:
74:e0:50:35:cf:35:30:54:5b:10:30:a7:b2:3e:db:
a0:fb:75:8c:dc:dd:51:36:1c:b0:cd:41:7e:d2:17:
39:79:52:9c:91:ec:b1:ed:23:99:11:e2:2c:43:dc:
69:5f:9d:62:80:70:6a:96:44:48:8f:9b:57:19:e4:
42:0f:2f:72:a7:48:ed:80:d0:ce:f5:e2:bc:dc:fc:
27:64:32:bf:c5:65:77:9f:1c:9e:9f:b2:03:16:fb:
09:76:08:a6:fc:9a:68:cd:a0:9e:5e:ec:1c:8c:2f:
e2:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:0B:46:2C:43:FC:CE:55:51:98:AF:BD:42:3E:9F:11:AA:1F:F4:0E
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/ywtGLEP8zlVRmK-9Qj6fEaof9A4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.194.0/24
Signature Algorithm: sha256WithRSAEncryption
50:71:24:8f:7d:2d:0d:fb:61:cf:a4:78:a1:f7:2b:be:a0:64:
7f:d7:31:69:f1:66:2a:a1:5a:55:f1:b1:25:79:2f:16:28:ea:
74:7b:16:8e:ec:cb:06:b9:de:18:fe:e2:94:aa:48:cc:a7:c9:
52:93:e6:c6:b9:ff:32:c8:79:68:52:82:48:dd:33:5f:14:a1:
33:85:b6:9d:c8:30:af:4e:c3:e0:56:de:d4:fa:af:1c:9b:c2:
ac:ae:83:d2:a8:95:2a:2b:c3:54:cb:34:81:13:b0:7a:a1:12:
41:85:cd:06:40:15:0e:2c:52:38:9a:0b:4b:a6:17:71:f3:ad:
a9:b6:9d:1d:76:25:9c:b2:4c:96:c2:13:88:fb:58:65:05:eb:
41:e8:0a:42:2b:4c:9f:1a:6f:24:25:05:24:26:44:c5:77:b7:
57:40:36:2f:a6:3e:c7:2d:00:b5:fe:99:35:fc:c0:73:3f:c2:
85:da:ca:3a:13:80:84:28:d3:88:1c:9c:2c:e4:0c:0c:b4:75:
0a:0b:1b:22:bf:98:cc:62:0a:34:4f:74:70:18:e5:ee:37:40:
7d:59:6b:cd:ca:9a:f2:a2:a4:c1:68:b2:79:cd:1e:4c:cb:da:
3f:40:ac:61:8f:34:35:ba:1e:5e:13:fd:b8:5d:ea:2d:b1:92:
4a:43:f4:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:24 2023 by rpki-client on console-fra.rpki-client.org