Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/zcOnkHe-ib_XNftvQXqkxksg5CQ.roa
File: zcOnkHe-ib_XNftvQXqkxksg5CQ.roa (raw, json)
Hash identifier: 3WQ7bbqsk40ork3a7nCQFCB2Oo52D3EyuH2euXczFqY=
Subject key identifier: CD:C3:A7:90:77:BE:89:BF:D7:35:FB:6F:41:7A:A4:C6:4B:20:E4:24
Certificate issuer: /CN=390b67368c91b85e84888c5ed2e824d1390810bb
Certificate serial: 0519ADFD
Authority key identifier: 39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/zcOnkHe-ib_XNftvQXqkxksg5CQ.roa
Signing time: Thu 17 Mar 2022 09:41:12 +0000
ROA not before: Thu 17 Mar 2022 09:41:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 85.237.198.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85569021 (0x519adfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390b67368c91b85e84888c5ed2e824d1390810bb
Validity
Not Before: Mar 17 09:41:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cdc3a79077be89bfd735fb6f417aa4c64b20e424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e2:f9:5b:0e:45:70:dd:c1:f0:23:b0:1c:36:
be:c3:3a:58:2f:21:a9:12:79:f7:e0:e0:91:22:14:
09:70:b9:c6:72:c5:59:4a:f4:7e:e6:5b:6e:8e:d9:
b9:03:57:ce:c0:cb:f4:e1:05:ec:15:b2:65:7e:b0:
98:32:5e:53:1f:7a:e7:4f:d9:a7:d7:2f:b5:53:08:
c1:07:b2:87:ac:b0:83:13:56:49:2d:34:46:43:ef:
28:45:4f:0d:54:89:b0:a9:37:eb:d1:36:a6:2d:5f:
ca:5e:15:73:c2:6a:0a:9e:23:17:6a:00:c9:bb:44:
ad:a8:b5:35:f2:1c:e0:ac:69:26:26:eb:08:a8:68:
fd:08:21:a0:7d:4d:23:3b:27:34:dd:80:d0:00:b0:
36:d7:6e:96:6a:49:8f:52:96:37:7f:68:57:ab:67:
07:0c:c2:95:71:fb:ac:7d:fd:b6:b1:cf:70:4f:07:
0e:4a:4e:d7:e5:06:b1:9c:9f:69:9b:fe:0e:5e:dc:
ec:8d:c7:e7:74:42:34:14:93:c7:7b:cf:62:00:f6:
9d:8a:81:62:22:0a:e8:f7:9b:66:08:65:fe:04:b8:
8b:8a:44:d8:c5:a3:35:af:56:12:5a:97:a8:b7:3b:
ec:fc:a6:06:a1:46:e5:ec:8c:9c:d9:8d:2b:a2:a3:
90:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:C3:A7:90:77:BE:89:BF:D7:35:FB:6F:41:7A:A4:C6:4B:20:E4:24
X509v3 Authority Key Identifier:
keyid:39:0B:67:36:8C:91:B8:5E:84:88:8C:5E:D2:E8:24:D1:39:08:10:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OQtnNoyRuF6EiIxe0ugk0TkIELs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/zcOnkHe-ib_XNftvQXqkxksg5CQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/16cce4-e981-4be5-b9f6-5c9d62629c86/1/OQtnNoyRuF6EiIxe0ugk0TkIELs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.237.198.0/24
Signature Algorithm: sha256WithRSAEncryption
03:86:80:2c:04:c0:7e:03:91:35:15:57:ac:f4:57:ad:d1:18:
56:83:a3:fe:bb:ff:8f:d3:65:28:90:af:6f:c1:89:24:df:95:
5c:01:8e:0e:69:89:d5:bc:32:bc:b0:49:96:e3:57:76:ed:42:
57:05:b8:3b:38:11:15:5a:f9:35:d8:c5:85:60:73:36:d8:8b:
50:ef:a8:1c:0d:49:63:ba:75:3e:cb:d0:2d:24:b5:8c:7b:14:
a9:01:4b:15:07:60:ed:73:a2:07:b1:9b:d7:33:0a:55:28:2d:
fa:be:69:3a:c3:68:e9:eb:be:28:bb:ae:87:36:99:4c:c8:8b:
7b:4e:ef:5c:a5:c1:86:27:6a:96:0b:1d:b8:47:f9:ef:89:5b:
73:8b:18:c4:9c:71:20:8e:b0:8f:ff:36:47:21:b9:8e:96:57:
89:b3:e3:9b:f1:fe:66:2f:c6:0f:cd:7c:0d:74:5a:9e:0b:2b:
85:29:4e:64:77:28:65:80:42:38:5f:9b:94:4c:21:fa:e3:65:
6c:b1:fc:57:98:29:95:27:b6:9f:1c:27:78:1b:a8:15:81:fb:
63:1e:4d:f0:e1:10:a1:e9:3b:ee:40:96:67:0d:95:08:cf:4e:
5d:4d:6c:1b:e3:02:e8:8f:34:28:13:8a:04:04:c6:26:6b:9b:
a9:3f:45:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:08 2023 by rpki-client on console-ams.rpki-client.org