Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/eaf169-fd91-48f7-953b-7e69c7283de4/1/PuKSSxo1Ofkg28RrYcv0s2pJVxo.roa
File: PuKSSxo1Ofkg28RrYcv0s2pJVxo.roa (raw, json)
Hash identifier: dykgk7c3ryU+QpJOFKLNMC5Mp+Jk8JIn9HicayjERh4=
Subject key identifier: 3E:E2:92:4B:1A:35:39:F9:20:DB:C4:6B:61:CB:F4:B3:6A:49:57:1A
Certificate issuer: /CN=09a8c234f2b0d6c9ca13e5411da29cf2c44f2891
Certificate serial: 0182208966D5A7541AC58A4CEDC78D25998D
Authority key identifier: 09:A8:C2:34:F2:B0:D6:C9:CA:13:E5:41:1D:A2:9C:F2:C4:4F:28:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CajCNPKw1snKE-VBHaKc8sRPKJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/eaf169-fd91-48f7-953b-7e69c7283de4/1/PuKSSxo1Ofkg28RrYcv0s2pJVxo.roa
Signing time: Thu 21 Jul 2022 11:34:11 +0000
ROA not before: Thu 21 Jul 2022 11:34:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 212.52.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:89:66:d5:a7:54:1a:c5:8a:4c:ed:c7:8d:25:99:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a8c234f2b0d6c9ca13e5411da29cf2c44f2891
Validity
Not Before: Jul 21 11:34:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ee2924b1a3539f920dbc46b61cbf4b36a49571a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:77:cb:26:15:47:6e:e9:5a:66:d8:c5:8c:f9:
1a:dd:73:a9:68:3b:11:55:04:80:ca:44:44:69:e2:
03:4a:7f:cd:8d:4b:91:d2:6e:e6:7e:59:b4:27:87:
91:b3:fb:f7:2c:38:08:5e:5d:15:94:d9:3b:5d:58:
48:f5:42:cf:a7:93:32:f2:b4:45:3e:f2:88:3c:5e:
26:63:bb:02:43:58:0f:41:8f:f5:d4:e2:5d:bf:28:
1b:ee:b9:53:31:89:81:b0:a1:05:e1:7d:20:d9:d3:
b0:f5:38:99:e8:63:b4:88:ac:fa:00:73:85:74:07:
9b:98:de:79:99:d5:ad:d2:bb:8b:86:ff:2c:a8:73:
f0:4f:dd:2c:bd:bd:f0:59:38:de:11:db:22:32:46:
12:8c:17:77:e5:d6:29:1d:7e:cc:ff:82:61:04:b8:
b2:79:5e:c1:eb:56:77:32:50:7a:42:5b:cf:a4:8e:
85:06:f9:d4:00:09:69:3f:2e:87:40:2a:ad:ef:51:
fd:f6:da:35:cc:5d:b3:c8:5b:06:37:b0:43:1a:4b:
df:75:51:d9:31:d3:00:b2:e4:52:e0:1e:a2:1a:08:
24:82:49:15:f5:e0:27:12:9b:c4:b1:8e:a3:45:56:
c1:93:56:d8:1c:f8:7b:be:35:81:9f:80:73:54:f4:
62:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E2:92:4B:1A:35:39:F9:20:DB:C4:6B:61:CB:F4:B3:6A:49:57:1A
X509v3 Authority Key Identifier:
keyid:09:A8:C2:34:F2:B0:D6:C9:CA:13:E5:41:1D:A2:9C:F2:C4:4F:28:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CajCNPKw1snKE-VBHaKc8sRPKJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/eaf169-fd91-48f7-953b-7e69c7283de4/1/PuKSSxo1Ofkg28RrYcv0s2pJVxo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/eaf169-fd91-48f7-953b-7e69c7283de4/1/CajCNPKw1snKE-VBHaKc8sRPKJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.28.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:50:35:16:ca:11:8e:e9:f9:8b:dc:dd:c4:db:74:c8:f9:81:
57:09:6e:20:d2:52:ea:42:b7:f9:de:5e:ab:7a:79:7f:fe:f1:
c1:18:d4:6f:e2:bd:7d:97:f5:6b:18:1b:35:93:d7:bd:1f:35:
46:cf:20:0a:80:35:63:81:bb:48:9d:66:82:6b:ab:9d:e6:16:
80:78:0b:34:73:b6:1a:0d:37:1c:75:b8:0d:2f:1e:f6:84:ab:
75:ce:7e:bb:6f:e8:9a:a8:49:8d:67:8b:f8:4c:93:db:69:27:
9e:54:be:2a:b0:fb:02:50:15:dc:d0:f4:be:c2:9b:6c:73:18:
38:f5:1c:1e:06:17:d3:60:f9:78:5f:15:96:c9:ca:e9:96:43:
4b:9a:c3:de:c1:f0:dc:23:69:e1:f2:5a:99:98:30:d3:39:4e:
3a:b2:f0:ef:85:0e:60:89:48:1b:5b:b9:d9:00:0d:97:46:f1:
63:43:8f:5f:0d:42:d3:fe:a1:3a:0a:03:2a:3a:28:6c:55:70:
48:4c:58:05:f4:a6:cb:03:47:20:db:72:b7:aa:a4:cb:56:65:
c2:55:75:8b:80:26:95:2c:2f:51:8f:e6:44:26:1f:b1:20:d3:
d5:6b:6d:22:a1:f2:57:ec:27:dd:95:9f:fb:d9:06:b8:2e:04:
d2:89:a9:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:49 2024 by rpki-client on console-fra.rpki-client.org