Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/eaf169-fd91-48f7-953b-7e69c7283de4/1/gUKV6QfVrK-HWJx1mmF-aGDL0ic.roa
File: gUKV6QfVrK-HWJx1mmF-aGDL0ic.roa (raw, json)
Hash identifier: z62bdn4pAsOBNYpFIY3bHqxq3bAi+5amzat58HCZHDg=
Subject key identifier: 81:42:95:E9:07:D5:AC:AF:87:58:9C:75:9A:61:7E:68:60:CB:D2:27
Certificate issuer: /CN=09a8c234f2b0d6c9ca13e5411da29cf2c44f2891
Certificate serial: 01856F94CD2957288D1384657DC06375F19A
Authority key identifier: 09:A8:C2:34:F2:B0:D6:C9:CA:13:E5:41:1D:A2:9C:F2:C4:4F:28:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CajCNPKw1snKE-VBHaKc8sRPKJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/eaf169-fd91-48f7-953b-7e69c7283de4/1/gUKV6QfVrK-HWJx1mmF-aGDL0ic.roa
Signing time: Sun 01 Jan 2023 23:05:00 +0000
ROA not before: Sun 01 Jan 2023 23:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 212.52.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:94:cd:29:57:28:8d:13:84:65:7d:c0:63:75:f1:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a8c234f2b0d6c9ca13e5411da29cf2c44f2891
Validity
Not Before: Jan 1 23:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=814295e907d5acaf87589c759a617e6860cbd227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:1f:9e:49:fb:67:4b:14:db:f4:1c:22:9e:7f:
50:f8:52:ba:79:b6:27:9f:9e:13:3f:a7:61:57:c4:
7f:3f:df:78:31:20:55:f7:88:02:53:a3:a9:09:2f:
29:f7:fc:7a:ab:5c:23:a4:6d:4e:26:49:e5:db:0f:
ce:7f:81:7a:52:5f:4c:49:27:aa:f8:c4:25:2d:74:
f9:db:e3:7a:f0:14:bd:78:c0:bd:ee:0f:05:21:06:
89:87:9a:a2:4c:09:8e:08:3a:f6:c2:c8:e9:96:cd:
b4:d6:06:63:f2:b1:9c:2a:ed:14:10:60:75:5b:1e:
23:0c:e7:cc:37:d4:41:57:30:69:5c:0a:0f:1d:58:
42:7d:ec:33:89:d8:b5:90:c4:96:72:7a:da:ad:c9:
24:18:b9:a9:7f:33:55:e7:bd:00:5b:e9:bd:12:64:
7b:4f:e6:5c:6a:f3:d2:2f:66:fd:98:88:6a:55:b9:
f5:88:1c:dc:3a:25:32:40:07:6f:52:58:65:55:56:
7f:b2:ed:64:aa:cf:8a:b1:3b:e4:77:36:e0:24:7a:
e2:fd:a3:c2:71:ca:24:e1:15:d5:28:0a:0e:7a:40:
36:d9:10:2b:1f:fd:67:b8:22:df:9d:77:76:37:a8:
fc:4a:69:49:39:ba:6b:1e:17:b7:c1:50:63:ce:27:
c2:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:42:95:E9:07:D5:AC:AF:87:58:9C:75:9A:61:7E:68:60:CB:D2:27
X509v3 Authority Key Identifier:
keyid:09:A8:C2:34:F2:B0:D6:C9:CA:13:E5:41:1D:A2:9C:F2:C4:4F:28:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CajCNPKw1snKE-VBHaKc8sRPKJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/eaf169-fd91-48f7-953b-7e69c7283de4/1/gUKV6QfVrK-HWJx1mmF-aGDL0ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/eaf169-fd91-48f7-953b-7e69c7283de4/1/CajCNPKw1snKE-VBHaKc8sRPKJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.28.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:f2:9a:76:4f:c6:bd:01:30:b0:ab:1d:9a:ce:02:54:93:0e:
21:8b:c2:f0:23:26:7d:02:c3:55:d5:59:af:1c:d4:7b:42:76:
7b:08:16:1d:2a:85:b7:ef:d2:f2:d0:38:17:71:92:cb:d9:86:
8b:2e:97:7c:7e:59:65:6f:1b:6d:8a:f1:fb:b7:2c:81:78:96:
7a:a5:c8:cd:ed:98:db:72:0c:27:67:89:f4:d7:e2:bf:ae:83:
c3:3b:2c:8c:46:1f:50:9f:92:2f:66:94:72:e9:3b:f7:ef:f3:
89:6a:35:13:81:ba:d0:cf:63:8e:00:b3:2d:9b:68:63:7a:39:
cd:cc:40:78:49:d4:be:a0:97:6c:a8:e1:4c:30:9b:6d:5e:50:
fb:5c:8e:d2:b6:6a:f7:a1:4a:7e:0f:d8:04:e9:b1:a5:9e:63:
9b:5d:3d:71:6a:92:7b:fc:05:3a:2a:fe:2b:f2:6f:ea:86:05:
8b:c3:9c:88:13:96:2a:fc:0f:42:f7:0c:d9:05:82:06:ad:6e:
7e:9d:59:4f:3e:21:98:9a:0c:e9:ce:ab:17:f2:75:10:39:56:
7b:b2:5d:15:07:e1:c6:09:c0:b9:60:cb:0b:85:16:52:06:e5:
76:00:12:3a:13:4f:dd:3f:a7:ae:30:50:ad:78:ab:af:f8:81:
11:6d:07:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:49 2024 by rpki-client on console-fra.rpki-client.org