Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/E1Uj0EWoYp6agu1Cw6Pwpkp37wE.roa
File: E1Uj0EWoYp6agu1Cw6Pwpkp37wE.roa (raw, json)
Hash identifier: gRzcqFfFeXjNX7OQzkGqtOLo5SUKY+cwE0b9PvJPF2Y=
Subject key identifier: 13:55:23:D0:45:A8:62:9E:9A:82:ED:42:C3:A3:F0:A6:4A:77:EF:01
Certificate issuer: /CN=bc535e38f4c75a5db058ff5646c2ed341f3e89a4
Certificate serial: 7E6D9D
Authority key identifier: BC:53:5E:38:F4:C7:5A:5D:B0:58:FF:56:46:C2:ED:34:1F:3E:89:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/E1Uj0EWoYp6agu1Cw6Pwpkp37wE.roa
Signing time: Sat 01 Jan 2022 03:54:23 +0000
ROA not before: Sat 01 Jan 2022 03:54:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 212.52.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8285597 (0x7e6d9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc535e38f4c75a5db058ff5646c2ed341f3e89a4
Validity
Not Before: Jan 1 03:54:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=135523d045a8629e9a82ed42c3a3f0a64a77ef01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:91:b2:ea:82:34:3f:c7:d0:b8:37:08:1f:43:
39:77:18:f0:96:c2:dd:40:df:ec:9c:d4:36:7e:03:
4b:9f:83:b4:66:27:27:aa:a0:60:61:33:26:77:aa:
c6:88:e5:48:ed:e9:73:26:51:aa:98:d6:76:76:bf:
fa:0c:3d:aa:05:6c:7a:81:b9:66:0d:66:95:1b:9f:
43:5c:d2:0f:fc:3b:9e:ab:94:29:3f:e5:5b:7a:5c:
f8:87:fb:f2:c1:8b:79:9d:9e:3e:35:ad:c2:52:c5:
64:10:32:c2:c9:f4:a2:c1:04:e5:fd:97:9d:bf:02:
04:cf:f4:39:ce:09:f9:2f:86:00:13:9d:08:59:8e:
0c:12:e8:b7:61:00:e5:e0:75:41:ef:ed:7e:17:4f:
68:9c:cb:42:69:49:55:20:1b:80:1b:60:c2:3a:75:
9c:52:a4:d5:95:a2:0d:1f:96:93:e8:cd:2e:43:dd:
c4:f4:f8:38:47:da:d3:f4:0a:9a:1e:46:7d:66:6f:
51:ed:9a:64:7b:00:9c:3a:94:31:10:5f:33:49:61:
70:1f:42:7d:d5:cc:43:3b:75:ba:46:a9:82:05:87:
b2:33:45:33:e0:90:5f:92:27:88:5f:41:d3:54:d6:
13:34:cf:6a:e8:12:76:2c:86:66:f2:3d:bc:6b:c7:
70:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:55:23:D0:45:A8:62:9E:9A:82:ED:42:C3:A3:F0:A6:4A:77:EF:01
X509v3 Authority Key Identifier:
keyid:BC:53:5E:38:F4:C7:5A:5D:B0:58:FF:56:46:C2:ED:34:1F:3E:89:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/E1Uj0EWoYp6agu1Cw6Pwpkp37wE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.14.0/24
Signature Algorithm: sha256WithRSAEncryption
80:f1:5c:c9:c4:58:13:d0:61:d7:2d:c8:bd:36:0e:8a:c3:eb:
64:f6:73:3f:1d:34:82:66:1c:3d:28:bd:d0:03:e1:fe:a9:fd:
a6:d0:c3:56:bd:b8:1d:36:16:c1:71:81:da:b1:93:8f:10:bf:
4f:cb:09:3f:19:56:cd:65:aa:25:cb:63:ea:ef:ad:c7:29:d1:
1f:06:60:e3:52:93:1e:2b:80:a8:e3:5d:56:9d:50:d9:0d:89:
ca:71:3b:ef:d4:82:d3:79:40:86:78:0a:91:a3:14:ae:0b:17:
b5:15:a2:ad:5a:6e:2f:fc:08:5b:70:27:ce:0d:ed:01:8e:a5:
b9:95:51:88:16:c1:09:ce:a6:83:5a:cd:bd:f0:0a:c1:3d:3a:
c4:65:06:9d:ef:c2:7b:3f:62:c5:2a:b9:8f:75:6c:b0:fa:53:
5f:98:07:47:b0:60:d6:a6:40:91:a0:26:e3:31:99:3a:3c:6e:
be:1e:23:ba:ad:5f:62:ee:e1:b0:24:58:2b:c0:2f:e3:2a:a2:
88:65:0f:0a:da:de:7b:3b:90:26:af:40:c4:2e:c8:4b:9e:c6:
b7:58:2f:35:30:15:44:27:4d:4a:16:0b:bd:59:e0:66:d7:e7:
8b:c9:b0:a0:e1:f8:51:2c:e6:a3:ce:fa:f1:08:97:5e:dc:c8:
34:17:51:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:24 2024 by rpki-client on console-ams.rpki-client.org