Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/iM3ScGm0MOezKv1KCf4upHzJNyw.roa
File: iM3ScGm0MOezKv1KCf4upHzJNyw.roa (raw, json)
Hash identifier: BeYW6yzhuftwg7ldZDCydzQzvpdKyoGfROKDnLvd4pc=
Subject key identifier: 88:CD:D2:70:69:B4:30:E7:B3:2A:FD:4A:09:FE:2E:A4:7C:C9:37:2C
Certificate issuer: /CN=bc535e38f4c75a5db058ff5646c2ed341f3e89a4
Certificate serial: 01822089657D82B55F450A8C6B353821400C
Authority key identifier: BC:53:5E:38:F4:C7:5A:5D:B0:58:FF:56:46:C2:ED:34:1F:3E:89:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/iM3ScGm0MOezKv1KCf4upHzJNyw.roa
Signing time: Thu 21 Jul 2022 11:34:11 +0000
ROA not before: Thu 21 Jul 2022 11:34:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 212.52.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:20:89:65:7d:82:b5:5f:45:0a:8c:6b:35:38:21:40:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc535e38f4c75a5db058ff5646c2ed341f3e89a4
Validity
Not Before: Jul 21 11:34:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=88cdd27069b430e7b32afd4a09fe2ea47cc9372c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:27:bd:8f:25:c7:70:b6:a0:13:89:3a:a2:5c:
a4:d6:29:d0:3b:a7:c6:a7:dc:88:0c:e0:fd:dd:c2:
b8:b0:67:c7:ac:c5:c9:06:22:8d:61:38:db:ce:76:
d3:55:ed:9e:f5:70:81:b8:98:0a:80:28:ce:46:f8:
e1:26:6c:e9:36:de:e4:d6:90:58:7b:58:10:c3:d1:
63:1f:ce:b4:c8:83:e5:f6:c3:96:8b:e6:85:d1:77:
3b:3c:8e:f1:23:fc:4e:ce:69:7f:ee:94:32:0a:54:
04:bf:61:d7:f3:24:c0:a8:4c:bf:92:68:8a:9a:46:
c0:7d:69:97:0d:18:95:1c:64:6e:ff:77:db:c1:f9:
93:4e:8d:29:e2:28:42:d1:16:eb:fc:bd:0c:be:a0:
07:06:ac:9f:26:3d:bf:03:8b:8f:a7:92:d1:9b:fd:
8c:d6:e6:b7:95:dd:c9:ab:1a:6e:20:78:71:cb:1d:
9f:cc:49:1d:b1:51:75:a0:e0:bf:fe:fa:e1:e3:9a:
7c:b5:a4:97:bd:11:4e:46:a1:a8:e2:c4:ea:bb:90:
26:3b:03:7b:7f:0b:e5:1a:1e:77:2c:43:7e:24:58:
63:ce:6a:4b:5a:76:1a:a1:ec:90:70:d6:17:c4:55:
4f:6c:69:fa:59:74:07:73:b9:2e:fb:0d:da:1c:14:
e1:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:CD:D2:70:69:B4:30:E7:B3:2A:FD:4A:09:FE:2E:A4:7C:C9:37:2C
X509v3 Authority Key Identifier:
keyid:BC:53:5E:38:F4:C7:5A:5D:B0:58:FF:56:46:C2:ED:34:1F:3E:89:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/iM3ScGm0MOezKv1KCf4upHzJNyw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.14.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:0a:93:bc:1c:9c:3a:14:cb:29:ab:a7:1b:87:f5:f8:2c:7d:
72:fc:f4:a5:9e:e1:b4:90:d8:a6:2c:ac:7f:0d:10:14:05:cb:
6b:3d:09:03:c0:52:36:f8:ca:ed:d1:74:e8:28:71:73:b2:40:
46:55:51:ce:a8:a2:e2:a6:60:5f:83:e9:8c:bc:a7:9e:ba:a3:
03:1a:bc:3b:88:b6:aa:2c:4f:80:02:2b:1a:fe:fe:62:2e:e3:
ae:69:bf:ae:e9:0f:02:6c:15:68:66:be:4e:e3:37:9c:6d:e5:
e5:2d:a6:66:89:04:95:25:c5:c9:30:71:5f:72:8b:36:8e:b2:
d4:8c:57:eb:31:8e:71:02:5b:d5:cd:8f:bb:09:c5:0a:e1:e2:
79:73:c6:23:53:2e:dd:b2:97:f8:8b:a9:12:a2:9b:85:2d:a3:
fa:e2:26:db:44:9d:47:98:ef:7a:16:e0:b9:03:97:95:68:0e:
9c:77:f4:27:71:c0:15:cd:a4:11:28:a6:11:74:c2:4b:17:9a:
2e:f5:87:b0:ee:3a:60:a8:8c:4a:6b:3d:b6:b4:29:3d:ed:77:
67:a2:da:65:e6:b8:81:0c:b9:df:00:31:ef:61:41:90:c4:27:
17:8d:83:6d:24:47:bc:53:e7:b6:ed:c3:f2:da:06:40:c8:8b:
55:d9:bc:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:24 2024 by rpki-client on console-ams.rpki-client.org