Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/zuMiJ2rE2yE9HfPSubjRUXwn9Ko.roa
File: zuMiJ2rE2yE9HfPSubjRUXwn9Ko.roa (raw, json)
Hash identifier: 78/Npj1eAh9OfC849dXQtWq0N/Kbo4RygdRl1eIj+ac=
Subject key identifier: CE:E3:22:27:6A:C4:DB:21:3D:1D:F3:D2:B9:B8:D1:51:7C:27:F4:AA
Certificate issuer: /CN=bc535e38f4c75a5db058ff5646c2ed341f3e89a4
Certificate serial: 0187EA5D8C5964C3684DC314FA954B3F723D
Authority key identifier: BC:53:5E:38:F4:C7:5A:5D:B0:58:FF:56:46:C2:ED:34:1F:3E:89:A4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/zuMiJ2rE2yE9HfPSubjRUXwn9Ko.roa
Signing time: Fri 05 May 2023 05:23:31 +0000
ROA not before: Fri 05 May 2023 05:23:31 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197328
IP address blocks: 212.52.14.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:ea:5d:8c:59:64:c3:68:4d:c3:14:fa:95:4b:3f:72:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc535e38f4c75a5db058ff5646c2ed341f3e89a4
Validity
Not Before: May 5 05:23:31 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=cee322276ac4db213d1df3d2b9b8d1517c27f4aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:36:b8:13:d0:61:da:49:33:43:4f:75:72:6e:
1a:be:76:c0:c8:14:aa:f6:47:9e:ba:b9:18:51:c0:
fd:bd:7c:f9:23:c4:54:17:32:40:1a:7d:e0:12:f0:
12:13:e8:80:f2:49:93:ea:2c:51:5a:71:2d:46:89:
91:69:96:2a:2d:1d:26:a9:a5:a3:79:2c:18:1d:13:
52:00:50:1c:ba:b7:49:bc:e8:63:79:e2:94:03:53:
4b:35:83:8c:f6:70:5d:6b:99:7a:e4:a8:7a:98:b0:
68:bf:e7:8f:e6:fa:e1:f5:32:ae:cc:a3:cd:13:f3:
79:65:62:e2:6b:35:0d:ca:e0:12:77:21:16:04:56:
53:e2:8c:11:fa:08:7b:30:4e:cb:56:cf:05:b2:fe:
65:88:c2:3e:a6:e7:bd:22:a1:86:5f:b6:f2:f5:04:
c2:35:64:34:e7:74:04:0a:e3:77:bc:51:6f:2d:ab:
41:87:83:10:09:71:34:37:62:82:ce:8b:38:72:6c:
ee:3e:b1:93:a8:66:d5:f4:6e:77:28:fa:81:49:9f:
f5:58:f7:95:82:dd:fd:a9:7f:0e:62:08:d1:00:cd:
35:14:e2:fa:b4:52:d4:89:34:2d:76:d5:ba:cb:87:
1a:71:7c:c4:45:0c:51:b9:67:27:2e:9c:07:f3:29:
5d:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:E3:22:27:6A:C4:DB:21:3D:1D:F3:D2:B9:B8:D1:51:7C:27:F4:AA
X509v3 Authority Key Identifier:
keyid:BC:53:5E:38:F4:C7:5A:5D:B0:58:FF:56:46:C2:ED:34:1F:3E:89:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/zuMiJ2rE2yE9HfPSubjRUXwn9Ko.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/dcd34b-c2c0-45a2-82df-b986b343bd4f/1/vFNeOPTHWl2wWP9WRsLtNB8-iaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.14.0/24
Signature Algorithm: sha256WithRSAEncryption
91:6d:fa:6e:70:49:76:56:e0:79:6f:d7:50:5b:05:96:ee:a5:
9c:f2:7a:ca:eb:c6:bd:3c:bd:fc:60:30:3a:40:62:60:40:db:
c3:11:0a:fa:bb:a2:82:f4:f2:cb:f1:76:1b:3c:fb:48:98:6e:
45:b4:4c:6a:5b:05:ac:e6:c3:a7:51:b2:79:fc:6d:59:18:2d:
0a:bf:f6:88:da:1a:48:85:d2:51:5b:53:24:6c:6d:6d:3e:e4:
3b:b4:2d:62:b1:5c:be:bb:f6:01:24:c2:19:63:04:63:b6:fd:
20:6f:61:07:b0:a4:b4:2a:b9:b0:ca:a2:9b:82:db:04:19:d8:
af:02:f9:a5:bc:fc:30:79:06:ef:2c:90:e2:27:b2:aa:d2:50:
e0:db:df:ab:6e:95:11:16:e0:f8:41:96:a5:fa:7a:44:c3:b3:
9a:ae:cd:f0:fe:bb:a7:be:06:55:19:ce:43:41:53:ba:df:9f:
1f:00:e1:2d:09:e7:9a:4d:d6:66:87:e3:ec:b7:c1:f3:ab:1a:
52:35:e0:1d:c4:03:3b:11:25:4e:44:1e:09:ca:3c:55:e5:6d:
19:cb:73:15:54:61:95:05:6d:fb:16:64:a4:ec:ce:e6:fb:79:
08:50:8c:5f:19:bf:7c:a7:0e:3b:d5:69:6f:73:88:73:4f:f3:
af:a2:c7:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:40 2024 by rpki-client on console-fra.rpki-client.org