Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/d342b8-f64d-43f3-875c-1d64b21d3c74/1/Urw5o5eZ20JNdD7U5UcFomyb2I8.roa
File: Urw5o5eZ20JNdD7U5UcFomyb2I8.roa (raw, json)
Hash identifier: GrdFyn/416BqDrMgQL20vXXvF83Mq5DEFzT0K7vid/o=
Subject key identifier: 52:BC:39:A3:97:99:DB:42:4D:74:3E:D4:E5:47:05:A2:6C:9B:D8:8F
Certificate issuer: /CN=3ea3f5f665bb54bd5efce90a25656109863f8786
Certificate serial: 901BD9
Authority key identifier: 3E:A3:F5:F6:65:BB:54:BD:5E:FC:E9:0A:25:65:61:09:86:3F:87:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqP19mW7VL1e_OkKJWVhCYY_h4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/d342b8-f64d-43f3-875c-1d64b21d3c74/1/Urw5o5eZ20JNdD7U5UcFomyb2I8.roa
Signing time: Sat 01 Jan 2022 02:52:16 +0000
ROA not before: Sat 01 Jan 2022 02:52:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 212.18.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9444313 (0x901bd9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea3f5f665bb54bd5efce90a25656109863f8786
Validity
Not Before: Jan 1 02:52:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52bc39a39799db424d743ed4e54705a26c9bd88f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:41:2e:ac:d9:8d:41:05:18:32:f2:58:79:0c:
16:c2:67:2d:f6:0d:09:50:4f:8d:ab:b0:dd:16:67:
6f:28:90:38:da:89:b2:df:22:ca:df:c8:d9:38:de:
0f:f1:3c:6b:f5:13:dc:5f:5e:af:80:8a:c8:39:9f:
12:23:e8:3a:39:80:e4:40:50:b8:a4:41:bc:f6:b1:
06:a9:3e:06:8d:1b:2d:2e:c4:06:a4:29:2c:b2:5d:
be:03:90:e7:f4:73:2f:e9:22:47:8c:a4:d4:00:2a:
fb:59:ed:54:b7:9c:74:4b:88:1c:a3:1a:6c:6c:fa:
0b:5d:b3:81:44:0f:76:29:81:ba:db:33:d4:dd:cf:
01:f9:44:04:4e:0d:d0:12:3d:8e:5e:a4:10:eb:28:
57:90:74:0f:d1:3f:fd:a8:a5:0b:c7:29:cc:05:24:
32:b0:ad:5b:b5:58:a7:eb:08:63:1d:35:70:9d:05:
61:1d:7a:04:4f:02:24:8f:c5:68:bf:fd:52:9f:31:
ff:cf:9c:f5:47:02:b4:6d:23:4f:14:95:e7:22:f1:
d6:07:50:e9:dd:27:90:d1:69:fb:86:c4:36:ff:27:
e5:33:59:f5:89:e7:e7:bf:35:df:68:b2:37:eb:d6:
73:69:9a:9c:58:27:b0:52:8e:72:19:6c:51:c0:28:
1b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:BC:39:A3:97:99:DB:42:4D:74:3E:D4:E5:47:05:A2:6C:9B:D8:8F
X509v3 Authority Key Identifier:
keyid:3E:A3:F5:F6:65:BB:54:BD:5E:FC:E9:0A:25:65:61:09:86:3F:87:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqP19mW7VL1e_OkKJWVhCYY_h4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/d342b8-f64d-43f3-875c-1d64b21d3c74/1/Urw5o5eZ20JNdD7U5UcFomyb2I8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/d342b8-f64d-43f3-875c-1d64b21d3c74/1/PqP19mW7VL1e_OkKJWVhCYY_h4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.116.0/24
Signature Algorithm: sha256WithRSAEncryption
49:b3:83:f4:07:93:ac:72:d0:68:d8:9d:c1:51:fc:9a:00:be:
9d:ae:01:df:f6:b5:d4:56:73:ee:5c:b4:6b:51:35:3b:3e:a6:
c2:64:51:af:ba:4c:65:be:2c:e9:19:18:10:9c:46:56:5e:ae:
f0:83:78:fb:dd:13:0d:ef:68:cd:39:35:b8:05:70:43:e1:8c:
d7:83:ba:e0:e8:8e:b1:f2:85:4f:f1:0d:15:a0:79:a9:a8:95:
f8:12:86:1e:3b:2b:a7:72:6f:c8:f4:85:ee:09:25:22:73:e8:
a3:a3:98:37:fc:51:ed:01:fc:5e:3d:1f:8d:78:79:7a:63:9f:
ed:74:7c:ea:7b:21:fe:2e:76:f0:d8:03:10:3b:02:f8:c1:34:
8f:d3:71:6f:19:fd:64:87:4f:d0:51:63:ab:4e:92:0f:a9:5b:
59:3f:22:6e:1a:0b:b0:ec:9e:17:c6:36:62:1a:d4:c0:f0:c6:
35:7e:74:f9:90:0e:d6:26:98:53:00:93:f1:1b:72:ec:fd:e2:
43:80:27:ab:32:a4:df:8f:ec:65:9e:15:16:82:05:82:c4:06:
70:25:79:37:9b:6e:4b:27:ea:62:f4:9b:c8:db:7b:5c:4f:29:
e8:a4:9f:a7:c4:f2:a6:ce:9d:b9:3a:13:08:0b:49:8b:be:a6:
49:f9:f2:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:41:57 2025 by rpki-client