Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/d342b8-f64d-43f3-875c-1d64b21d3c74/1/bx_uw8RjHNcxWQ9zXUmlR7SNM5k.roa
File: bx_uw8RjHNcxWQ9zXUmlR7SNM5k.roa (raw, json)
Hash identifier: QLrpZsKVaYPZiN+jb38QqcrBj5TyFEcK7diz1N4yxiE=
Subject key identifier: 6F:1F:EE:C3:C4:63:1C:D7:31:59:0F:73:5D:49:A5:47:B4:8D:33:99
Certificate issuer: /CN=3ea3f5f665bb54bd5efce90a25656109863f8786
Certificate serial: 01856F3916AD03DF7BA1FA4382D109CE82A7
Authority key identifier: 3E:A3:F5:F6:65:BB:54:BD:5E:FC:E9:0A:25:65:61:09:86:3F:87:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqP19mW7VL1e_OkKJWVhCYY_h4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/d342b8-f64d-43f3-875c-1d64b21d3c74/1/bx_uw8RjHNcxWQ9zXUmlR7SNM5k.roa
Signing time: Sun 01 Jan 2023 21:24:50 +0000
ROA not before: Sun 01 Jan 2023 21:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 212.18.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:39:16:ad:03:df:7b:a1:fa:43:82:d1:09:ce:82:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea3f5f665bb54bd5efce90a25656109863f8786
Validity
Not Before: Jan 1 21:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6f1feec3c4631cd731590f735d49a547b48d3399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:50:d3:e8:ca:1d:fc:cb:ca:60:39:a7:1f:93:
4c:9d:4b:ee:c5:70:13:5d:ae:8a:92:9c:60:12:e6:
eb:2c:1e:a8:53:3a:81:d1:27:14:8a:b6:69:9b:d0:
14:d1:63:4c:9b:3d:84:71:4e:38:bf:6e:bf:b7:e7:
79:c8:40:37:87:b6:2a:b1:26:17:91:10:65:f1:e1:
06:2f:d1:0a:cf:33:c2:23:48:aa:f4:3f:0e:4e:54:
97:55:13:97:8f:e0:eb:ba:3b:c7:ab:ff:b8:88:e8:
70:7c:53:1c:c9:ee:e9:f8:fc:56:b7:54:da:67:9a:
63:1a:5c:19:e8:18:49:87:26:12:fa:45:04:84:f3:
71:61:36:bc:5d:f3:65:95:a5:d3:76:b7:79:1a:49:
47:2c:fe:75:e7:62:b4:78:dc:f2:2d:17:58:51:a7:
d5:05:07:13:e3:6c:c6:8d:e5:95:9f:68:bb:56:0d:
06:fc:e9:b2:77:e6:07:8f:e6:73:1e:eb:1d:94:02:
44:45:cc:4c:81:ba:95:ad:e7:fb:92:c3:44:8b:79:
b9:d5:52:67:f4:73:14:27:b5:0a:b9:82:9a:0d:ec:
cb:0c:cf:9d:0b:5d:d7:b2:db:7d:77:e4:e1:15:f1:
eb:1a:6b:63:49:c5:36:f7:2d:fb:28:8b:68:e6:2e:
f3:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:1F:EE:C3:C4:63:1C:D7:31:59:0F:73:5D:49:A5:47:B4:8D:33:99
X509v3 Authority Key Identifier:
keyid:3E:A3:F5:F6:65:BB:54:BD:5E:FC:E9:0A:25:65:61:09:86:3F:87:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqP19mW7VL1e_OkKJWVhCYY_h4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/d342b8-f64d-43f3-875c-1d64b21d3c74/1/bx_uw8RjHNcxWQ9zXUmlR7SNM5k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/d342b8-f64d-43f3-875c-1d64b21d3c74/1/PqP19mW7VL1e_OkKJWVhCYY_h4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.116.0/24
Signature Algorithm: sha256WithRSAEncryption
71:ae:ad:71:40:ff:54:ce:54:6c:67:2e:4c:60:81:b9:f0:4e:
5a:6e:1a:ea:c9:37:6f:af:c0:ac:87:f9:00:31:9a:7d:53:68:
a8:ee:d2:c4:8b:6e:31:a0:98:36:96:2c:a3:62:9f:7f:e5:1e:
9d:da:5f:5b:75:4d:6d:9c:ef:da:98:02:65:c6:03:7a:01:65:
eb:34:83:b4:40:7a:6b:bf:4e:08:94:11:0e:55:1d:65:9b:79:
68:67:e4:37:c0:0e:c8:37:af:21:f9:c2:a2:43:27:14:ff:e7:
25:ce:16:7f:56:a8:ce:15:d8:a8:41:32:6e:05:ce:53:04:99:
7b:de:dc:6c:76:7c:11:cc:24:f1:81:e0:38:68:c0:7b:04:a5:
2f:0b:84:05:fa:b7:bf:1c:f3:31:9e:0e:d8:da:96:96:60:62:
ae:4a:fc:cd:0b:c8:2d:79:68:0d:cd:25:1a:b9:35:21:42:11:
e9:5e:cf:58:eb:4a:e6:35:fa:1e:bc:ab:7b:47:15:3e:86:26:
3f:37:f1:f1:c4:56:8b:0c:c5:51:80:20:c1:0b:cc:3a:6c:19:
dd:5d:41:02:0f:b2:9a:58:91:fc:9e:b4:19:29:cf:62:ad:26:
b9:f3:e3:40:a0:45:62:b1:b5:51:c5:54:10:6f:ac:da:31:90:
66:2d:0c:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:49:22 2025 by rpki-client