Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/d342b8-f64d-43f3-875c-1d64b21d3c74/1/oOX_QrDx1I0Rbs88pukaMdW-aT8.roa
File: oOX_QrDx1I0Rbs88pukaMdW-aT8.roa (raw, json)
Hash identifier: Hzkk36W4UsHHLbcVUXAZhwB55amLP7ojAkoUpfBh6ac=
Subject key identifier: A0:E5:FF:42:B0:F1:D4:8D:11:6E:CF:3C:A6:E9:1A:31:D5:BE:69:3F
Certificate issuer: /CN=3ea3f5f665bb54bd5efce90a25656109863f8786
Certificate serial: 012FABDC
Authority key identifier: 3E:A3:F5:F6:65:BB:54:BD:5E:FC:E9:0A:25:65:61:09:86:3F:87:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqP19mW7VL1e_OkKJWVhCYY_h4Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/d342b8-f64d-43f3-875c-1d64b21d3c74/1/oOX_QrDx1I0Rbs88pukaMdW-aT8.roa
Signing time: Sat 12 Mar 2022 23:53:13 +0000
ROA not before: Sat 12 Mar 2022 23:53:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 212.18.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19901404 (0x12fabdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ea3f5f665bb54bd5efce90a25656109863f8786
Validity
Not Before: Mar 12 23:53:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0e5ff42b0f1d48d116ecf3ca6e91a31d5be693f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:cc:d3:14:33:32:dd:27:b9:e3:28:da:d6:66:
22:bb:61:fa:1c:79:25:3e:2b:d4:b0:85:1a:0a:1d:
fb:c7:70:05:f9:1f:6a:8d:ef:a9:90:dd:b4:08:41:
e6:9e:b5:30:4a:a0:1c:5e:81:c9:14:fe:3d:86:8d:
42:ae:67:b9:94:f4:64:51:3b:bb:ad:18:d2:53:88:
04:06:4d:a4:5f:fb:b5:7c:55:fa:af:3f:2f:a9:1a:
d0:68:08:60:c1:4d:13:4e:63:6d:ea:10:44:57:bf:
0e:8d:ed:db:5c:16:f5:bf:1f:f8:44:7d:b1:fc:62:
56:2b:ab:0d:31:91:f5:88:ee:01:ee:3f:ef:e7:2a:
5d:4d:50:0b:43:43:d2:cf:8b:ad:51:59:44:1c:ea:
9a:09:a6:ff:78:59:53:fb:cd:c3:63:5c:c2:d4:d8:
42:d6:a5:41:83:4a:dc:af:6a:98:36:a4:6b:b8:7f:
0f:32:1e:19:17:73:e9:ff:5c:ec:3c:32:77:42:47:
61:48:ee:3b:8e:63:f5:4a:5c:e9:e1:94:a2:9e:fd:
0a:f3:62:78:81:7e:c6:02:04:43:96:b7:d5:ab:b5:
38:0d:38:64:95:c9:9e:4a:78:10:d6:df:62:86:2f:
67:59:ee:18:24:4e:a3:5c:93:a8:f7:ac:24:21:b9:
c5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:E5:FF:42:B0:F1:D4:8D:11:6E:CF:3C:A6:E9:1A:31:D5:BE:69:3F
X509v3 Authority Key Identifier:
keyid:3E:A3:F5:F6:65:BB:54:BD:5E:FC:E9:0A:25:65:61:09:86:3F:87:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqP19mW7VL1e_OkKJWVhCYY_h4Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/d342b8-f64d-43f3-875c-1d64b21d3c74/1/oOX_QrDx1I0Rbs88pukaMdW-aT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/d342b8-f64d-43f3-875c-1d64b21d3c74/1/PqP19mW7VL1e_OkKJWVhCYY_h4Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.116.0/24
Signature Algorithm: sha256WithRSAEncryption
86:3b:e5:ff:32:e0:6f:88:75:f2:a1:99:0d:b4:b8:8c:89:16:
57:6a:a2:59:94:c2:7b:c4:25:67:c8:53:b6:4a:3a:61:4f:93:
d9:d2:89:53:62:0d:8d:14:b9:5c:e4:df:ef:a2:7a:0a:0f:0a:
3c:c8:76:09:7f:99:e1:ef:c0:3c:b3:b4:ce:42:65:71:39:3b:
a2:57:cf:26:19:84:6f:c7:df:1b:ab:f5:99:18:f9:a0:c2:d2:
e1:5c:54:e9:1c:c8:74:db:18:20:1b:ed:0a:0a:fb:a7:f9:02:
81:c4:27:bd:ed:01:6c:b8:10:ca:13:a1:c6:6f:a2:6a:ac:55:
c9:58:4c:26:c7:a5:8d:31:78:fd:a2:d4:33:be:0d:6d:24:ad:
78:09:5c:55:4c:f8:57:01:31:87:a4:9f:ce:07:95:03:1f:93:
b7:7e:33:8c:c0:0a:96:92:06:1f:25:96:f3:d6:01:24:5f:90:
16:d5:a7:c9:a6:04:13:27:42:2a:d6:fa:fa:20:dd:81:f0:32:
f9:a6:11:cf:78:18:41:d7:d9:6c:83:d3:64:2a:66:b6:a3:a1:
03:7c:d2:46:8c:29:e8:fd:c1:87:7f:17:a7:3d:65:66:e0:9e:
91:1e:72:20:33:23:e9:a8:b1:09:26:7d:c8:ea:d3:7f:68:55:
c3:7c:60:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:32 2025 by rpki-client