Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/e2cc90-971f-4957-ae39-9e72a29de9e2/1/TeFzi6U5_q1SwpyicESUQv3uqmU.roa
File: TeFzi6U5_q1SwpyicESUQv3uqmU.roa (raw, json)
Hash identifier: 28h9nPf7lA3/7ZiEsTxdSDpAVJ4vpFb5oMGIiP87A8g=
Subject key identifier: 4D:E1:73:8B:A5:39:FE:AD:52:C2:9C:A2:70:44:94:42:FD:EE:AA:65
Certificate issuer: /CN=28e1f42c53f31d75d16156adba0fae02bf917a44
Certificate serial: 093A7355
Authority key identifier: 28:E1:F4:2C:53:F3:1D:75:D1:61:56:AD:BA:0F:AE:02:BF:91:7A:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KOH0LFPzHXXRYVatug-uAr-RekQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/e2cc90-971f-4957-ae39-9e72a29de9e2/1/TeFzi6U5_q1SwpyicESUQv3uqmU.roa
Signing time: Sat 01 Jan 2022 04:00:59 +0000
ROA not before: Sat 01 Jan 2022 04:00:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 52025
IP address blocks: 212.78.8.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154825557 (0x93a7355)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28e1f42c53f31d75d16156adba0fae02bf917a44
Validity
Not Before: Jan 1 04:00:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4de1738ba539fead52c29ca270449442fdeeaa65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f3:53:ce:5f:4a:c0:f7:e2:ef:4c:54:04:68:
bb:3f:b8:cb:99:01:a0:86:94:90:0f:b9:39:01:6e:
e9:97:33:2a:48:26:2a:b1:f5:3b:40:ea:42:16:b8:
7a:f1:6b:91:16:79:08:ce:50:ed:d2:d9:b4:dc:94:
5d:02:3e:f6:20:68:84:9d:30:e3:4d:25:17:43:ca:
25:78:3e:6e:94:85:52:19:c1:c9:93:90:d4:1c:81:
25:50:1d:97:2d:a3:4f:75:a9:97:dd:8b:cd:f1:f1:
5e:61:08:5f:fd:90:aa:26:72:d6:c5:d4:9c:af:24:
08:05:bd:14:48:f6:9a:a2:8e:5c:e3:dd:d6:f7:6a:
24:29:ff:ea:55:3f:87:fa:56:cc:b9:7a:32:c5:19:
b7:81:e0:66:43:31:35:b3:40:50:2a:e8:c0:92:66:
a2:b0:1e:8f:fa:6a:f7:da:d8:08:55:05:62:9e:e0:
9b:e1:09:c2:3f:9f:f7:30:0e:23:5e:6a:93:43:56:
75:b6:b2:90:77:66:1f:1e:32:7d:e5:59:84:ce:e8:
23:90:fb:33:ba:06:80:1e:91:de:5d:61:fb:94:69:
60:7c:ce:69:7b:f5:ef:c8:5d:7d:66:39:bd:01:9c:
c0:15:4e:01:3a:6c:59:26:a9:5c:a3:50:fe:1d:29:
53:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:E1:73:8B:A5:39:FE:AD:52:C2:9C:A2:70:44:94:42:FD:EE:AA:65
X509v3 Authority Key Identifier:
keyid:28:E1:F4:2C:53:F3:1D:75:D1:61:56:AD:BA:0F:AE:02:BF:91:7A:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KOH0LFPzHXXRYVatug-uAr-RekQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/e2cc90-971f-4957-ae39-9e72a29de9e2/1/TeFzi6U5_q1SwpyicESUQv3uqmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/e2cc90-971f-4957-ae39-9e72a29de9e2/1/KOH0LFPzHXXRYVatug-uAr-RekQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.78.8.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:86:65:72:d5:a9:be:5c:9b:fb:14:37:cd:74:0d:f9:c6:cb:
d3:61:2e:7a:d2:20:1c:b7:99:f8:bf:a5:b9:f7:a6:b4:02:b3:
a4:32:e2:30:6d:85:6b:71:47:b6:2b:5d:99:ab:93:f8:3c:65:
e7:f6:21:41:57:eb:be:66:03:5a:55:f7:c9:ab:16:09:f3:18:
f0:90:c6:75:9c:85:ac:19:9b:c1:0c:87:48:9f:ac:c3:93:8d:
98:6d:90:44:3c:64:20:ed:f9:ff:25:ae:12:c9:5c:59:00:ae:
2d:81:19:22:50:4d:fc:75:2e:0f:43:fa:7f:5c:66:07:d9:00:
99:83:29:56:8e:13:ca:3c:58:5d:27:ef:db:66:4b:99:a7:01:
3c:52:43:d7:3b:1f:a3:9a:6f:b7:3b:f6:81:6e:a1:43:ba:41:
43:6b:70:43:55:21:c9:ea:b6:ad:f3:ca:dc:12:ce:e3:cc:34:
9d:0f:98:ee:6a:74:d9:57:93:37:20:19:fe:6e:92:92:93:f1:
ed:14:58:75:7a:a2:66:e8:6d:d5:76:af:fe:08:44:a8:20:78:
58:a7:75:75:76:b5:64:d8:f0:85:02:7b:04:9a:06:f1:c2:29:
c3:ce:53:fe:aa:86:e9:4a:46:f2:4b:53:cb:2e:95:a3:c7:c7:
3a:16:e2:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:31 2024 by rpki-client on console-fra.rpki-client.org