Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/1221b4-1940-428c-86f8-f5f3a89b1d66/1/PXgVgqOgcy0VPyeLV0xZfDFMYOw.roa
File: PXgVgqOgcy0VPyeLV0xZfDFMYOw.roa (raw, json)
Hash identifier: ROuDxePcvNawMTReY/RxxkaTZe5gKK0iiHEm07NU5Qw=
Subject key identifier: 3D:78:15:82:A3:A0:73:2D:15:3F:27:8B:57:4C:59:7C:31:4C:60:EC
Certificate issuer: /CN=8de1e5999f135bfc29c350e81b045e79ef899ced
Certificate serial: 0185E44A9D15DE97671A23067A937D1461AD
Authority key identifier: 8D:E1:E5:99:9F:13:5B:FC:29:C3:50:E8:1B:04:5E:79:EF:89:9C:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jeHlmZ8TW_wpw1DoGwReee-JnO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/1221b4-1940-428c-86f8-f5f3a89b1d66/1/PXgVgqOgcy0VPyeLV0xZfDFMYOw.roa
Signing time: Tue 24 Jan 2023 14:59:33 +0000
ROA not before: Tue 24 Jan 2023 14:59:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43201
IP address blocks: 37.72.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:e4:4a:9d:15:de:97:67:1a:23:06:7a:93:7d:14:61:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8de1e5999f135bfc29c350e81b045e79ef899ced
Validity
Not Before: Jan 24 14:59:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=3d781582a3a0732d153f278b574c597c314c60ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:82:3a:bd:b5:dc:4c:50:3a:9c:c9:9e:be:6e:
0d:5b:0f:45:d3:69:e8:88:3f:fa:29:9e:b7:bd:41:
d1:6f:1d:ac:68:bb:87:06:9a:d2:32:84:54:d4:d3:
74:da:d7:e7:3b:11:2f:ea:7e:d0:5a:5d:a9:13:84:
fc:99:93:07:7a:64:57:8d:1b:6a:91:d3:9c:1b:b5:
a3:bb:4a:6d:e2:ff:f2:b8:a5:44:51:e9:75:d6:cf:
a5:11:fe:c6:23:61:44:8c:b4:fe:88:cc:84:93:34:
95:aa:30:40:42:af:b0:39:93:fe:66:4e:24:a2:f5:
92:bf:e8:8a:1c:2d:45:59:e9:93:bc:96:ee:6e:13:
48:1b:53:0b:ec:1e:6d:05:f2:11:32:04:34:c8:a7:
8d:57:a0:c7:a0:a8:1f:59:7a:81:00:ca:ee:af:64:
6e:97:9b:72:8b:21:85:84:2b:ae:d3:c4:da:29:13:
c5:f4:f3:10:3f:d1:9f:6d:93:43:25:e8:fc:7a:12:
bd:b5:6c:9c:c2:d6:7c:2f:9e:d4:0a:b7:a1:3d:ea:
e3:00:76:6c:d1:8f:56:7b:6d:77:99:5e:0c:a7:ed:
3b:38:d5:0b:9b:bc:36:f2:7f:6b:c1:d2:35:2d:60:
be:0e:af:95:07:5f:5e:2d:08:32:47:fe:55:74:a3:
bb:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:78:15:82:A3:A0:73:2D:15:3F:27:8B:57:4C:59:7C:31:4C:60:EC
X509v3 Authority Key Identifier:
keyid:8D:E1:E5:99:9F:13:5B:FC:29:C3:50:E8:1B:04:5E:79:EF:89:9C:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jeHlmZ8TW_wpw1DoGwReee-JnO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1221b4-1940-428c-86f8-f5f3a89b1d66/1/PXgVgqOgcy0VPyeLV0xZfDFMYOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/1221b4-1940-428c-86f8-f5f3a89b1d66/1/jeHlmZ8TW_wpw1DoGwReee-JnO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.131.0/24
Signature Algorithm: sha256WithRSAEncryption
57:8d:c9:ce:23:38:20:77:12:32:37:2c:11:38:9d:9d:7a:3d:
b7:d1:ee:f9:7c:e8:2f:66:fb:d2:40:3f:55:48:e1:e9:fe:95:
69:f4:1b:d6:7d:3c:18:05:90:a0:3a:98:f2:b0:b6:76:1f:6c:
ee:db:d8:1b:0a:89:9c:fc:11:23:2c:11:41:46:11:89:90:d6:
eb:b5:2c:2c:b1:1d:92:10:18:f8:1d:53:4a:70:fb:df:18:7d:
01:c7:26:71:e1:13:7d:d3:e6:95:dd:da:be:53:5b:b4:45:8f:
a5:d4:ac:0b:cb:c3:71:c9:99:65:c3:36:6a:6d:cf:b5:00:d5:
3f:d6:d6:8d:d0:b1:ec:41:e5:6a:2a:0b:4c:2a:40:b0:f4:cf:
1e:b2:5f:e7:b2:ef:c9:9d:40:ab:43:87:fc:1b:99:2f:68:1e:
e0:9b:49:69:87:9d:ad:88:14:80:7a:0c:b8:99:11:3d:2b:30:
1d:f3:bd:3e:a5:77:7e:c7:07:02:ae:22:d2:5d:fc:83:ae:ff:
62:32:06:d2:2f:5f:24:93:cd:b2:57:d7:7e:b6:c3:88:17:4f:
46:f4:d6:4f:df:50:30:85:be:b1:18:f7:40:8c:25:f8:2a:bd:
22:1e:60:84:78:94:bd:28:9f:09:62:a4:48:26:7a:1f:03:4b:
38:67:e8:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:46 2024 by rpki-client on console-fra.rpki-client.org