Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/21ad1b-99ac-45bb-95d6-d441d50c3a5d/1/MS0hZD2wLjAJGUId6CN6pesatJs.roa
File: MS0hZD2wLjAJGUId6CN6pesatJs.roa (raw, json)
Hash identifier: 1Kj58ke1nE09C9KlWalq0g9wKbun3PFB+85YcLYmg+0=
Subject key identifier: 31:2D:21:64:3D:B0:2E:30:09:19:42:1D:E8:23:7A:A5:EB:1A:B4:9B
Certificate issuer: /CN=e3947ca3c48ca8867f32d347c195aad4aa63e889
Certificate serial: 088EB432
Authority key identifier: E3:94:7C:A3:C4:8C:A8:86:7F:32:D3:47:C1:95:AA:D4:AA:63:E8:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/45R8o8SMqIZ_MtNHwZWq1Kpj6Ik.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/21ad1b-99ac-45bb-95d6-d441d50c3a5d/1/MS0hZD2wLjAJGUId6CN6pesatJs.roa
Signing time: Sat 01 Jan 2022 05:51:39 +0000
ROA not before: Sat 01 Jan 2022 05:51:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 393398
IP address blocks: 212.115.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143569970 (0x88eb432)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3947ca3c48ca8867f32d347c195aad4aa63e889
Validity
Not Before: Jan 1 05:51:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=312d21643db02e300919421de8237aa5eb1ab49b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:58:43:9f:a6:48:56:9b:23:e3:eb:eb:fc:a0:
7a:cb:e1:06:b2:5f:4f:a2:e2:16:f0:91:26:86:89:
0d:49:16:03:b1:37:76:61:9a:2d:ae:a0:c7:27:63:
ed:12:67:c8:15:6e:04:c4:df:4f:10:6e:9d:97:78:
ab:25:ee:95:7f:dc:f7:54:d1:03:c1:88:86:5e:5a:
4a:57:35:3c:63:67:f6:a8:13:f0:1e:cd:ea:bd:31:
cd:94:a2:32:ac:f4:bd:57:6e:35:24:85:12:34:2e:
af:29:89:54:d0:a6:dd:06:2e:bf:d8:5e:ab:52:ea:
5c:55:51:30:1b:39:9a:3e:5e:63:a9:2a:68:d0:58:
3f:bd:03:65:99:16:85:32:ca:64:9d:bc:66:77:8a:
73:03:4e:ee:5c:ff:1c:94:98:6f:bb:cf:aa:9c:e9:
05:f5:56:fc:b8:80:c0:3f:15:5c:d7:8c:c6:1c:1a:
09:fc:c6:f9:03:82:f2:cc:d1:ec:c0:07:b2:43:0a:
51:79:85:36:3d:a8:24:a7:e7:b7:b3:5e:75:78:52:
62:a5:14:0f:1d:3e:25:9a:8f:f6:13:ac:75:20:0f:
3b:8f:3a:0c:08:3f:44:6e:1d:15:25:33:53:76:7c:
5e:86:92:72:57:38:f8:c4:24:da:b2:dd:f1:3f:3c:
71:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:2D:21:64:3D:B0:2E:30:09:19:42:1D:E8:23:7A:A5:EB:1A:B4:9B
X509v3 Authority Key Identifier:
keyid:E3:94:7C:A3:C4:8C:A8:86:7F:32:D3:47:C1:95:AA:D4:AA:63:E8:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/45R8o8SMqIZ_MtNHwZWq1Kpj6Ik.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/21ad1b-99ac-45bb-95d6-d441d50c3a5d/1/MS0hZD2wLjAJGUId6CN6pesatJs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/21ad1b-99ac-45bb-95d6-d441d50c3a5d/1/45R8o8SMqIZ_MtNHwZWq1Kpj6Ik.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.115.32.0/22
Signature Algorithm: sha256WithRSAEncryption
78:3f:86:95:49:c4:7c:c8:78:56:2f:cd:21:05:f0:94:4d:20:
43:4d:27:3f:b8:c1:af:e4:1d:d9:3d:a6:2f:ad:cb:1f:24:85:
02:ee:be:15:4f:8d:a1:62:5a:6f:17:bc:4f:d2:47:a3:70:42:
fe:5f:5b:28:89:35:80:83:f3:51:4e:8d:2e:cd:67:df:c4:f5:
c8:04:3c:c2:e3:6a:97:e2:33:6a:72:40:7a:06:25:78:97:e8:
0a:ce:31:cb:e1:32:4e:ec:cf:43:2d:63:32:17:36:8e:0b:51:
16:8c:7c:36:44:c8:7b:0e:3b:e2:90:fd:49:b4:53:89:a4:16:
7e:ff:8a:ad:f8:39:0e:e9:b1:3d:ab:e2:6e:7e:49:28:c6:0c:
a3:e8:0a:1d:6c:5e:d1:60:13:0d:01:83:6e:fa:79:91:28:fe:
7c:44:d1:cd:6f:7b:24:c6:08:c9:02:78:19:9c:df:82:4e:73:
26:67:e8:a8:2c:04:0a:4b:41:68:0d:c2:52:c8:96:b9:62:8b:
18:ed:f2:6c:5d:ac:9d:7d:8d:74:56:c9:c9:57:05:23:c1:a0:
9c:57:e8:2c:92:5f:59:84:31:4d:ff:5c:6a:25:1b:d0:1b:6f:
81:3b:33:86:c6:7f:f1:59:9e:09:21:ed:a4:09:d9:50:4d:0d:
0f:fc:55:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:57 2023 by rpki-client on console-fra.rpki-client.org