Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/03160f-1f57-4d02-86e7-78d09b48be06/1/gTHQPEKv4J-U2HqA9Q5ay8d3KzA.roa
File: gTHQPEKv4J-U2HqA9Q5ay8d3KzA.roa (raw, json)
Hash identifier: BY1ixiB0orHpe392dFHdifMXTiy1og1gdBNnFCUt4Us=
Subject key identifier: 81:31:D0:3C:42:AF:E0:9F:94:D8:7A:80:F5:0E:5A:CB:C7:77:2B:30
Certificate issuer: /CN=3b642a0e74ac3d26fdf1bf66b1778c348884b577
Certificate serial: 01108E95
Authority key identifier: 3B:64:2A:0E:74:AC:3D:26:FD:F1:BF:66:B1:77:8C:34:88:84:B5:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O2QqDnSsPSb98b9msXeMNIiEtXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/03160f-1f57-4d02-86e7-78d09b48be06/1/gTHQPEKv4J-U2HqA9Q5ay8d3KzA.roa
Signing time: Sat 01 Jan 2022 10:56:40 +0000
ROA not before: Sat 01 Jan 2022 10:56:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31400
IP address blocks: 152.89.237.0/24 maxlen: 24
152.89.236.0/22 maxlen: 22
152.89.236.0/24 maxlen: 24
152.89.239.0/24 maxlen: 24
152.89.238.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17862293 (0x1108e95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3b642a0e74ac3d26fdf1bf66b1778c348884b577
Validity
Not Before: Jan 1 10:56:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8131d03c42afe09f94d87a80f50e5acbc7772b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:83:a1:97:a5:64:c7:58:7e:66:e9:29:e7:15:
d1:c2:6e:33:ca:78:e3:58:e3:5d:fc:d2:f1:23:3c:
bd:e9:74:72:fa:bd:ad:c8:6d:28:87:77:b8:38:31:
b4:d2:f2:8f:12:47:24:84:8f:c8:9e:6c:24:d0:db:
5e:6c:de:21:68:2f:5d:03:ac:67:38:ca:0f:0f:36:
2e:a2:17:26:6c:26:cc:26:71:49:ba:2d:ff:ce:7e:
ac:82:67:ad:81:13:84:5b:61:c8:4c:21:a6:4c:c6:
c0:1e:82:1b:6e:93:01:7f:5c:2b:ed:77:de:04:67:
91:75:31:bc:2f:f2:03:8b:dc:84:f4:b3:f3:e7:59:
eb:77:bf:24:c1:ee:40:f5:14:4f:d7:5f:b7:41:b4:
32:7f:4e:1a:f9:1d:5a:fe:4c:8a:e2:8c:a7:da:04:
38:21:3b:8f:96:42:8b:c2:dd:a3:d7:42:bf:10:a1:
6b:64:3f:09:3b:ab:0b:ac:46:b0:26:49:b9:d6:8d:
90:1c:c7:36:37:ee:cb:e3:8c:f0:30:49:04:90:49:
58:06:43:06:40:58:1f:41:94:a9:d3:6c:81:d6:50:
0a:05:75:70:11:df:ed:90:bd:d5:12:a4:61:77:5b:
3d:fd:42:ae:7c:97:af:0f:1a:14:a2:6e:10:c0:2c:
d2:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:31:D0:3C:42:AF:E0:9F:94:D8:7A:80:F5:0E:5A:CB:C7:77:2B:30
X509v3 Authority Key Identifier:
keyid:3B:64:2A:0E:74:AC:3D:26:FD:F1:BF:66:B1:77:8C:34:88:84:B5:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O2QqDnSsPSb98b9msXeMNIiEtXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/03160f-1f57-4d02-86e7-78d09b48be06/1/gTHQPEKv4J-U2HqA9Q5ay8d3KzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/03160f-1f57-4d02-86e7-78d09b48be06/1/O2QqDnSsPSb98b9msXeMNIiEtXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.236.0/22
Signature Algorithm: sha256WithRSAEncryption
60:3a:34:df:c8:14:39:54:f6:9e:10:8d:11:5e:9f:9c:0a:7c:
9d:c0:28:ad:be:1c:5d:c5:67:a8:dc:01:79:cb:25:d0:16:3d:
e9:a0:8f:0e:7c:f7:43:01:37:5e:41:a0:d2:89:c5:11:8a:ce:
a5:f5:6f:1e:87:4d:91:70:5d:81:ed:b2:22:43:a4:3b:cb:81:
5e:83:4c:dd:69:0f:16:3d:e9:37:5e:3d:c0:0a:65:05:6b:53:
6f:9a:23:29:b3:46:5e:92:2a:ff:3f:e1:83:b6:8e:40:e1:92:
ff:bf:82:cb:5e:aa:61:f7:02:6d:5d:a0:ef:44:24:c1:4b:15:
bf:1e:e9:9c:d4:77:c9:c6:0d:1f:10:6f:5d:2d:f5:ee:92:a1:
ed:1f:d2:3a:2b:29:7f:30:bc:18:d8:43:8a:ac:bb:b9:70:91:
14:1c:d4:5e:aa:23:ee:49:89:d3:c1:40:50:f8:8c:6f:a5:44:
6c:fa:8d:7c:29:6b:a3:8d:1e:af:6a:84:d3:78:f6:50:6c:3e:
d8:e5:ca:72:45:24:87:36:b7:e8:12:0f:86:2f:6e:d9:13:e4:
3e:69:a1:7c:7d:61:de:b3:34:f1:26:65:9d:cc:7c:50:7b:40:
f1:dd:76:15:b0:09:be:b9:6f:c4:3d:e1:4a:87:67:4d:ba:8b:
3e:1c:4d:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:51 2024 by rpki-client on console-ams.rpki-client.org