Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/bf13cd-6ecc-44dc-a1e8-fb2bb9cf2c69/1/QU84bW8bo70u4yLMv6jrBVy3Ynw.roa
File: QU84bW8bo70u4yLMv6jrBVy3Ynw.roa (raw, json)
Hash identifier: aIVagmpwQZhVM19gMs0JY1DKkpS/bQ7W75sRa7NCrAc=
Subject key identifier: 41:4F:38:6D:6F:1B:A3:BD:2E:E3:22:CC:BF:A8:EB:05:5C:B7:62:7C
Certificate issuer: /CN=6adbd4a857b2f94523c0b1485cc4808b1aa77143
Certificate serial: 0368738A
Authority key identifier: 6A:DB:D4:A8:57:B2:F9:45:23:C0:B1:48:5C:C4:80:8B:1A:A7:71:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/atvUqFey-UUjwLFIXMSAixqncUM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/bf13cd-6ecc-44dc-a1e8-fb2bb9cf2c69/1/QU84bW8bo70u4yLMv6jrBVy3Ynw.roa
Signing time: Sat 01 Jan 2022 13:05:21 +0000
ROA not before: Sat 01 Jan 2022 13:05:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 109.236.52.0/24 maxlen: 24
109.236.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57176970 (0x368738a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6adbd4a857b2f94523c0b1485cc4808b1aa77143
Validity
Not Before: Jan 1 13:05:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=414f386d6f1ba3bd2ee322ccbfa8eb055cb7627c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a5:10:d8:ba:9f:4c:64:ce:ea:8e:61:ff:7c:
d9:28:23:ee:ed:5d:34:62:4b:e9:9f:6b:88:16:fe:
d6:22:83:56:5a:c3:67:0a:ca:0c:42:ce:f4:c6:66:
3b:e6:15:c1:91:b2:0f:8f:f2:63:0b:f7:d0:0c:36:
2c:9b:bb:9b:3d:f8:9b:9d:0b:f7:d5:f6:6d:7c:c4:
ec:3e:67:c5:51:d5:0b:c6:7b:36:81:c9:6a:88:eb:
64:90:67:bb:da:ba:a7:a1:75:63:3f:84:a3:ca:4d:
d3:1f:25:6a:ca:dd:51:e7:d4:75:0d:20:58:ee:37:
ca:88:ad:79:e9:67:a5:5f:66:0a:f5:4f:c7:60:7f:
75:0f:8c:93:e2:52:11:a7:20:d3:62:2f:b1:f4:c5:
74:8d:a4:e4:28:fe:41:74:72:7d:a5:e4:fe:d5:32:
cd:b4:5f:25:00:9f:cc:83:4f:2b:9b:48:46:51:da:
84:73:7c:68:6c:25:d6:15:9d:62:db:d6:11:b5:76:
18:5a:15:0b:95:08:63:1a:99:86:59:77:31:7d:2b:
d7:04:04:4c:ed:18:e3:53:fd:dd:ff:75:fc:90:5e:
6b:1b:9e:51:61:c7:e9:70:a0:50:1d:7e:17:c8:f3:
b0:26:7f:7e:42:da:39:f6:74:1c:2f:a3:63:e4:f7:
c7:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:4F:38:6D:6F:1B:A3:BD:2E:E3:22:CC:BF:A8:EB:05:5C:B7:62:7C
X509v3 Authority Key Identifier:
keyid:6A:DB:D4:A8:57:B2:F9:45:23:C0:B1:48:5C:C4:80:8B:1A:A7:71:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/atvUqFey-UUjwLFIXMSAixqncUM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/bf13cd-6ecc-44dc-a1e8-fb2bb9cf2c69/1/QU84bW8bo70u4yLMv6jrBVy3Ynw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/bf13cd-6ecc-44dc-a1e8-fb2bb9cf2c69/1/atvUqFey-UUjwLFIXMSAixqncUM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.236.52.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:fa:45:8e:bf:c0:82:2d:ef:79:28:f3:04:04:0d:ba:25:c0:
eb:06:ab:79:f0:94:81:1d:96:5e:1f:62:9d:9e:38:74:3d:61:
90:b7:bc:15:65:80:d8:7a:2c:58:78:92:bf:e7:b2:87:7f:bf:
a5:3a:84:bf:ab:8f:a2:ba:41:47:86:68:6b:a4:8f:20:fa:f1:
78:8f:db:8e:26:4e:86:3d:68:48:3f:33:dd:35:ff:57:22:1e:
bb:7d:bd:6c:f1:8d:00:5f:67:e3:ad:2f:39:eb:c4:99:a7:12:
b7:10:28:72:14:86:5a:4c:32:a4:cc:56:b8:98:5f:90:3d:9d:
71:8d:d4:b4:ac:c1:3c:ad:40:21:a1:ad:8f:37:ea:bb:f8:eb:
17:51:1e:69:8a:96:29:7b:53:23:0e:6f:67:41:f3:69:db:dc:
92:12:28:7c:33:d5:f2:de:ad:87:58:e4:59:a9:33:71:c5:f2:
6d:97:7a:a3:b0:f3:25:6e:75:08:3a:9f:e6:d4:85:f3:68:75:
73:96:f7:36:af:9f:be:32:aa:5e:7c:be:ee:1d:1a:a0:3b:be:
ee:7a:3b:a1:80:84:81:70:88:4d:03:58:f4:7e:6a:a2:f0:8a:
be:ce:fa:8b:f9:51:2e:1f:bd:7a:98:b1:b2:ef:d8:61:3f:35:
af:8b:40:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:51 2024 by rpki-client on console-ams.rpki-client.org