Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/53e415-2876-4653-9a0a-70798463f50f/1/67BmH9ssEffzywn5K1I0t_XsY6Y.roa
File: 67BmH9ssEffzywn5K1I0t_XsY6Y.roa (raw, json)
Hash identifier: L5HjXCBpUCpPQ5FW0dBVgKpIZrkLu+xtOevagxniy4A=
Subject key identifier: EB:B0:66:1F:DB:2C:11:F7:F3:CB:09:F9:2B:52:34:B7:F5:EC:63:A6
Certificate issuer: /CN=bb641d5a52f440f7989e3c1f616e95ae7cf50ba8
Certificate serial: 0188916FEE9A8B9931B099593EDE0D81C9AD
Authority key identifier: BB:64:1D:5A:52:F4:40:F7:98:9E:3C:1F:61:6E:95:AE:7C:F5:0B:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u2QdWlL0QPeYnjwfYW6Vrnz1C6g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/53e415-2876-4653-9a0a-70798463f50f/1/67BmH9ssEffzywn5K1I0t_XsY6Y.roa
Signing time: Tue 06 Jun 2023 16:00:11 +0000
ROA not before: Tue 06 Jun 2023 16:00:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 399686
IP address blocks: 212.23.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:91:6f:ee:9a:8b:99:31:b0:99:59:3e:de:0d:81:c9:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb641d5a52f440f7989e3c1f616e95ae7cf50ba8
Validity
Not Before: Jun 6 16:00:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ebb0661fdb2c11f7f3cb09f92b5234b7f5ec63a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:f0:c2:8f:e4:34:77:42:99:d9:7d:da:5b:40:
5f:6d:54:f4:d5:d4:14:64:98:01:cd:b3:77:31:36:
87:29:f0:e4:de:bf:8a:00:e6:aa:61:00:74:f2:75:
21:5f:99:08:be:b6:13:18:db:42:bc:08:6c:06:ba:
a1:bb:db:6c:c8:6a:7b:c8:d5:9a:57:4a:59:46:03:
8c:65:fc:b9:ce:b0:d0:55:19:13:e4:b9:1b:4e:15:
53:da:34:c8:97:f2:e7:33:2b:ca:e2:de:ab:8f:79:
a4:b3:3d:24:77:20:f7:b6:03:71:43:ed:78:00:b4:
f5:86:ea:60:a1:70:60:95:2e:ac:54:0f:ef:ee:04:
50:cb:03:bf:d5:d2:b2:f7:74:4e:90:50:ed:d1:be:
67:65:8b:94:56:32:15:20:ec:60:9a:68:5d:a9:d1:
a5:1e:ca:3c:b5:aa:f6:49:05:91:2a:e0:a6:d5:0b:
6f:7d:35:9d:60:96:58:c1:be:4d:ee:de:cd:7b:52:
22:6a:d5:9d:84:56:6f:99:bd:95:ef:6e:5c:05:2f:
a3:65:0b:4f:9e:7e:d6:6e:52:18:72:7d:bf:57:cb:
d8:9b:5e:55:d9:3b:f1:b4:56:91:58:d4:a3:33:56:
f2:be:b3:bc:0e:9a:8a:47:02:44:e5:98:d0:d1:7e:
02:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:B0:66:1F:DB:2C:11:F7:F3:CB:09:F9:2B:52:34:B7:F5:EC:63:A6
X509v3 Authority Key Identifier:
keyid:BB:64:1D:5A:52:F4:40:F7:98:9E:3C:1F:61:6E:95:AE:7C:F5:0B:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u2QdWlL0QPeYnjwfYW6Vrnz1C6g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/53e415-2876-4653-9a0a-70798463f50f/1/67BmH9ssEffzywn5K1I0t_XsY6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/53e415-2876-4653-9a0a-70798463f50f/1/u2QdWlL0QPeYnjwfYW6Vrnz1C6g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.207.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:64:8a:43:cc:f1:19:c0:cf:09:ab:82:a5:d1:52:26:1d:08:
d3:ca:c8:71:62:0f:17:0d:97:47:fe:8c:aa:5e:ae:c4:fd:d6:
45:29:f6:8f:e1:46:27:f1:fd:98:87:3e:9b:7c:39:ea:59:87:
4d:8a:8e:c4:a0:47:1e:ff:d3:7b:03:2c:dc:1b:0a:e8:44:a0:
21:ee:e5:db:a7:46:1b:92:2e:c9:3b:b3:4a:84:ec:fa:cb:f7:
50:9c:bc:a0:36:52:b9:b3:06:9a:4d:76:06:d5:85:0e:71:5c:
36:1c:92:79:65:e2:53:23:cb:7c:a3:41:f8:a0:27:fd:50:ae:
d4:93:b9:01:63:08:a6:1f:52:f2:47:ca:1f:c9:9b:9d:95:5c:
75:39:04:86:4d:79:e6:98:47:70:a3:d2:56:33:f1:f4:2f:8f:
57:2e:9d:72:7b:04:a3:60:d3:87:1e:62:ae:4a:b4:b0:3c:a7:
af:4c:31:20:a1:b1:b1:79:93:2e:71:22:dc:91:a8:d5:fa:c2:
53:4b:b2:6e:e0:0a:ca:79:e5:60:0e:00:f1:b6:d1:26:72:09:
69:92:d5:5b:61:fc:10:d2:78:4d:8c:83:14:d1:85:8d:37:e0:
88:a9:a0:0d:a5:f8:a8:cd:6b:d8:0b:3b:93:fd:2c:81:9c:6d:
49:cd:85:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:38 2024 by rpki-client on console-ams.rpki-client.org