Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/OH0TA8FLZUuxrTHfUici_GemsSU.roa
File: OH0TA8FLZUuxrTHfUici_GemsSU.roa (raw, json)
Hash identifier: ESfC2HFhSk0zkYT+9Nc+js22Dj3bE8thwsxB+8KYpS0=
Subject key identifier: 38:7D:13:03:C1:4B:65:4B:B1:AD:31:DF:52:27:22:FC:67:A6:B1:25
Certificate issuer: /CN=133897fc7a963f14215d58e1824144ab19fd5810
Certificate serial: 018572E82C5FC822D7305313B61FC5A8E897
Authority key identifier: 13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/OH0TA8FLZUuxrTHfUici_GemsSU.roa
Signing time: Mon 02 Jan 2023 14:34:56 +0000
ROA not before: Mon 02 Jan 2023 14:34:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 28803
IP address blocks: 80.233.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:e8:2c:5f:c8:22:d7:30:53:13:b6:1f:c5:a8:e8:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=133897fc7a963f14215d58e1824144ab19fd5810
Validity
Not Before: Jan 2 14:34:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=387d1303c14b654bb1ad31df522722fc67a6b125
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:46:a9:f6:ca:65:e4:d1:92:a7:0b:41:12:ea:
49:ec:58:16:6c:81:2d:86:a7:21:c2:f9:0a:f3:7d:
de:97:85:ea:de:5e:02:9e:94:b2:e3:13:30:37:4c:
19:ab:8e:7d:95:90:74:f7:8d:7c:0b:79:93:60:64:
89:e3:66:25:8d:d3:f2:95:82:b9:ed:6f:79:57:ff:
c6:26:1e:64:ab:00:90:0b:e4:74:53:a8:c5:a3:da:
4b:eb:35:99:44:80:28:de:a5:d6:0c:be:b0:64:09:
4c:0d:cd:8b:f0:50:6a:b4:42:e8:47:86:db:87:11:
c9:69:bf:13:e7:9d:02:63:7b:d3:ee:6c:30:3f:ff:
fb:f1:f3:5d:3e:dd:6e:a8:a2:e6:10:4f:bb:e2:0c:
48:ef:e8:4e:9f:65:55:79:90:38:8a:82:0a:59:64:
91:b2:7e:6c:a1:8a:08:9b:62:c2:b5:e5:7d:bc:19:
03:85:d0:22:be:bb:b3:4b:cc:c1:88:b6:5c:b1:10:
a7:3c:60:bc:7c:9d:27:52:32:49:ff:e3:3c:ed:fd:
81:ca:94:cb:ff:6a:d4:de:f6:4d:4b:f2:51:b4:1b:
2c:e7:a2:f4:60:d5:cb:b6:79:7a:8a:41:3d:50:9f:
9f:ec:6a:37:87:59:d8:41:04:90:e8:44:51:af:7c:
87:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:7D:13:03:C1:4B:65:4B:B1:AD:31:DF:52:27:22:FC:67:A6:B1:25
X509v3 Authority Key Identifier:
keyid:13:38:97:FC:7A:96:3F:14:21:5D:58:E1:82:41:44:AB:19:FD:58:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EziX_HqWPxQhXVjhgkFEqxn9WBA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/OH0TA8FLZUuxrTHfUici_GemsSU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/8be4af-62be-4180-bec9-f2b87f38b9dd/1/EziX_HqWPxQhXVjhgkFEqxn9WBA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.233.240.0/22
Signature Algorithm: sha256WithRSAEncryption
b1:d5:66:38:d8:97:07:0a:93:b9:b8:78:83:d3:c3:dc:23:fa:
bc:5b:6a:32:d2:83:8c:e4:43:81:5c:ce:28:db:e2:56:7b:50:
b2:a1:d1:35:60:e0:40:d9:96:8e:3c:7b:92:9b:1d:35:25:9f:
a6:66:7a:32:29:a4:16:65:53:c8:01:59:d2:79:df:b2:1a:0a:
8a:67:e0:f5:51:27:bc:e7:b6:0f:e2:f7:43:fd:60:fe:13:e1:
2d:df:a0:85:d8:e2:21:8b:5c:fe:4a:ca:bd:8d:a4:63:16:5d:
40:cd:4b:49:f1:77:4b:e6:fb:82:c8:f0:39:13:d1:8b:60:06:
e6:6f:9c:e4:08:ca:dc:5e:0b:0a:11:e7:86:db:f2:be:c9:5b:
19:6d:75:ed:f8:df:b1:a3:e8:61:c8:1c:69:55:06:df:81:39:
77:3f:98:10:1f:c2:e7:74:65:5e:3f:fd:93:e0:43:cc:7e:17:
df:62:f1:37:70:83:35:8d:e5:e7:a6:a0:cc:ce:fe:d5:e4:5c:
4d:25:cd:0a:a2:c8:10:c2:41:29:00:2e:87:5e:ae:0a:bb:30:
43:17:2c:63:d7:2c:e4:0c:3f:de:43:53:78:6c:c2:20:a8:c0:
d5:01:a6:66:c8:37:fb:fc:e6:19:b7:d7:7a:0d:fa:b5:8b:45:
56:77:8a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 15 08:34:53 2023 by rpki-client on console-fra.rpki-client.org