Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/eEQyOpyukGvvgxjzt5ec8LY2fgA.roa
File: eEQyOpyukGvvgxjzt5ec8LY2fgA.roa (raw, json)
Hash identifier: QDstcCGuN2LHYVU1FOqw4rJ5cgVbF2Yf3QzZ3ih6q1U=
Subject key identifier: 78:44:32:3A:9C:AE:90:6B:EF:83:18:F3:B7:97:9C:F0:B6:36:7E:00
Certificate issuer: /CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Certificate serial: 085205F6
Authority key identifier: C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/eEQyOpyukGvvgxjzt5ec8LY2fgA.roa
Signing time: Sat 01 Jan 2022 00:51:25 +0000
ROA not before: Sat 01 Jan 2022 00:51:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63213
IP address blocks: 86.38.204.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139593206 (0x85205f6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4698585e5ebd11c969c7ed4a320edafc9d17822
Validity
Not Before: Jan 1 00:51:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7844323a9cae906bef8318f3b7979cf0b6367e00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:45:cf:cf:7b:60:94:e5:fc:f3:35:92:e1:d3:
93:af:8e:0d:bd:d7:c0:f5:8b:c4:0e:c3:d6:ed:70:
f2:b5:18:58:6b:2d:87:23:7c:ec:ae:7c:59:9f:39:
81:a7:3f:eb:2e:c7:04:e3:6d:3e:b5:3c:da:32:d2:
24:a1:cc:75:43:92:72:55:36:5d:95:c4:a1:e3:3f:
80:3a:5d:bb:bd:3e:96:e3:c6:62:28:e6:f2:21:19:
55:e0:6c:99:c2:ef:1d:ef:2e:4f:40:18:3c:cf:87:
cd:07:61:dd:12:f9:16:2b:58:b6:5e:04:53:d6:11:
f8:3d:f7:82:07:61:ca:93:3f:0d:7f:cf:ed:0a:83:
ec:75:cb:c5:4f:c0:b3:fc:4c:82:14:4b:c1:d3:bb:
f9:73:c1:3a:d8:ba:88:2a:60:b9:2d:2f:80:ae:9d:
fc:d6:64:99:3a:66:02:85:17:4e:c0:2b:fc:1d:26:
c6:29:00:0d:5d:4e:b3:cf:f1:c1:81:c1:c0:02:3d:
d8:62:d6:f6:11:c1:77:ec:d3:df:90:a2:dc:bd:db:
cc:9c:fe:54:9f:65:55:68:79:7b:10:77:22:73:02:
75:48:79:fa:8c:ef:f9:90:b2:d9:95:15:d1:99:8d:
2e:52:85:8c:47:f3:46:4e:b7:cb:6f:aa:3d:cc:9a:
c3:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:44:32:3A:9C:AE:90:6B:EF:83:18:F3:B7:97:9C:F0:B6:36:7E:00
X509v3 Authority Key Identifier:
keyid:C4:69:85:85:E5:EB:D1:1C:96:9C:7E:D4:A3:20:ED:AF:C9:D1:78:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xGmFheXr0RyWnH7UoyDtr8nReCI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/eEQyOpyukGvvgxjzt5ec8LY2fgA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/5310da-6821-4673-9e98-9d6001f78a70/1/xGmFheXr0RyWnH7UoyDtr8nReCI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.38.204.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:86:9d:a5:e1:0b:cb:4c:f4:5d:99:46:bc:59:60:17:1c:8d:
e3:82:d5:21:ca:2b:52:6d:0b:0d:64:1c:ee:97:df:5a:6e:8e:
19:7c:50:03:75:af:26:62:7f:1a:5c:90:50:bd:32:b0:2a:1e:
56:02:1f:7a:bb:9b:29:68:ba:45:b1:74:31:54:f9:f9:28:25:
64:ef:b4:58:06:b0:88:29:72:d1:e2:ba:0c:33:d4:db:4c:44:
5c:ec:8e:2c:38:7b:be:d6:35:c0:6d:65:7d:3a:51:65:ec:8a:
05:88:5f:d2:ba:7f:c6:c0:ad:ca:95:76:ce:78:82:f1:d4:34:
5a:86:c0:c4:62:33:a3:f7:01:3e:03:bc:e1:f2:9c:c7:8a:e6:
95:91:13:ef:be:e2:49:87:0d:d6:4f:48:30:4d:1d:23:c5:6b:
93:25:46:d0:51:3a:38:a8:f6:1d:12:cd:2c:af:d6:d4:e6:83:
af:4b:61:b1:9f:fb:e2:72:a9:e1:bc:e6:77:b6:03:64:94:ec:
40:cd:1b:5e:16:1c:42:3f:d2:aa:cf:d6:5d:35:2a:02:d3:2d:
45:bc:90:4e:a1:49:a5:e1:d3:24:d4:f0:a3:fe:09:7e:1d:31:
c2:f0:5c:81:f2:fe:ba:a9:82:de:e2:f7:9e:55:d5:b5:f9:78:
95:c9:4f:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-fra.rpki-client.org