Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/35458e-8fd4-4e8a-92f0-cac8fb8ef99d/1/w0jFQr_AYVXNplFuscZDn0t-qa4.roa
File: w0jFQr_AYVXNplFuscZDn0t-qa4.roa (raw, json)
Hash identifier: glYE/O/yg9a8GoqRZclEQtQYNMe5I0zlqQWqARTBh5w=
Subject key identifier: C3:48:C5:42:BF:C0:61:55:CD:A6:51:6E:B1:C6:43:9F:4B:7E:A9:AE
Certificate issuer: /CN=58720d4ecee34fdac69a42194d015494147b4e43
Certificate serial: 088EA3AF
Authority key identifier: 58:72:0D:4E:CE:E3:4F:DA:C6:9A:42:19:4D:01:54:94:14:7B:4E:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WHINTs7jT9rGmkIZTQFUlBR7TkM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/35458e-8fd4-4e8a-92f0-cac8fb8ef99d/1/w0jFQr_AYVXNplFuscZDn0t-qa4.roa
Signing time: Sat 01 Jan 2022 08:02:16 +0000
ROA not before: Sat 01 Jan 2022 08:02:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35280
IP address blocks: 5.182.212.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143565743 (0x88ea3af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58720d4ecee34fdac69a42194d015494147b4e43
Validity
Not Before: Jan 1 08:02:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c348c542bfc06155cda6516eb1c6439f4b7ea9ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ca:6c:1c:e2:ef:a8:48:36:c2:e8:d5:a5:f8:
ab:82:23:34:bf:e0:48:f5:e4:84:68:ea:d5:f2:1a:
e9:cf:6c:48:df:c0:76:36:7e:94:b0:c8:39:08:c7:
d0:f8:6c:ad:23:72:40:ed:27:b9:3d:98:73:15:21:
43:ab:1b:75:98:40:ee:ad:7d:55:f6:68:26:df:73:
00:77:c4:4f:8f:3e:45:57:24:00:96:46:0b:c6:18:
b3:0b:7d:b8:ac:e4:66:f3:cb:cd:23:04:fd:94:0e:
78:c2:6f:f0:63:63:a9:8b:44:f6:d4:b7:f1:07:c7:
64:79:60:f2:72:47:4e:47:f8:a7:7f:27:a4:5d:b3:
d8:ca:e8:bf:f3:3f:f3:92:96:10:fb:27:01:a1:83:
c4:5e:0a:2d:51:3a:0a:7b:6d:7c:2e:c9:5b:f7:7d:
f0:49:fa:ba:c4:e0:a7:79:f1:56:bd:d5:da:7e:46:
11:14:a3:5b:64:50:d0:43:45:6c:bf:63:ae:32:c8:
06:08:71:73:d5:ba:09:a3:5e:04:2f:3e:8c:87:4d:
ab:78:71:dd:89:c7:dc:e5:15:23:cc:1e:99:31:46:
59:1b:0e:f8:1a:49:ac:ea:d1:3e:b5:6c:ba:0d:a3:
a7:be:f3:12:e8:41:eb:84:82:a4:2f:10:d4:fc:c8:
ad:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:48:C5:42:BF:C0:61:55:CD:A6:51:6E:B1:C6:43:9F:4B:7E:A9:AE
X509v3 Authority Key Identifier:
keyid:58:72:0D:4E:CE:E3:4F:DA:C6:9A:42:19:4D:01:54:94:14:7B:4E:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WHINTs7jT9rGmkIZTQFUlBR7TkM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/35458e-8fd4-4e8a-92f0-cac8fb8ef99d/1/w0jFQr_AYVXNplFuscZDn0t-qa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/35458e-8fd4-4e8a-92f0-cac8fb8ef99d/1/WHINTs7jT9rGmkIZTQFUlBR7TkM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.212.0/22
Signature Algorithm: sha256WithRSAEncryption
18:3d:bc:ea:e8:d1:b1:8c:ff:4a:63:54:53:ba:f2:02:28:7e:
4f:92:31:08:6b:8d:93:de:ce:c4:dc:6e:db:7f:77:74:16:cf:
21:f0:1b:aa:79:5a:bb:ad:90:bd:dc:94:03:f8:3c:2a:51:7e:
82:d0:9f:88:4e:16:bf:f2:91:2b:e9:98:a2:d8:01:e4:37:ff:
0b:a9:2f:1a:4e:fe:13:34:51:b0:75:d7:1e:28:8b:97:23:c7:
09:d0:4f:b3:8e:f9:ea:63:6d:50:dd:a6:d3:9b:3e:7c:82:fc:
43:6c:58:f8:80:91:74:20:87:5d:16:13:0f:75:cb:aa:f4:0a:
12:0b:d1:b7:18:3c:53:31:b6:93:7f:ec:31:a7:07:c6:9b:74:
f5:e7:02:bf:9b:d8:12:04:37:32:7d:1f:fc:35:1c:b7:0e:37:
7e:fd:26:f4:ea:b4:70:3c:0f:24:33:e9:88:90:1b:04:f6:65:
da:71:4b:eb:06:b2:c9:94:ea:a9:8f:98:72:04:b0:bc:6d:6a:
6b:ff:36:2d:da:0e:26:97:02:46:94:8e:23:af:ab:7e:e8:40:
49:dd:19:e3:e8:91:ba:ab:71:84:da:64:89:01:f9:62:ad:99:
b4:a3:32:f8:1e:99:fd:8a:f3:fc:57:04:a1:5d:0f:97:e8:bf:
b6:84:36:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:02 2024 by rpki-client on console-fra.rpki-client.org