Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/5be0bd-695b-453c-9bf4-a6ecb89918b4/1/TY1HYzYXnjTXfpQfJhcVfpo6mso.roa
File: TY1HYzYXnjTXfpQfJhcVfpo6mso.roa (raw, json)
Hash identifier: TlLy9wbNtCCm6xMOGCv9548F8r5TkcEB8O1cSFzzZfI=
Subject key identifier: 4D:8D:47:63:36:17:9E:34:D7:7E:94:1F:26:17:15:7E:9A:3A:9A:CA
Certificate issuer: /CN=9de68c02854f9dc6785912249522ab7509937e48
Certificate serial: 01856C813B9FD3313622859E79A3095937A6
Authority key identifier: 9D:E6:8C:02:85:4F:9D:C6:78:59:12:24:95:22:AB:75:09:93:7E:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/neaMAoVPncZ4WRIklSKrdQmTfkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/5be0bd-695b-453c-9bf4-a6ecb89918b4/1/TY1HYzYXnjTXfpQfJhcVfpo6mso.roa
Signing time: Sun 01 Jan 2023 08:44:46 +0000
ROA not before: Sun 01 Jan 2023 08:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 212.23.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:81:3b:9f:d3:31:36:22:85:9e:79:a3:09:59:37:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9de68c02854f9dc6785912249522ab7509937e48
Validity
Not Before: Jan 1 08:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4d8d476336179e34d77e941f2617157e9a3a9aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:8b:4f:52:b8:eb:ed:9e:a2:d0:1b:ac:2f:9f:
40:d2:64:5c:07:cc:63:bd:53:d9:bc:f3:6a:0b:33:
6b:25:cb:5e:8f:a6:7b:2f:34:cd:62:d7:a2:33:5f:
f7:6b:19:79:d3:03:5b:bf:04:90:01:48:19:71:16:
e9:82:39:09:52:82:a5:ea:ac:ae:c4:98:8e:b7:23:
61:9e:99:a0:c7:33:49:5a:6f:84:2f:f9:ff:83:94:
d0:3a:99:75:32:9b:51:fd:f7:cd:9f:13:50:e8:34:
02:2f:df:ab:d2:c2:89:37:97:38:44:7c:12:a8:36:
92:7d:d9:d3:13:77:a7:ca:8b:db:19:99:2a:3b:39:
e9:ce:89:2f:a9:50:ce:0d:a5:57:c9:84:78:45:90:
fc:1e:f4:80:0e:5a:e4:d0:63:a8:e1:77:e6:1b:ad:
4b:9b:52:32:32:ef:24:5a:b7:e3:2e:64:d6:a3:65:
35:fb:77:a1:32:90:e0:e6:8d:4b:d8:d4:78:60:a7:
08:d5:1c:b3:5e:c4:bc:73:a1:e8:1a:ee:4a:28:af:
c6:8b:f4:6d:99:60:2d:6a:51:8b:26:c9:9e:7c:86:
06:89:c4:6b:82:1c:fe:c9:8f:8d:64:59:05:c2:85:
79:06:d4:95:f9:99:04:9f:0c:c8:c7:c6:96:76:ca:
b5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:8D:47:63:36:17:9E:34:D7:7E:94:1F:26:17:15:7E:9A:3A:9A:CA
X509v3 Authority Key Identifier:
keyid:9D:E6:8C:02:85:4F:9D:C6:78:59:12:24:95:22:AB:75:09:93:7E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/neaMAoVPncZ4WRIklSKrdQmTfkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/5be0bd-695b-453c-9bf4-a6ecb89918b4/1/TY1HYzYXnjTXfpQfJhcVfpo6mso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/5be0bd-695b-453c-9bf4-a6ecb89918b4/1/neaMAoVPncZ4WRIklSKrdQmTfkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.203.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:95:81:99:78:58:24:60:2b:fb:2d:1f:27:14:1b:f4:be:a4:
51:4e:84:0a:d5:5f:ed:97:10:2a:80:f6:08:9e:3a:c8:af:fe:
1b:28:61:ad:cf:2d:e8:66:fa:69:98:03:bf:6a:30:a0:c1:b3:
96:1d:f0:76:d2:31:64:8e:fc:d0:c5:69:73:8e:ce:52:ca:ce:
df:ef:9a:3b:7d:ab:e7:d5:b1:87:34:26:c7:84:b9:0b:a8:82:
ff:ea:dc:ee:d1:71:0e:f4:09:d7:4b:ac:66:9e:cb:f9:34:32:
04:32:9e:5d:73:e5:31:12:6f:14:c1:c0:f8:c9:ee:79:3f:7c:
54:6b:33:0d:e9:20:4d:97:89:9a:ea:39:f4:aa:fb:fe:3e:b8:
f7:97:2e:85:41:4a:5b:3f:8a:ed:d0:b2:d6:15:8a:f8:ae:51:
38:20:9f:e7:79:1b:bb:a5:47:3a:3d:85:7b:a5:bb:4f:ac:89:
e6:ff:e7:b0:a4:36:55:e9:b9:74:e6:88:d9:55:a6:8c:c5:00:
17:70:87:26:a6:6d:ed:67:b0:e2:fe:03:7a:f8:59:6e:bc:b9:
e5:d3:8a:39:9f:9c:48:81:b6:d6:dc:a8:b8:c2:49:24:93:da:
04:5e:ef:a4:74:c3:49:d4:92:58:fb:a3:79:26:0e:f1:5f:76:
73:b0:ad:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 6 15:02:46 2023 by rpki-client on console-ams.rpki-client.org