Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/821bbf-a024-457f-9b93-09108f3bf204/1/Xm_9LuzwQbjAxdKhLdOWdf1O26Q.roa
File: Xm_9LuzwQbjAxdKhLdOWdf1O26Q.roa (raw, json)
Hash identifier: CreHoJZnjTE5moDl2q0+MHn+sgziUtdJFYtOAj8VnjA=
Subject key identifier: 5E:6F:FD:2E:EC:F0:41:B8:C0:C5:D2:A1:2D:D3:96:75:FD:4E:DB:A4
Certificate issuer: /CN=5fdb8a17efa4654923a35e06b2d05fc7c20d5ef2
Certificate serial: 01856D9D5203C3F13DCA18993D4EF2521E30
Authority key identifier: 5F:DB:8A:17:EF:A4:65:49:23:A3:5E:06:B2:D0:5F:C7:C2:0D:5E:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X9uKF--kZUkjo14GstBfx8INXvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/821bbf-a024-457f-9b93-09108f3bf204/1/Xm_9LuzwQbjAxdKhLdOWdf1O26Q.roa
Signing time: Sun 01 Jan 2023 13:55:04 +0000
ROA not before: Sun 01 Jan 2023 13:55:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 136744
IP address blocks: 212.23.208.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:9d:52:03:c3:f1:3d:ca:18:99:3d:4e:f2:52:1e:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fdb8a17efa4654923a35e06b2d05fc7c20d5ef2
Validity
Not Before: Jan 1 13:55:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5e6ffd2eecf041b8c0c5d2a12dd39675fd4edba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:08:0b:6d:5f:f0:c1:44:cd:f0:94:a3:7b:82:
2f:7c:b5:da:43:d2:9f:3d:53:a5:ac:3c:84:a8:cf:
18:d4:69:c3:0c:b0:2b:b5:f3:64:5f:a9:51:21:5b:
03:0a:0b:96:9b:1e:66:28:08:9b:8f:ca:16:8a:4e:
e6:fa:c2:c5:b2:95:f4:07:db:fc:e1:e5:a8:ae:31:
bf:2d:51:46:91:f8:19:a5:bd:16:11:0a:94:ef:2c:
2c:91:b6:c6:58:2c:00:7c:d8:d8:c1:af:95:83:d7:
ff:4a:f4:24:8c:eb:8b:d0:4e:7b:07:b8:aa:c3:f7:
0e:3f:36:09:6a:88:82:6b:0b:9b:b3:09:f9:79:aa:
cc:4c:7d:68:45:b0:7c:34:88:45:23:63:f5:2d:d7:
08:ae:77:1b:84:7a:29:79:b6:01:fe:14:8f:b5:c3:
85:9d:b8:6b:1b:d5:23:9f:24:dd:20:5b:1b:27:a6:
33:b5:6a:48:86:55:4c:cb:22:27:fb:7a:83:82:ed:
97:35:94:5f:d0:0a:54:94:87:15:70:1d:85:09:c7:
36:e8:ad:21:f0:48:17:81:69:6c:ad:33:3f:b9:73:
90:13:67:46:1b:48:99:0f:e3:33:53:e1:6f:3e:c9:
68:b6:88:3c:58:07:bb:9f:da:81:c7:27:d8:e9:82:
e2:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:6F:FD:2E:EC:F0:41:B8:C0:C5:D2:A1:2D:D3:96:75:FD:4E:DB:A4
X509v3 Authority Key Identifier:
keyid:5F:DB:8A:17:EF:A4:65:49:23:A3:5E:06:B2:D0:5F:C7:C2:0D:5E:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X9uKF--kZUkjo14GstBfx8INXvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/821bbf-a024-457f-9b93-09108f3bf204/1/Xm_9LuzwQbjAxdKhLdOWdf1O26Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/821bbf-a024-457f-9b93-09108f3bf204/1/X9uKF--kZUkjo14GstBfx8INXvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.208.0/24
Signature Algorithm: sha256WithRSAEncryption
17:a9:d7:48:15:cd:c1:af:29:1e:78:dc:34:d6:e8:61:25:f9:
bf:b8:27:09:0b:d7:b2:47:a2:c1:2c:1b:db:94:17:0e:2d:53:
7e:b1:53:c8:7a:f5:69:87:75:b0:85:1a:61:d6:51:1b:0b:89:
29:50:ec:8a:fd:76:44:a1:4a:2f:f6:d2:b3:fe:2e:1a:fa:1f:
41:e8:b7:fd:e3:14:a5:42:71:a6:a3:51:41:ef:ab:16:d6:da:
07:1e:3b:73:91:c8:9c:01:f9:e2:ec:84:36:4e:a1:31:66:86:
10:a0:56:65:e6:c9:6a:a4:c1:1b:74:9c:b8:7b:85:41:d8:f8:
bb:b4:0a:9e:06:b3:66:63:ce:66:e3:ca:c2:2e:7b:6d:18:31:
27:22:8f:7c:ce:59:5b:dc:ff:19:40:97:da:7d:73:4f:10:98:
20:1b:59:0c:02:04:7b:76:2d:59:99:99:2e:32:7f:69:2f:40:
07:65:c7:ff:15:e8:09:39:3b:32:aa:99:33:46:2a:ef:92:3f:
b9:63:fa:86:1c:59:91:67:c4:7b:25:0e:c6:05:02:1f:17:ed:
d5:f4:31:d0:24:85:01:8e:94:05:05:49:07:ee:d1:59:c4:52:
eb:3b:dc:91:dc:d0:76:bd:69:a8:11:60:d0:cd:b3:b1:5e:74:
bc:4c:e2:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 20 09:30:06 2023 by rpki-client on console-ams.rpki-client.org