Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/bee73d-bda9-47ce-9cfb-b9fb48e43501/1/kTu8roq4t3NZ3CnKhtzNyjw7iqk.roa
File: kTu8roq4t3NZ3CnKhtzNyjw7iqk.roa (raw, json)
Hash identifier: F5Lsoc2Nri8LncZVSBk9glX3cYL4y+A33UbhbMwr8IE=
Subject key identifier: 91:3B:BC:AE:8A:B8:B7:73:59:DC:29:CA:86:DC:CD:CA:3C:3B:8A:A9
Certificate issuer: /CN=a26cc54f8b2a8db36143dcba14100a214a1a4185
Certificate serial: 015F9F2B
Authority key identifier: A2:6C:C5:4F:8B:2A:8D:B3:61:43:DC:BA:14:10:0A:21:4A:1A:41:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/omzFT4sqjbNhQ9y6FBAKIUoaQYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/bee73d-bda9-47ce-9cfb-b9fb48e43501/1/kTu8roq4t3NZ3CnKhtzNyjw7iqk.roa
Signing time: Thu 31 Mar 2022 16:04:24 +0000
ROA not before: Thu 31 Mar 2022 16:04:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 212.18.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23043883 (0x15f9f2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a26cc54f8b2a8db36143dcba14100a214a1a4185
Validity
Not Before: Mar 31 16:04:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=913bbcae8ab8b77359dc29ca86dccdca3c3b8aa9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6a:21:34:e3:ab:07:0f:89:81:2d:26:31:8c:
9c:ee:4f:76:ec:d3:d5:6d:91:fc:96:14:b6:a5:52:
00:0f:ed:6b:72:47:aa:2f:e7:5e:d0:1e:f6:a3:0b:
61:d7:81:7c:d9:d8:45:a1:f7:dc:70:30:7b:6c:9a:
90:71:11:60:88:17:29:1f:cf:cc:17:e4:5f:b5:06:
62:b9:69:32:1e:6d:65:81:e6:71:5e:90:2a:88:ea:
11:ce:31:3a:3d:d6:b8:b4:9c:a4:1a:bb:59:28:1d:
b8:d0:44:7d:09:64:05:a0:8e:70:e3:ba:70:61:a6:
6e:60:d6:d6:fb:b8:22:9d:ef:0f:b3:80:d9:7d:bd:
e7:27:c9:7f:9a:5a:d6:ad:ef:a4:1d:81:b7:71:4e:
60:83:ff:d8:64:ef:c0:8b:ad:a3:5a:37:01:8f:ab:
ea:cd:83:ad:9d:5e:85:1f:e6:b0:46:64:df:60:82:
49:1f:36:5f:d5:e1:a8:03:4c:d9:5c:2f:84:e4:f7:
6f:05:08:59:79:88:d8:d4:38:80:12:b6:87:fa:80:
b7:d9:ea:0c:ec:e7:b8:42:04:73:14:6a:a8:c7:17:
f9:38:22:74:1e:15:d5:35:f8:9b:e1:ff:3a:3a:13:
fe:77:6f:85:a0:bc:b9:55:30:6d:27:a3:50:1d:43:
95:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:3B:BC:AE:8A:B8:B7:73:59:DC:29:CA:86:DC:CD:CA:3C:3B:8A:A9
X509v3 Authority Key Identifier:
keyid:A2:6C:C5:4F:8B:2A:8D:B3:61:43:DC:BA:14:10:0A:21:4A:1A:41:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/omzFT4sqjbNhQ9y6FBAKIUoaQYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/bee73d-bda9-47ce-9cfb-b9fb48e43501/1/kTu8roq4t3NZ3CnKhtzNyjw7iqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/bee73d-bda9-47ce-9cfb-b9fb48e43501/1/omzFT4sqjbNhQ9y6FBAKIUoaQYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.18.114.0/24
Signature Algorithm: sha256WithRSAEncryption
16:78:1b:16:2e:56:82:bf:11:cd:8e:b6:e1:fc:47:f3:15:d0:
2d:31:87:78:bb:be:b4:18:da:c0:35:e6:3b:20:dd:9a:0f:3f:
5d:ff:d5:20:db:0c:d5:43:3a:5f:9d:5e:78:3d:91:85:af:7e:
f7:54:13:e9:e4:87:da:9c:6a:52:83:44:fa:a8:66:3e:f1:1f:
3e:62:1f:db:1f:64:a0:42:66:64:ba:d1:e6:bf:75:18:00:bd:
5b:3b:a9:73:2a:24:79:d7:7d:3d:28:79:4b:ce:ce:3b:f7:be:
f5:e5:ca:30:82:f7:35:6b:3e:07:9a:db:e5:14:45:26:83:a4:
32:2d:83:d6:63:91:4c:94:3c:93:56:7c:61:d1:2a:98:67:8d:
e3:c4:61:e4:ec:bb:31:97:8f:1f:53:1f:95:9b:29:e1:18:39:
ff:ab:40:90:7a:a6:4a:24:ad:3c:a6:ce:20:73:2d:5e:27:0c:
04:62:19:ac:52:ae:c5:84:c3:ef:4b:5b:a3:0e:2d:c4:0a:f6:
dd:71:47:fb:ae:d7:1c:c2:e2:39:54:16:0b:53:eb:19:ad:6d:
de:4d:14:fe:0a:9a:57:c8:26:2f:79:74:05:76:24:d5:d8:e0:
5f:18:f0:28:a4:89:04:ea:48:d7:d6:5f:83:24:29:13:56:cd:
86:9b:0e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:02 2024 by rpki-client on console-ams.rpki-client.org