Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/5c565e-0427-4097-bc12-eb70ba1bde7b/1/cmZtEmmvVvBiewiOfgUGSTzUgxU.roa
File: cmZtEmmvVvBiewiOfgUGSTzUgxU.roa (raw, json)
Hash identifier: nIKsBYNYaWi0h+A5Xv+O85YnyFR5A0a3WnlwCffeThQ=
Subject key identifier: 72:66:6D:12:69:AF:56:F0:62:7B:08:8E:7E:05:06:49:3C:D4:83:15
Certificate issuer: /CN=d52865e83b701b8ba934101c34c11ebdf3fa83bb
Certificate serial: 01856FE729093DE40D8148F879D97126CB9C
Authority key identifier: D5:28:65:E8:3B:70:1B:8B:A9:34:10:1C:34:C1:1E:BD:F3:FA:83:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1Shl6DtwG4upNBAcNMEevfP6g7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/5c565e-0427-4097-bc12-eb70ba1bde7b/1/cmZtEmmvVvBiewiOfgUGSTzUgxU.roa
Signing time: Mon 02 Jan 2023 00:34:58 +0000
ROA not before: Mon 02 Jan 2023 00:34:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 37.140.250.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:e7:29:09:3d:e4:0d:81:48:f8:79:d9:71:26:cb:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d52865e83b701b8ba934101c34c11ebdf3fa83bb
Validity
Not Before: Jan 2 00:34:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72666d1269af56f0627b088e7e0506493cd48315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:ac:bd:4c:99:67:8c:61:ae:24:dc:43:29:bd:
6c:00:c8:56:49:91:27:cd:c9:16:e0:f9:50:45:27:
44:39:63:f3:1b:a0:55:ce:18:62:de:b0:ba:8d:91:
64:21:80:be:51:ce:10:26:19:64:b2:37:d8:4e:ff:
da:c1:95:6c:78:95:09:f0:75:f1:92:92:4e:06:7e:
f0:70:db:ab:f4:03:ef:90:11:c3:84:d4:67:af:10:
d6:82:65:34:1f:e6:e0:68:b8:28:f9:99:25:9a:bc:
3b:b5:dc:a6:4d:2c:55:61:28:a6:b9:06:bb:59:ff:
a7:b7:e5:9c:68:75:7c:f6:64:a2:e3:ad:e2:d1:fd:
cf:12:85:aa:1f:28:93:84:f5:26:a2:16:99:bd:62:
19:01:48:37:fd:86:63:33:69:d5:8a:24:a5:cc:44:
45:d0:df:37:c8:e4:13:d2:5f:07:89:ca:7b:8d:e0:
f7:dd:6d:bb:fc:cd:79:d8:53:da:26:6f:2f:f3:1b:
32:97:09:3b:0b:51:45:69:e2:13:14:b7:86:ae:e7:
b8:a8:e8:4e:85:41:a5:67:db:2c:dd:64:d7:4c:85:
12:47:a5:00:b8:b0:0e:75:d4:55:a9:35:c2:1f:88:
3f:1c:7c:e4:87:b0:c3:36:9a:c0:79:9c:3d:64:3e:
aa:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:66:6D:12:69:AF:56:F0:62:7B:08:8E:7E:05:06:49:3C:D4:83:15
X509v3 Authority Key Identifier:
keyid:D5:28:65:E8:3B:70:1B:8B:A9:34:10:1C:34:C1:1E:BD:F3:FA:83:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1Shl6DtwG4upNBAcNMEevfP6g7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5c565e-0427-4097-bc12-eb70ba1bde7b/1/cmZtEmmvVvBiewiOfgUGSTzUgxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/5c565e-0427-4097-bc12-eb70ba1bde7b/1/1Shl6DtwG4upNBAcNMEevfP6g7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.140.250.0/24
Signature Algorithm: sha256WithRSAEncryption
04:ec:00:a0:3b:fa:10:6a:6e:af:65:a0:d4:0a:71:25:41:b2:
33:b8:54:5b:1e:a7:05:48:9a:e5:9c:98:50:af:fb:42:05:72:
28:2c:89:fa:cf:d3:f0:af:8c:6d:fb:9f:a6:03:60:69:14:0e:
68:71:03:dc:c0:84:3c:2f:c3:6b:a8:85:93:68:e2:77:87:34:
78:d9:dc:25:0d:b0:63:5a:f6:05:16:ca:f6:5f:c1:0f:99:92:
c0:ed:bd:8d:eb:bd:a1:8e:7d:b5:31:2f:29:a1:97:3e:2f:69:
df:bb:c1:5a:16:e4:b4:28:ef:5d:37:4c:0e:7c:6d:9f:07:f0:
22:26:b5:b3:35:bc:d2:4a:c2:e0:54:35:2e:5b:04:61:83:d4:
f1:d5:ab:07:2e:94:49:26:3c:66:f2:62:93:be:67:54:fa:62:
4a:49:08:4d:2b:8a:06:a2:2d:29:cf:cc:be:ce:c5:f1:1f:38:
f6:10:e6:13:7f:fb:cc:c8:7f:08:ae:cb:85:32:67:e7:df:a7:
f0:bb:0c:80:a4:23:b9:be:2c:43:7c:48:9c:ee:d2:06:de:01:
63:99:82:a7:cf:69:00:8f:91:0e:13:f5:32:84:82:58:e8:5c:
a6:68:33:e3:85:f3:35:c9:3e:f0:0c:57:d5:42:bd:e1:5c:ff:
02:b1:e5:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 6 12:52:00 2023 by rpki-client on console-ams.rpki-client.org