Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/rMH-qD3FuviitrO3QioGAjNZCII.roa
File: rMH-qD3FuviitrO3QioGAjNZCII.roa (raw, json)
Hash identifier: sDCMzF/r0qL4iGQQrhDpzQZ8HBe0JQW97AU3MrUxjxU=
Subject key identifier: AC:C1:FE:A8:3D:C5:BA:F8:A2:B6:B3:B7:42:2A:06:02:33:59:08:82
Certificate issuer: /CN=edc7cb00b3d414afa97c482eab5fdc76a1634b3d
Certificate serial: 0188DFC9FC72CDC33C35E16080C4F6A0639F
Authority key identifier: ED:C7:CB:00:B3:D4:14:AF:A9:7C:48:2E:AB:5F:DC:76:A1:63:4B:3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7cfLALPUFK-pfEguq1_cdqFjSz0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/rMH-qD3FuviitrO3QioGAjNZCII.roa
Signing time: Wed 21 Jun 2023 21:08:56 +0000
ROA not before: Wed 21 Jun 2023 21:08:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 174
IP address blocks: 212.23.206.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:df:c9:fc:72:cd:c3:3c:35:e1:60:80:c4:f6:a0:63:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edc7cb00b3d414afa97c482eab5fdc76a1634b3d
Validity
Not Before: Jun 21 21:08:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=acc1fea83dc5baf8a2b6b3b7422a060233590882
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:17:b2:86:6b:e3:73:72:8b:98:94:bc:07:c9:
8d:29:b3:cc:23:12:65:e3:01:e4:3c:8f:37:29:0a:
9a:40:83:1f:59:46:8a:15:ce:d5:dd:fb:6d:2a:e8:
7e:83:5c:19:a3:a2:74:16:94:6f:47:84:b9:21:cb:
ff:c2:db:12:03:68:65:dc:74:1c:02:76:8d:26:32:
42:84:47:76:b6:09:0f:47:b6:a4:83:00:91:b0:ad:
3d:73:8a:e2:09:7d:fe:b9:70:74:0b:00:d4:58:aa:
66:12:85:55:cd:74:97:29:17:de:9e:37:e6:9f:e6:
0d:aa:fc:93:9a:4d:5e:33:93:e2:c7:29:f3:70:39:
95:a9:d8:04:43:91:69:3a:8b:b3:a0:20:bd:2b:35:
e4:4b:73:12:e4:c1:46:a1:fb:2d:13:81:01:d6:8c:
1a:69:b4:61:6d:36:3b:4a:59:b2:e7:17:21:12:90:
0e:c2:37:89:49:ff:f2:2c:8b:05:90:cc:e1:82:20:
cd:f0:df:53:27:03:4a:a2:cf:85:6e:e2:03:39:05:
ae:b3:ec:4e:18:16:bf:f1:1a:42:0f:8a:51:c1:85:
b1:cc:55:75:4c:25:75:3c:3e:80:01:80:51:84:65:
9b:85:a1:06:9d:df:20:27:ee:ea:8e:31:97:e3:7c:
a5:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:C1:FE:A8:3D:C5:BA:F8:A2:B6:B3:B7:42:2A:06:02:33:59:08:82
X509v3 Authority Key Identifier:
keyid:ED:C7:CB:00:B3:D4:14:AF:A9:7C:48:2E:AB:5F:DC:76:A1:63:4B:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7cfLALPUFK-pfEguq1_cdqFjSz0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/rMH-qD3FuviitrO3QioGAjNZCII.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/4e20f1-5689-411c-9379-c159165de0c7/1/7cfLALPUFK-pfEguq1_cdqFjSz0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.206.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:9a:e6:6f:f7:29:7d:4e:5e:1f:31:27:da:dd:29:97:fd:2e:
a1:cf:d6:1c:54:96:0e:9f:9c:23:f5:59:2d:8d:61:96:af:55:
46:0a:25:38:4a:a8:91:c8:d6:37:df:35:ee:84:b3:9b:c4:56:
ef:bf:02:52:fd:de:05:4c:36:15:45:e9:2e:57:70:d8:ab:89:
95:71:4c:99:dd:c9:06:6b:96:6d:54:73:ad:7a:3e:78:bb:cd:
b9:91:bd:ec:9b:5d:c0:d7:7f:9c:18:0b:1c:11:62:97:e1:a8:
25:2d:75:38:61:63:eb:0a:00:05:d7:97:21:e5:4c:90:2c:d9:
8d:d9:23:ca:c7:c8:f4:9d:9e:57:61:f6:93:8f:bb:a7:b0:21:
33:29:75:ac:a5:f4:3a:46:03:f2:e2:2c:f2:51:25:6f:4d:e2:
ef:dc:ba:59:65:15:7f:77:5d:99:bc:fb:6e:ff:95:ca:20:6a:
aa:cc:ac:bc:11:03:d8:58:e1:de:38:23:d4:46:79:07:2f:db:
4e:ea:5e:9f:35:64:89:f3:38:08:51:d2:4b:1f:e1:7d:0d:cd:
69:40:fc:fd:68:86:67:23:b6:1c:6f:4f:e0:21:f0:05:2b:8e:
76:a3:ea:c0:fe:9f:c7:87:30:e3:b7:89:80:17:ad:a5:a5:f9:
fe:37:29:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:44 2024 by rpki-client on console-ams.rpki-client.org