Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/14c2fd-0306-4814-96c2-c62e172c109d/1/hPQXptkIL7KdzigtaxjAry42ssI.roa
File: hPQXptkIL7KdzigtaxjAry42ssI.roa (raw, json)
Hash identifier: cLu1XO9BZpFSWQBDKJhs72iKI1BP9elvV9Pftgi+AnM=
Subject key identifier: 84:F4:17:A6:D9:08:2F:B2:9D:CE:28:2D:6B:18:C0:AF:2E:36:B2:C2
Certificate issuer: /CN=06998430947b2d102bbc59fe723b2aabde683f42
Certificate serial: 01824B9D19C033152E836DEF75BB8A39F35B
Authority key identifier: 06:99:84:30:94:7B:2D:10:2B:BC:59:FE:72:3B:2A:AB:DE:68:3F:42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BpmEMJR7LRArvFn-cjsqq95oP0I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/14c2fd-0306-4814-96c2-c62e172c109d/1/hPQXptkIL7KdzigtaxjAry42ssI.roa
Signing time: Fri 29 Jul 2022 20:19:23 +0000
ROA not before: Fri 29 Jul 2022 20:19:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 212.107.4.0/23 maxlen: 23
212.107.6.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4b:9d:19:c0:33:15:2e:83:6d:ef:75:bb:8a:39:f3:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06998430947b2d102bbc59fe723b2aabde683f42
Validity
Not Before: Jul 29 20:19:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=84f417a6d9082fb29dce282d6b18c0af2e36b2c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:94:28:e9:93:ef:a7:d6:1c:69:fd:8c:1e:e5:
7d:7e:98:1f:e4:52:7d:f5:79:c9:78:8f:d3:22:d7:
98:98:fb:25:ab:d3:9a:bb:5b:1a:9c:ac:78:a7:cf:
94:3d:97:01:8a:44:23:ec:fc:c6:c4:0a:92:4b:c9:
8d:cd:f9:14:ac:76:5a:d4:2c:e8:9a:de:ef:b2:96:
47:ab:fa:7f:f3:ce:ed:73:c5:30:1d:01:26:7e:13:
fa:7a:ef:5c:4e:82:74:c4:d4:76:5b:28:21:fa:c8:
2a:c7:00:d2:12:84:87:c2:ec:cc:84:54:f1:d3:a9:
98:ae:d3:ac:c4:35:1b:88:81:e1:86:c7:ae:45:aa:
f7:7e:bd:23:a5:d8:f2:d7:99:e4:fd:69:76:81:c2:
29:3b:77:90:b3:a0:74:90:8b:0e:5f:59:38:3e:ac:
24:e5:35:7e:cb:31:59:55:c9:e2:e8:0f:9b:40:02:
96:de:fa:df:bd:b4:ce:2d:67:5b:73:75:32:f0:8b:
81:dc:5d:1e:3a:26:a9:f3:f0:1a:1f:2c:00:07:2b:
17:38:a3:9a:b3:0b:b9:78:35:d8:76:42:7f:6e:26:
3e:9d:7e:cc:3c:ba:8e:24:2b:e5:87:d9:33:ff:be:
cd:50:2a:4a:5f:2b:92:c9:c1:88:e1:c5:70:89:9f:
b3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:F4:17:A6:D9:08:2F:B2:9D:CE:28:2D:6B:18:C0:AF:2E:36:B2:C2
X509v3 Authority Key Identifier:
keyid:06:99:84:30:94:7B:2D:10:2B:BC:59:FE:72:3B:2A:AB:DE:68:3F:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BpmEMJR7LRArvFn-cjsqq95oP0I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/14c2fd-0306-4814-96c2-c62e172c109d/1/hPQXptkIL7KdzigtaxjAry42ssI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/14c2fd-0306-4814-96c2-c62e172c109d/1/BpmEMJR7LRArvFn-cjsqq95oP0I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.107.4.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:47:0b:2a:31:2d:2f:85:52:5e:fc:2a:b9:db:55:aa:45:a3:
3f:f7:ab:75:14:b8:87:eb:ee:57:30:f1:c0:c8:2f:0e:ae:7e:
b3:ce:39:3e:c4:0d:82:24:d8:66:a7:8c:85:46:5a:cd:66:9b:
da:f9:2c:8f:86:6f:3f:54:ec:41:97:47:f4:56:e6:4f:a6:91:
ce:70:18:52:7c:31:11:1e:3f:c4:5d:94:98:99:5d:cd:62:af:
69:ac:b9:23:b2:65:2b:84:99:75:62:d5:d5:5e:58:68:c8:64:
23:d6:54:d5:95:1b:30:07:48:86:99:c3:df:b2:a4:2f:53:9a:
21:e0:4f:f4:29:34:ff:7a:51:f7:ee:ee:9c:fe:1f:26:64:32:
c3:8a:1e:c2:2f:aa:2e:dc:34:f6:cc:8c:ab:31:42:f0:c9:28:
4d:a4:e9:7f:d8:77:65:68:02:86:75:4a:88:f1:70:43:8b:a4:
ae:5f:94:13:66:f6:6b:93:20:34:b7:df:b4:a2:9b:a0:fe:bb:
74:86:75:1e:b5:91:ca:5f:1a:de:c8:04:06:d1:2b:09:a7:d7:
74:c9:8b:69:56:ea:e6:89:0d:b1:17:b6:18:44:20:c1:54:a2:
03:7a:c2:7c:3b:2b:7b:c8:8d:d1:4a:fe:10:8b:9f:a0:2a:29:
b7:8c:d8:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:12 2023 by rpki-client on console-fra.rpki-client.org