Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/1de28c-1fac-4730-ac09-7d4b77f983b6/1/bXjU_vIxm81LonVjUhQqcPFpjaE.roa
File: bXjU_vIxm81LonVjUhQqcPFpjaE.roa (raw, json)
Hash identifier: VUtc9X8WlzNQEyGfQbAaP9cYwyYFknMLJ4cC7UXUGhs=
Subject key identifier: 6D:78:D4:FE:F2:31:9B:CD:4B:A2:75:63:52:14:2A:70:F1:69:8D:A1
Certificate issuer: /CN=37dee1ca0a165513b57c8050621b8c79b8e3a56f
Certificate serial: 01856D016D219081D25CBBC9762DC4B75A56
Authority key identifier: 37:DE:E1:CA:0A:16:55:13:B5:7C:80:50:62:1B:8C:79:B8:E3:A5:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N97hygoWVRO1fIBQYhuMebjjpW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/1de28c-1fac-4730-ac09-7d4b77f983b6/1/bXjU_vIxm81LonVjUhQqcPFpjaE.roa
Signing time: Sun 01 Jan 2023 11:04:47 +0000
ROA not before: Sun 01 Jan 2023 11:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212609
IP address blocks: 213.109.155.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:01:6d:21:90:81:d2:5c:bb:c9:76:2d:c4:b7:5a:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37dee1ca0a165513b57c8050621b8c79b8e3a56f
Validity
Not Before: Jan 1 11:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6d78d4fef2319bcd4ba2756352142a70f1698da1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:17:ad:2c:03:4e:cb:24:26:49:95:17:d9:ec:
b7:62:fc:02:2e:6b:ae:e0:1a:46:97:cb:00:64:4c:
94:1a:46:c1:48:e0:73:61:79:09:22:f1:9f:2b:a8:
ae:36:66:69:ab:50:d7:96:29:7f:f7:66:98:56:fa:
c6:66:5c:94:1a:ca:65:07:0a:b4:47:df:61:9f:d5:
f4:6c:80:6c:36:95:01:19:fb:0b:f7:d5:6e:c6:a7:
4b:69:27:8b:86:c3:a5:e2:a3:b3:f1:06:3a:92:7b:
ca:ba:53:df:e4:51:43:8d:1f:ef:a1:e7:ab:b2:5e:
8d:7e:27:89:19:90:b6:c3:35:75:db:88:a7:41:db:
46:7a:37:8f:6e:30:0e:c8:64:48:ce:ce:3f:17:1c:
25:f2:6c:47:f5:a8:dd:d9:9f:81:81:b2:9b:e5:7a:
88:d7:16:1f:b2:48:f7:73:c6:bc:fd:0d:55:7a:21:
96:de:b1:ef:6d:d9:a7:33:40:0b:b9:9f:dd:98:72:
0a:33:79:3c:f5:1f:2c:60:52:91:1e:b5:00:7b:cd:
c7:93:80:5e:b0:b6:b4:6c:16:7c:98:69:e1:a6:4a:
d7:f7:19:0f:6f:bf:e0:7b:2f:07:76:95:2d:e0:d0:
83:dd:42:38:18:7b:53:59:ac:78:c2:4a:fb:7b:6d:
4f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:78:D4:FE:F2:31:9B:CD:4B:A2:75:63:52:14:2A:70:F1:69:8D:A1
X509v3 Authority Key Identifier:
keyid:37:DE:E1:CA:0A:16:55:13:B5:7C:80:50:62:1B:8C:79:B8:E3:A5:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N97hygoWVRO1fIBQYhuMebjjpW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1de28c-1fac-4730-ac09-7d4b77f983b6/1/bXjU_vIxm81LonVjUhQqcPFpjaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/1de28c-1fac-4730-ac09-7d4b77f983b6/1/N97hygoWVRO1fIBQYhuMebjjpW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.155.0/24
Signature Algorithm: sha256WithRSAEncryption
58:6a:74:28:45:50:ea:4e:0b:b1:86:9a:0a:6d:2d:21:af:9d:
dc:26:a1:dd:4a:26:79:10:12:e0:6f:4c:b4:ce:25:8e:a7:20:
38:d5:84:f5:26:c3:46:47:48:4d:21:88:80:f3:c4:de:0a:66:
7a:03:24:dc:13:34:c3:00:a2:e8:e7:ed:1e:58:b1:81:19:a5:
ab:c7:1e:42:1e:6d:4a:0d:bc:10:24:cb:63:eb:07:21:ae:1a:
10:62:00:9a:82:62:ad:68:a3:69:28:f9:43:51:b9:61:96:e0:
3a:36:0e:8e:77:43:63:ff:46:68:f9:66:c1:53:13:99:b2:2c:
21:51:ca:55:26:d7:4c:4c:1e:74:73:b4:10:68:b2:4b:a2:da:
7c:37:2d:b0:81:8f:fd:ca:83:d2:36:fc:a9:9f:54:b1:17:47:
0a:ac:1c:02:d4:88:20:ca:33:68:80:91:62:b2:a9:14:53:9b:
06:dc:bb:b1:ad:c2:c2:d2:af:e2:e2:ec:88:e3:1c:22:bd:ac:
25:02:ad:9c:66:46:54:0c:41:86:28:be:73:40:f0:2f:25:a9:
28:62:dc:2e:7c:c6:c4:1f:96:58:7e:32:27:ac:a3:44:88:20:
27:58:40:d1:4f:3d:1f:f8:a6:82:48:9c:0f:5d:75:72:00:c5:
b5:4c:91:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:57 2024 by rpki-client on console-ams.rpki-client.org