Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/c6a960-52e2-43e6-acc3-bdde5ac26831/1/QnEM7fkZeg9IeUNK1rZz8MH3PBQ.roa
File: QnEM7fkZeg9IeUNK1rZz8MH3PBQ.roa (raw, json)
Hash identifier: IjtpTg7izdYlRgCLnRZ2EVRY6DAEDD3Aj+OxbVBlI8I=
Subject key identifier: 42:71:0C:ED:F9:19:7A:0F:48:79:43:4A:D6:B6:73:F0:C1:F7:3C:14
Certificate issuer: /CN=262738c0d2dae04b3c9ec5504852f7ad74ce2152
Certificate serial: 09FA3F1E
Authority key identifier: 26:27:38:C0:D2:DA:E0:4B:3C:9E:C5:50:48:52:F7:AD:74:CE:21:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Jic4wNLa4Es8nsVQSFL3rXTOIVI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/c6a960-52e2-43e6-acc3-bdde5ac26831/1/QnEM7fkZeg9IeUNK1rZz8MH3PBQ.roa
Signing time: Thu 21 Apr 2022 14:20:22 +0000
ROA not before: Thu 21 Apr 2022 14:20:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211252
IP address blocks: 85.209.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167395102 (0x9fa3f1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=262738c0d2dae04b3c9ec5504852f7ad74ce2152
Validity
Not Before: Apr 21 14:20:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42710cedf9197a0f4879434ad6b673f0c1f73c14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:4f:1e:52:a6:7e:ac:47:35:87:9f:31:32:d0:
98:30:2f:34:9b:b0:04:9b:a6:6b:a5:66:68:e3:99:
1f:d1:31:52:85:09:65:1a:18:19:3e:1c:87:fd:8a:
96:2a:4c:be:16:63:27:fc:4d:d3:d6:06:ff:aa:00:
61:52:3a:49:71:52:6f:c2:7b:99:ce:8e:25:9f:d2:
6b:0e:c3:98:71:aa:d5:6b:d8:fa:0c:b1:a7:63:c3:
a5:2b:a1:39:aa:6e:1b:db:33:ba:2a:a6:b5:c6:a5:
2d:ad:09:aa:66:c9:88:2f:d2:bc:85:88:09:95:7b:
56:79:6c:32:a2:eb:ae:e3:3a:9e:07:db:1a:ec:c2:
d8:6d:7f:c1:39:e1:36:43:93:fd:0b:72:f0:b4:c8:
27:54:d2:25:0b:d8:80:94:8e:6d:50:59:42:c7:dc:
01:fe:4f:21:8c:21:1a:7f:e7:df:48:d4:78:c7:c4:
42:0d:ec:09:3b:f6:d3:11:d7:d9:42:55:d1:bf:44:
c5:04:e1:c5:6e:ac:cf:6c:ed:2d:d8:e7:ba:79:3a:
c9:26:77:e2:f6:a7:2c:ca:e1:d9:68:63:45:12:90:
fa:f8:e0:54:7f:a8:7b:9e:fd:89:ca:8a:83:b3:68:
0e:a7:70:4c:b1:72:48:8e:5c:65:5f:b1:ee:d5:58:
28:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:71:0C:ED:F9:19:7A:0F:48:79:43:4A:D6:B6:73:F0:C1:F7:3C:14
X509v3 Authority Key Identifier:
keyid:26:27:38:C0:D2:DA:E0:4B:3C:9E:C5:50:48:52:F7:AD:74:CE:21:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Jic4wNLa4Es8nsVQSFL3rXTOIVI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/c6a960-52e2-43e6-acc3-bdde5ac26831/1/QnEM7fkZeg9IeUNK1rZz8MH3PBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/c6a960-52e2-43e6-acc3-bdde5ac26831/1/Jic4wNLa4Es8nsVQSFL3rXTOIVI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.209.134.0/24
Signature Algorithm: sha256WithRSAEncryption
03:69:22:e5:45:8f:52:d2:b3:68:bd:4d:98:61:9f:7d:72:e4:
85:c3:af:1e:47:aa:cb:ef:2a:8c:74:fa:97:08:0f:ca:ae:82:
fb:64:fb:88:ea:80:d2:ff:d3:08:c8:9a:1d:01:3b:92:b3:e4:
d5:dd:47:7b:b6:2c:68:70:94:08:45:2d:af:89:9c:9f:81:6a:
ef:61:f9:87:d9:db:62:35:1c:22:9d:95:a8:28:56:e0:13:c9:
cd:74:6d:d9:1a:ef:28:ab:70:6b:36:60:70:77:61:14:3d:15:
9c:c1:a1:db:91:ea:e5:03:08:85:79:b8:72:61:c9:27:ad:b6:
ea:49:99:28:1d:fb:65:c6:32:d5:a4:66:7e:bd:b7:01:2a:bb:
7a:2d:05:34:c5:aa:29:0d:e7:61:c1:8c:8a:1b:e4:e7:81:bb:
bd:0c:54:d8:a2:32:07:50:26:82:ad:a2:6a:8c:86:8c:61:a2:
0c:56:fb:50:13:ca:f5:49:85:da:ee:57:24:f9:81:ef:b2:b9:
aa:eb:bf:40:49:8d:a6:49:05:22:4d:01:19:03:c3:42:f2:1a:
6c:68:c3:84:85:b4:9a:02:b2:7b:cc:48:60:ef:b1:b4:2d:d0:
45:ec:6f:54:9e:c8:bf:34:32:75:30:f3:9e:09:ae:5a:e0:a6:
49:f4:34:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:01 2024 by rpki-client on console-fra.rpki-client.org