Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/571ef4-af5a-4cbe-8910-d87f32d198b6/1/Od1KBySVSNFYiTP2IFw3T-28m-k.roa
File: Od1KBySVSNFYiTP2IFw3T-28m-k.roa (raw, json)
Hash identifier: 2rJdgfjhaz9WNPCQUOSju9JO1Lmy0OThNnl7Dg2unEk=
Subject key identifier: 39:DD:4A:07:24:95:48:D1:58:89:33:F6:20:5C:37:4F:ED:BC:9B:E9
Certificate issuer: /CN=09bdc2359b8ad2f0c60ef774d071d671ced80456
Certificate serial: 023A4B19
Authority key identifier: 09:BD:C2:35:9B:8A:D2:F0:C6:0E:F7:74:D0:71:D6:71:CE:D8:04:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Cb3CNZuK0vDGDvd00HHWcc7YBFY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/571ef4-af5a-4cbe-8910-d87f32d198b6/1/Od1KBySVSNFYiTP2IFw3T-28m-k.roa
Signing time: Sat 01 Jan 2022 09:00:41 +0000
ROA not before: Sat 01 Jan 2022 09:00:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 139.28.48.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 37374745 (0x23a4b19)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09bdc2359b8ad2f0c60ef774d071d671ced80456
Validity
Not Before: Jan 1 09:00:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=39dd4a07249548d1588933f6205c374fedbc9be9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:01:5b:6a:f1:89:f1:d2:ea:01:12:79:31:85:
a3:ea:29:9e:68:b4:de:a4:46:6d:b9:99:ca:51:f5:
f8:db:1d:a5:92:4b:cf:34:9d:00:bf:8d:73:6a:02:
22:83:14:7e:0a:67:f0:d2:49:c5:d3:50:d9:1c:28:
99:d8:b7:99:6c:56:d5:34:16:41:ed:9e:fc:00:2d:
59:5f:e8:2a:9f:38:c0:76:3f:b6:80:b3:4d:74:70:
e9:c2:35:18:7b:b4:d5:af:2c:78:39:04:36:e1:68:
b1:18:8a:63:b9:6f:6a:a1:13:50:63:65:dd:93:48:
4f:26:8a:54:9e:21:6a:5d:14:c6:08:09:60:69:cc:
25:1c:8d:07:33:c3:04:9f:b5:6b:fe:fa:6d:b2:fc:
19:0e:5a:0a:38:4f:a9:5a:29:1e:16:4c:a8:76:7e:
6f:38:4c:0d:68:92:42:11:19:41:3f:79:37:88:53:
b7:36:45:4c:74:9b:13:41:1c:de:25:ae:5a:04:a3:
c6:8f:81:e6:55:64:39:12:2c:58:96:e2:2a:ea:67:
95:59:31:03:71:01:34:3b:40:33:de:25:87:c2:56:
85:b5:17:3c:cf:c4:c6:a1:a1:06:ff:c9:09:37:d3:
6b:b4:e7:c8:9f:ec:bb:96:57:63:5e:77:24:f3:27:
fd:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:DD:4A:07:24:95:48:D1:58:89:33:F6:20:5C:37:4F:ED:BC:9B:E9
X509v3 Authority Key Identifier:
keyid:09:BD:C2:35:9B:8A:D2:F0:C6:0E:F7:74:D0:71:D6:71:CE:D8:04:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Cb3CNZuK0vDGDvd00HHWcc7YBFY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/571ef4-af5a-4cbe-8910-d87f32d198b6/1/Od1KBySVSNFYiTP2IFw3T-28m-k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/571ef4-af5a-4cbe-8910-d87f32d198b6/1/Cb3CNZuK0vDGDvd00HHWcc7YBFY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.48.0/22
Signature Algorithm: sha256WithRSAEncryption
22:96:a4:03:ca:d5:07:f5:0e:16:66:13:44:38:ac:09:8b:eb:
d9:c9:ea:b6:12:1b:5e:22:96:cf:7a:77:1c:ab:c7:76:13:2d:
bd:3e:94:05:22:e6:c3:3b:ac:4b:54:ea:c0:8c:08:d3:e4:88:
d4:4a:2f:3c:99:89:e2:fb:c9:48:1f:c5:17:ce:a8:31:ff:3e:
bf:c7:ae:7c:38:1b:5c:58:db:c3:ce:ed:b3:4f:ed:7b:27:61:
d7:c0:d4:dd:ac:92:4d:af:fc:e4:4d:bb:ec:0d:93:5e:ac:71:
af:ab:06:07:58:76:08:b2:7f:87:04:77:4c:0f:84:36:dc:b2:
6d:1d:46:3e:52:c2:e9:d7:98:d2:56:61:ad:f8:07:64:50:48:
4d:53:53:f7:07:ba:72:1b:b3:64:d9:61:0f:63:b6:95:f8:02:
f2:ff:42:c8:cf:17:0e:03:87:b4:25:f9:28:54:05:90:29:43:
3d:d9:d1:35:45:3d:c4:3e:3e:9e:c8:54:7b:d3:20:b0:3f:5d:
49:e9:a0:c9:c1:ed:9a:d9:b4:ff:7e:15:0f:81:22:f3:4f:88:
bc:b4:b3:f4:8c:7b:61:f0:e0:f7:18:ac:fd:56:09:32:e2:59:
50:8e:35:30:81:0e:ac:37:7b:3e:be:8e:ab:3d:6d:00:da:72:
9f:f5:b6:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:26 2024 by rpki-client on console-fra.rpki-client.org