Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/ffec15-7525-4b11-9ced-aabe41da64d9/1/Ay6PRbnjpOimRCPYRWIs4NUloeY.roa
File: Ay6PRbnjpOimRCPYRWIs4NUloeY.roa (raw, json)
Hash identifier: R/vHbMXbUe+pIEuOb5eEXvbHc/DUtNd770/UIbxuOf4=
Subject key identifier: 03:2E:8F:45:B9:E3:A4:E8:A6:44:23:D8:45:62:2C:E0:D5:25:A1:E6
Certificate issuer: /CN=6373975bd0b3f329ff954f951cffe7d867c2ca36
Certificate serial: 01856F020FA4EFB3FBF740E22614A6CFBE57
Authority key identifier: 63:73:97:5B:D0:B3:F3:29:FF:95:4F:95:1C:FF:E7:D8:67:C2:CA:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3OXW9Cz8yn_lU-VHP_n2GfCyjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/ffec15-7525-4b11-9ced-aabe41da64d9/1/Ay6PRbnjpOimRCPYRWIs4NUloeY.roa
Signing time: Sun 01 Jan 2023 20:24:44 +0000
ROA not before: Sun 01 Jan 2023 20:24:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 212.23.210.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:02:0f:a4:ef:b3:fb:f7:40:e2:26:14:a6:cf:be:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6373975bd0b3f329ff954f951cffe7d867c2ca36
Validity
Not Before: Jan 1 20:24:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=032e8f45b9e3a4e8a64423d845622ce0d525a1e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:30:89:ce:28:03:fa:20:54:08:53:5b:68:b5:
51:12:ff:b6:9d:01:e5:d7:ab:cb:00:30:02:01:aa:
00:d8:58:b4:3a:c8:82:6b:cc:d6:eb:d8:90:09:2a:
57:23:f9:90:ae:1f:4b:6d:94:11:73:46:e3:69:6c:
d0:0a:e8:b0:65:c7:a0:0c:e6:21:e9:32:ee:b2:51:
32:e9:3e:0c:2f:19:f7:d0:ee:c1:fa:c3:da:ee:60:
9e:63:e9:18:70:17:2a:81:92:f0:e0:61:63:08:2d:
07:eb:a1:1c:cb:5d:0e:14:59:4c:02:a3:b2:02:08:
73:a6:b0:7e:0d:38:0b:4e:4d:33:eb:07:f4:92:04:
95:a3:d5:e3:82:36:43:20:05:1e:a2:5a:d0:16:7b:
e3:2f:98:71:84:41:f3:10:79:11:41:7f:a7:18:30:
7a:33:e9:dc:70:82:ee:54:6b:33:4b:e6:d5:74:c4:
14:da:51:fb:38:09:ca:ff:57:63:a5:46:44:5b:18:
84:69:b7:f5:84:46:57:2d:93:86:95:55:bd:60:1d:
b0:b3:a3:e1:7b:02:7f:e1:11:16:4b:86:4c:3c:c6:
11:ec:b3:4d:e2:ac:44:1e:e7:26:59:46:92:79:fb:
58:1d:dc:ca:66:6d:9a:ca:70:cc:0b:87:8f:47:4d:
67:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:2E:8F:45:B9:E3:A4:E8:A6:44:23:D8:45:62:2C:E0:D5:25:A1:E6
X509v3 Authority Key Identifier:
keyid:63:73:97:5B:D0:B3:F3:29:FF:95:4F:95:1C:FF:E7:D8:67:C2:CA:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3OXW9Cz8yn_lU-VHP_n2GfCyjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ffec15-7525-4b11-9ced-aabe41da64d9/1/Ay6PRbnjpOimRCPYRWIs4NUloeY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ffec15-7525-4b11-9ced-aabe41da64d9/1/Y3OXW9Cz8yn_lU-VHP_n2GfCyjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.210.0/24
Signature Algorithm: sha256WithRSAEncryption
12:f6:04:24:af:d0:19:30:b8:88:ac:c2:7f:c1:e1:7d:b5:e6:
80:59:7e:4f:9f:db:ee:8e:46:9a:e1:2b:ed:a0:98:a4:0f:f2:
45:d1:29:08:94:cd:54:56:d3:64:c8:98:81:61:48:d2:44:9f:
53:35:6d:56:4d:69:03:50:90:db:33:50:63:2c:49:bf:01:f7:
6c:d5:11:fb:b0:d5:30:60:7d:82:58:bf:cc:31:da:13:9d:71:
f6:4c:24:6f:ab:e7:10:7d:ae:c3:d8:99:e3:fb:39:35:eb:0d:
fa:d9:d5:89:73:51:da:f1:47:46:80:54:a0:e9:53:7c:97:0d:
0f:7a:59:0d:0a:02:db:a2:5d:db:66:63:22:b6:5a:c2:12:80:
8f:d5:00:17:46:b7:49:3e:89:7a:2a:1f:b7:69:af:80:ca:f5:
e7:3f:d6:ca:e3:66:bf:2d:ff:89:02:4c:e2:bb:10:40:a3:62:
98:e4:cd:66:28:8c:11:59:84:54:9b:ab:ea:4c:50:ec:72:a7:
ec:96:41:cd:ce:b2:2f:02:cb:06:6a:9e:cc:e3:1e:5a:e8:87:
d8:81:11:45:89:b0:1c:e7:7a:e1:05:2d:1b:36:c7:5b:52:d6:
60:f2:83:11:7b:22:72:7c:b4:5e:1f:d9:6b:eb:0b:a8:89:08:
d2:86:dd:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 10 10:32:09 2023 by rpki-client on console-ams.rpki-client.org