Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/ffec15-7525-4b11-9ced-aabe41da64d9/1/Bjnx4krZev-0SfyMZgGGH49tBa4.roa
File: Bjnx4krZev-0SfyMZgGGH49tBa4.roa (raw, json)
Hash identifier: zRmllmlf2i7qCyEj05m9xV8P/9QjFgfX2c6ImbbEIWg=
Subject key identifier: 06:39:F1:E2:4A:D9:7A:FF:B4:49:FC:8C:66:01:86:1F:8F:6D:05:AE
Certificate issuer: /CN=6373975bd0b3f329ff954f951cffe7d867c2ca36
Certificate serial: 017387
Authority key identifier: 63:73:97:5B:D0:B3:F3:29:FF:95:4F:95:1C:FF:E7:D8:67:C2:CA:36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y3OXW9Cz8yn_lU-VHP_n2GfCyjY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/ffec15-7525-4b11-9ced-aabe41da64d9/1/Bjnx4krZev-0SfyMZgGGH49tBa4.roa
Signing time: Wed 20 Apr 2022 16:20:47 +0000
ROA not before: Wed 20 Apr 2022 16:20:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 212.23.210.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95111 (0x17387)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6373975bd0b3f329ff954f951cffe7d867c2ca36
Validity
Not Before: Apr 20 16:20:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0639f1e24ad97affb449fc8c6601861f8f6d05ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:60:d4:ef:aa:f2:bc:df:a4:f5:24:a8:5d:f2:
bd:63:2e:66:7c:d5:07:1c:54:b4:d5:a0:d7:b5:27:
00:7a:91:c4:8e:4a:da:3f:45:05:f1:24:e6:70:4c:
9d:69:5d:ea:6a:27:94:f3:43:5f:8e:d1:0c:af:50:
09:1c:56:d7:e7:3d:c1:98:6c:b1:b5:90:63:be:bf:
25:35:b2:5f:a9:df:57:98:39:fd:32:4d:43:98:03:
95:b1:0e:70:a9:be:13:bf:e3:8d:2f:06:e8:77:1f:
78:9b:31:a2:c8:67:cd:cf:e7:12:0f:18:85:16:aa:
64:0e:79:ae:d3:46:19:df:6d:21:59:e4:2c:93:8c:
dc:1d:30:64:52:95:42:7a:45:ee:c7:b9:e9:30:82:
5b:65:df:a4:e8:32:04:dc:f3:7a:09:14:56:b4:67:
0d:29:20:ec:99:17:8b:da:08:4b:ca:72:e5:e3:61:
99:84:70:38:00:7e:e9:03:e6:0a:3f:c6:8e:29:cc:
d5:42:f6:18:dc:54:59:96:c6:9b:81:0f:f8:2e:89:
dd:45:88:94:cf:84:29:61:0b:46:b4:da:e2:bc:b0:
5f:56:98:a0:c0:cc:46:d1:cf:b2:e4:27:81:6b:b5:
48:7f:cf:62:cd:47:98:bd:60:1d:a6:c4:bb:d0:7f:
c7:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:39:F1:E2:4A:D9:7A:FF:B4:49:FC:8C:66:01:86:1F:8F:6D:05:AE
X509v3 Authority Key Identifier:
keyid:63:73:97:5B:D0:B3:F3:29:FF:95:4F:95:1C:FF:E7:D8:67:C2:CA:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y3OXW9Cz8yn_lU-VHP_n2GfCyjY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ffec15-7525-4b11-9ced-aabe41da64d9/1/Bjnx4krZev-0SfyMZgGGH49tBa4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ffec15-7525-4b11-9ced-aabe41da64d9/1/Y3OXW9Cz8yn_lU-VHP_n2GfCyjY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.210.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:10:02:88:55:77:43:c5:6e:1b:f9:8b:4c:b0:eb:cb:a9:76:
e8:2d:65:a2:b9:fe:25:bb:b2:12:31:69:d5:21:b8:cf:60:26:
1f:02:3a:02:f1:7f:96:be:a2:2e:a8:57:f7:6e:c8:14:21:41:
d5:bd:33:96:a3:2f:9a:cf:f3:31:e8:db:2e:45:20:ac:c2:c8:
0c:ea:30:05:09:ef:75:3f:44:c1:2c:73:14:a0:90:ae:33:87:
7a:e9:c6:09:a8:c6:93:16:cb:d5:2a:ab:1a:82:e3:f6:44:0d:
0c:4b:f1:16:93:c8:bf:04:48:ee:b1:08:c6:f6:a0:c1:5d:32:
1a:8a:9b:43:89:f2:a7:79:58:e3:fe:78:30:a8:c6:15:b6:f0:
cb:d6:ed:f0:8f:ab:e6:d8:b3:c3:50:78:6a:1c:f7:40:b4:fa:
e2:79:e1:de:1a:b9:59:8c:0e:5b:69:a9:bc:b8:a1:2c:c0:60:
84:39:de:ab:04:e9:c8:07:cd:21:4b:62:44:1c:84:52:41:50:
9f:0e:93:0a:20:36:57:35:be:d1:c3:0b:89:c4:d8:e0:f8:4c:
ab:9e:72:7d:45:3a:bf:17:3f:28:00:ac:bc:4c:16:0f:ea:db:
b9:ba:e1:10:24:ff:dd:91:9b:90:29:a4:e9:f6:7e:cd:9c:d6:
e1:36:87:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:42 2024 by rpki-client on console-fra.rpki-client.org