Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/xXvqFlQR-nPtwgwI-KLgtmtc2NY.roa
File: xXvqFlQR-nPtwgwI-KLgtmtc2NY.roa (raw, json)
Hash identifier: X7QNRRjvYjT0ei+A5ITPrI62IOyTYLX4H5/JystTmX8=
Subject key identifier: C5:7B:EA:16:54:11:FA:73:ED:C2:0C:08:F8:A2:E0:B6:6B:5C:D8:D6
Certificate issuer: /CN=62fa765a393369c96d8d836f23f76e67489c7dde
Certificate serial: 08D96301
Authority key identifier: 62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/xXvqFlQR-nPtwgwI-KLgtmtc2NY.roa
Signing time: Sat 01 Jan 2022 07:55:55 +0000
ROA not before: Sat 01 Jan 2022 07:55:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64236
IP address blocks: 212.102.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148464385 (0x8d96301)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fa765a393369c96d8d836f23f76e67489c7dde
Validity
Not Before: Jan 1 07:55:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c57bea165411fa73edc20c08f8a2e0b66b5cd8d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:60:1d:39:a0:07:e7:d0:85:88:24:2a:92:41:
e2:c8:a1:d9:5c:f3:15:96:0f:d8:09:ab:16:8d:73:
d4:7c:16:b4:f8:01:b8:52:23:f3:74:82:4f:52:6a:
8f:7c:60:6a:4d:6e:27:25:77:69:89:74:8c:0e:da:
77:10:b1:87:61:83:ea:79:5c:be:44:7f:5d:31:6d:
7e:09:ef:f0:fb:ee:6a:89:81:d2:53:c5:86:0e:a7:
76:53:e1:32:63:bf:72:28:d6:97:6e:a2:c7:cd:fc:
36:33:b0:8a:06:34:61:1f:11:92:a0:77:a9:60:e3:
d1:fd:46:77:c3:ca:f5:04:33:d9:26:83:25:05:5b:
a4:08:a8:79:35:36:2b:af:72:33:8f:ff:a5:ea:dc:
6b:8a:f7:5c:d4:ae:c9:ca:95:c7:f1:b4:e2:b0:32:
08:2d:e4:dd:6c:74:7d:ce:34:ff:1a:42:e7:cc:2d:
2e:40:4a:69:23:57:32:fe:97:5c:93:f7:a0:c4:89:
ef:5d:f2:e3:1c:82:e7:83:d4:23:0f:6c:50:e3:31:
59:4a:84:ff:37:96:2d:08:77:95:4a:d1:0e:f7:4f:
5b:79:01:a3:6f:fb:28:bb:4f:3a:30:85:55:1e:dd:
29:f2:5a:cd:c3:50:3b:8a:29:1c:88:81:83:90:41:
32:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:7B:EA:16:54:11:FA:73:ED:C2:0C:08:F8:A2:E0:B6:6B:5C:D8:D6
X509v3 Authority Key Identifier:
keyid:62:FA:76:5A:39:33:69:C9:6D:8D:83:6F:23:F7:6E:67:48:9C:7D:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yvp2WjkzacltjYNvI_duZ0icfd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/xXvqFlQR-nPtwgwI-KLgtmtc2NY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/adff80-b207-4fbd-bf5e-07dd1b4c55d9/1/Yvp2WjkzacltjYNvI_duZ0icfd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.102.114.0/24
Signature Algorithm: sha256WithRSAEncryption
43:50:d1:c9:81:73:cf:46:c5:e7:ff:b3:03:8f:62:77:1d:18:
e3:20:bb:c0:40:37:01:62:07:36:3a:cc:ea:6b:55:fd:33:64:
3e:be:f3:6e:ec:a1:07:d4:74:95:4d:be:92:53:d7:34:eb:28:
dc:e8:63:34:73:10:ab:e9:c2:5f:24:74:81:73:05:66:bb:87:
9d:3d:62:e9:89:cb:05:36:94:ac:df:4f:36:2a:23:e4:5b:40:
0d:fe:80:ab:90:f8:01:ca:96:e8:ec:84:a0:f6:b9:71:64:e7:
d4:5e:b3:94:e1:6d:96:b8:46:0e:8d:a5:5a:e4:5d:b7:82:15:
f3:7b:8f:e0:ae:71:2e:0d:1f:2d:d2:96:d9:29:eb:29:d0:a0:
71:66:e6:32:b3:6c:6a:4c:fa:f8:44:9c:f9:85:81:cf:8e:6f:
31:e4:7c:8f:45:a1:4b:b3:e4:70:3a:92:14:29:35:0c:b2:63:
b7:a6:39:e2:21:2c:59:56:d0:59:ec:68:69:a0:e0:2f:21:fb:
26:93:1f:7f:06:23:3c:32:63:1b:cf:76:e0:42:45:cf:18:83:
04:3c:2c:5b:ef:d2:ef:db:cf:f8:de:82:bb:43:f1:92:f5:b4:
a6:9d:1a:2f:54:09:a3:06:74:a3:b4:d0:f4:c9:13:48:d0:d5:
af:81:cf:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:26 2024 by rpki-client on console-fra.rpki-client.org