Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/7706e3-3cb3-4057-90c7-94d7a100c326/1/IVcn3A1ASasp9xhb7UXYDQcxcK4.roa
File: IVcn3A1ASasp9xhb7UXYDQcxcK4.roa (raw, json)
Hash identifier: wjTLzOtwuLfVQQBCloSnCycY5eo1JQ1RCTz4BJOJfzA=
Subject key identifier: 21:57:27:DC:0D:40:49:AB:29:F7:18:5B:ED:45:D8:0D:07:31:70:AE
Certificate issuer: /CN=9d53ced12c380628ea1322abf424a74622c66ca0
Certificate serial: 526C
Authority key identifier: 9D:53:CE:D1:2C:38:06:28:EA:13:22:AB:F4:24:A7:46:22:C6:6C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nVPO0Sw4BijqEyKr9CSnRiLGbKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/7706e3-3cb3-4057-90c7-94d7a100c326/1/IVcn3A1ASasp9xhb7UXYDQcxcK4.roa
Signing time: Sun 17 Apr 2022 12:38:15 +0000
ROA not before: Sun 17 Apr 2022 12:38:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56630
IP address blocks: 212.23.200.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21100 (0x526c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d53ced12c380628ea1322abf424a74622c66ca0
Validity
Not Before: Apr 17 12:38:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=215727dc0d4049ab29f7185bed45d80d073170ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c1:a6:76:ad:03:2c:af:2b:30:45:c8:9f:93:
34:0e:ff:ab:86:77:4b:55:49:a3:b6:b3:63:35:6b:
67:89:4a:8a:6d:31:3d:d3:33:9f:c6:43:b3:5f:c9:
4f:73:a1:71:7c:40:8c:dd:af:cb:ba:25:ef:25:8b:
52:1d:62:b3:36:f8:d3:dc:4f:6f:74:23:33:0b:56:
1e:46:93:7e:67:fa:1b:29:2c:fb:61:b8:8f:2d:24:
1f:52:d9:a4:ed:88:0f:f2:89:35:3b:76:13:ec:07:
3f:d5:2a:f3:27:d8:c8:76:5d:dc:e8:aa:ec:f6:8b:
59:b7:fe:6f:52:46:f2:e6:eb:f6:7d:8c:74:34:7f:
cd:fc:cd:b7:82:b3:67:54:bb:cc:26:8b:20:3f:78:
f1:78:67:9b:df:cd:f5:cb:02:28:64:39:3d:43:54:
2d:54:8e:39:9a:13:ed:75:f8:bb:b9:d0:6b:7e:f8:
ab:85:c3:66:8d:30:9b:5b:16:99:e2:c0:31:2a:70:
76:91:99:28:89:7f:5c:a6:eb:5d:5a:25:35:65:bf:
cf:28:58:d5:33:94:68:c6:e6:d8:d5:9e:d1:48:bb:
2e:0b:15:00:b3:ae:b7:45:90:38:1e:3d:14:fa:00:
05:89:49:05:25:d3:74:1e:f6:df:15:35:f7:22:60:
58:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:57:27:DC:0D:40:49:AB:29:F7:18:5B:ED:45:D8:0D:07:31:70:AE
X509v3 Authority Key Identifier:
keyid:9D:53:CE:D1:2C:38:06:28:EA:13:22:AB:F4:24:A7:46:22:C6:6C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nVPO0Sw4BijqEyKr9CSnRiLGbKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7706e3-3cb3-4057-90c7-94d7a100c326/1/IVcn3A1ASasp9xhb7UXYDQcxcK4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/7706e3-3cb3-4057-90c7-94d7a100c326/1/nVPO0Sw4BijqEyKr9CSnRiLGbKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.23.200.0/24
Signature Algorithm: sha256WithRSAEncryption
40:e7:94:a7:8f:0e:3b:a6:68:98:4e:2f:82:82:61:cf:bc:87:
54:4c:60:ea:19:77:2e:af:f6:92:af:14:b5:51:5f:54:05:fb:
d5:50:64:8c:8a:6b:69:e5:7b:fd:be:48:4d:d5:73:a4:df:d9:
c7:db:a3:b7:23:57:c5:66:41:67:98:15:46:11:d2:eb:b9:2a:
4d:e2:da:37:4a:be:87:ea:12:86:6c:9d:2d:73:c8:50:ce:7e:
ea:41:46:0b:50:bf:90:9c:5d:51:6a:a0:ba:ad:5e:a9:08:c6:
9b:b5:13:17:41:bc:78:c9:03:9f:46:53:ce:5b:db:82:05:7e:
a6:87:63:fa:43:c1:69:98:f1:bd:9b:a8:c7:7e:bd:ae:d6:f0:
74:4d:6e:f9:d0:40:00:b2:54:c1:a5:a3:e8:85:53:fd:be:27:
80:1b:77:06:cd:2d:4e:7b:c2:1e:7a:9a:00:54:ab:cd:96:c4:
73:54:e1:ed:dd:68:3c:e3:91:b8:48:e7:14:7e:37:ce:d0:b4:
b1:b4:86:6c:ff:3a:a1:be:3f:2e:95:a3:b0:06:a5:a7:ee:bd:
8c:3f:03:bc:7f:e2:ab:f7:1e:6c:e8:ab:28:53:f4:86:ce:9c:
c5:fa:74:0c:c7:46:3e:74:8c:15:59:7b:14:65:17:04:aa:bd:
55:d0:74:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:40 2024 by rpki-client on console-fra.rpki-client.org