Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/4578b8-b261-4988-90d4-b477a962e365/1/8uy2IPhJHECqvoF9QMm68ifF7XQ.roa
File: 8uy2IPhJHECqvoF9QMm68ifF7XQ.roa (raw, json)
Hash identifier: h+hTGbOWUAKa+dVT18ksIdUAAbvyrhg+fOSR4pw8BRI=
Subject key identifier: F2:EC:B6:20:F8:49:1C:40:AA:BE:81:7D:40:C9:BA:F2:27:C5:ED:74
Certificate issuer: /CN=19d6ad902c949e9c5ecf896f8c50107eb659ffe7
Certificate serial: 01856F6700A960E24B895E6541AF85670447
Authority key identifier: 19:D6:AD:90:2C:94:9E:9C:5E:CF:89:6F:8C:50:10:7E:B6:59:FF:E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GdatkCyUnpxez4lvjFAQfrZZ_-c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/4578b8-b261-4988-90d4-b477a962e365/1/8uy2IPhJHECqvoF9QMm68ifF7XQ.roa
Signing time: Sun 01 Jan 2023 22:14:59 +0000
ROA not before: Sun 01 Jan 2023 22:14:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16509
IP address blocks: 37.72.132.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:67:00:a9:60:e2:4b:89:5e:65:41:af:85:67:04:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19d6ad902c949e9c5ecf896f8c50107eb659ffe7
Validity
Not Before: Jan 1 22:14:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f2ecb620f8491c40aabe817d40c9baf227c5ed74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:07:56:d1:19:da:45:a5:99:ff:bf:01:8f:6e:
38:0f:f2:7b:3b:cb:3e:ee:66:33:ba:82:5a:79:c4:
43:12:53:d9:6c:21:35:36:15:4d:a0:39:c7:56:f3:
21:8d:86:ca:43:c9:3d:38:c0:e4:3f:12:f2:03:e6:
02:e6:0a:0a:8f:96:f4:05:f3:3b:25:d7:50:0a:e2:
07:ee:70:12:e9:d5:5d:07:e9:bd:32:1b:57:15:46:
68:af:8a:d4:36:4e:bf:7a:ee:6d:5e:ee:2d:39:af:
f5:f3:5e:14:cb:7a:c3:c8:99:c2:65:a3:97:d5:a1:
02:f2:dc:69:f1:95:4c:94:d3:0f:9c:86:2c:7b:38:
d4:14:5d:2a:e2:bd:c9:26:39:d0:13:13:82:51:06:
55:f2:5d:05:9c:d8:8f:f5:d1:35:40:af:2c:f0:24:
20:ea:7c:bb:4a:d1:c8:1e:10:01:44:bf:ad:02:f1:
02:31:bf:fd:1e:14:20:b9:7a:29:25:79:b8:9b:45:
6b:5e:72:26:da:40:fc:dc:1b:80:8e:b7:d3:32:2f:
cd:05:29:28:57:be:47:13:11:9f:23:0d:63:8b:3e:
10:f8:3a:8e:94:26:b1:5d:ea:97:7f:3a:eb:fe:b6:
b1:a9:44:c9:8f:78:02:b1:48:99:b2:fc:dc:ea:6e:
90:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:EC:B6:20:F8:49:1C:40:AA:BE:81:7D:40:C9:BA:F2:27:C5:ED:74
X509v3 Authority Key Identifier:
keyid:19:D6:AD:90:2C:94:9E:9C:5E:CF:89:6F:8C:50:10:7E:B6:59:FF:E7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GdatkCyUnpxez4lvjFAQfrZZ_-c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4578b8-b261-4988-90d4-b477a962e365/1/8uy2IPhJHECqvoF9QMm68ifF7XQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/4578b8-b261-4988-90d4-b477a962e365/1/GdatkCyUnpxez4lvjFAQfrZZ_-c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.72.132.0/24
Signature Algorithm: sha256WithRSAEncryption
00:86:fb:9d:3e:09:55:66:6d:e6:ac:16:14:dc:69:42:6e:71:
36:09:47:6d:22:fe:16:94:d0:7e:5c:de:ea:17:f5:be:f8:36:
63:cc:67:1a:e2:f9:27:fb:27:63:92:ba:9a:3c:41:47:97:31:
1a:4b:66:d8:ec:67:ea:a5:a5:63:37:92:46:12:36:8a:2a:88:
de:13:57:04:33:36:50:32:f5:fd:a8:7d:2f:bd:c3:40:da:8b:
46:d0:4a:42:83:31:55:e5:9d:a1:3d:5e:84:60:e9:bb:50:63:
4c:c4:fc:a7:9d:08:22:0d:01:eb:33:2b:f2:0e:a9:7a:4e:eb:
11:6c:44:9d:b9:a8:1d:8f:06:43:7b:99:84:18:cf:d4:a2:8f:
9a:db:39:10:a3:a6:66:d5:a1:18:34:09:c8:3d:23:95:1b:5a:
58:3b:b7:49:1d:1a:a5:fc:c9:f1:5f:9c:59:7a:57:01:7f:8d:
62:ab:19:67:2f:46:5e:8a:e7:63:05:2f:cd:f9:84:0a:2b:42:
86:e2:95:b4:38:27:8a:c7:e1:11:e2:c8:89:3c:8e:e1:ab:a3:
e0:1b:b4:f3:c6:3b:d7:3a:37:e3:4f:9d:f3:d7:09:1d:da:7b:
22:13:67:f1:46:b7:95:d6:0a:b1:e8:c1:ba:a1:87:0b:70:f9:
2a:3a:26:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:53 2024 by rpki-client on console-fra.rpki-client.org