Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/UoAN6sKfhK9AkxTTX5pAbuTeE3M.roa
File: UoAN6sKfhK9AkxTTX5pAbuTeE3M.roa (raw, json)
Hash identifier: gcA90/KU1QjKYFMlsbo68ZzQoHxvWP8y+QUmD77U1DQ=
Subject key identifier: 52:80:0D:EA:C2:9F:84:AF:40:93:14:D3:5F:9A:40:6E:E4:DE:13:73
Certificate issuer: /CN=8d29a41e6f507a37458a49643a7be5790758f726
Certificate serial: 0CADDED5
Authority key identifier: 8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/UoAN6sKfhK9AkxTTX5pAbuTeE3M.roa
Signing time: Sat 01 Jan 2022 05:57:32 +0000
ROA not before: Sat 01 Jan 2022 05:57:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203778
IP address blocks: 212.7.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 212721365 (0xcadded5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d29a41e6f507a37458a49643a7be5790758f726
Validity
Not Before: Jan 1 05:57:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52800deac29f84af409314d35f9a406ee4de1373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:2a:6d:a0:fb:d0:39:b4:c4:d5:3d:87:77:e5:
0b:d4:7a:94:37:f7:a7:54:f7:83:67:43:fd:35:66:
39:4a:a6:46:60:6c:8a:63:29:76:84:b0:b6:e8:d0:
e0:4a:59:ba:9f:16:e4:15:e7:fe:87:ee:a9:b4:bd:
e2:bd:ad:8e:16:d0:be:bc:0f:a5:df:42:e5:f1:dc:
86:8e:82:ee:84:ff:e5:33:39:62:2d:bf:07:88:4b:
a3:07:e8:22:df:ca:12:c1:af:91:4b:e9:32:5d:e0:
c1:17:90:52:de:73:76:64:b3:4b:f9:36:28:55:ed:
28:28:c4:e5:8c:5d:bf:1f:c9:f8:5f:ee:4f:ae:3f:
d5:1d:19:55:d4:0e:e2:8b:f2:df:b4:16:d0:66:71:
b4:ba:35:d9:18:2a:db:bd:e1:68:e9:42:b0:57:94:
36:d4:fb:79:de:03:7f:c1:90:05:db:fd:57:4c:bf:
74:36:ce:8f:ba:e0:a8:19:0b:12:53:93:fc:b5:3a:
8b:7f:92:d4:54:5a:44:42:7d:dc:f5:b9:e1:e7:92:
26:37:63:8f:f2:db:77:a9:03:9b:a8:5d:92:06:d7:
fd:28:b3:0f:21:8f:f4:32:0a:f2:87:32:9b:ef:22:
c1:e2:1f:88:b4:d0:b7:62:d6:5d:a8:3b:55:31:b5:
ba:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:80:0D:EA:C2:9F:84:AF:40:93:14:D3:5F:9A:40:6E:E4:DE:13:73
X509v3 Authority Key Identifier:
keyid:8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/UoAN6sKfhK9AkxTTX5pAbuTeE3M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/jSmkHm9QejdFiklkOnvleQdY9yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.7.214.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:ba:dc:f6:e5:c1:c8:57:6f:2e:46:e0:16:57:29:0b:ef:0e:
69:8f:5f:35:81:94:e9:00:b4:91:0b:14:8c:cd:cc:eb:46:5f:
b7:f2:89:2a:1e:36:ce:ea:8d:7f:16:be:1b:4c:f4:16:bd:e7:
05:0b:c6:85:e0:89:56:a9:4c:29:21:fa:50:18:82:3f:0a:46:
83:d5:38:de:e9:76:6c:d3:e6:16:77:05:39:cd:95:07:ba:8a:
6a:c8:f0:bc:01:af:97:15:0a:52:b2:60:9b:bb:96:14:48:98:
d5:16:57:76:1e:80:af:84:26:50:f0:f1:86:1a:7d:23:e7:af:
f8:ba:f9:5a:db:0a:ce:74:f7:86:e5:de:79:ad:81:7e:cc:c0:
7f:c3:df:1d:22:25:ed:6c:59:f6:42:a9:c2:a8:52:03:25:8f:
72:69:e8:9c:bf:bc:b1:28:c2:3d:84:a4:b9:84:7b:97:36:7c:
1e:89:27:10:a7:00:85:81:44:70:40:57:76:9f:57:05:f6:02:
97:a6:f1:36:1c:25:ac:1a:83:90:e0:d2:d2:b2:aa:d0:36:a4:
92:90:a1:4b:26:fd:b2:70:b2:c8:2e:37:67:ad:f2:6f:d5:1b:
ca:24:43:e2:3d:97:a4:45:5e:86:db:38:fd:5e:7b:6c:48:6b:
00:ac:d4:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:01:07 2024 by rpki-client on console-fra.rpki-client.org