Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/kLkyRedVuc40y00s_3TuQ4o8nFM.roa
File: kLkyRedVuc40y00s_3TuQ4o8nFM.roa (raw, json)
Hash identifier: Ap3r6Igg2B5hAxOOT0cp551p8SVO0Jy17EWVV9snSzE=
Subject key identifier: 90:B9:32:45:E7:55:B9:CE:34:CB:4D:2C:FF:74:EE:43:8A:3C:9C:53
Certificate issuer: /CN=8d29a41e6f507a37458a49643a7be5790758f726
Certificate serial: 0E2CFB1A
Authority key identifier: 8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/kLkyRedVuc40y00s_3TuQ4o8nFM.roa
Signing time: Wed 22 Jun 2022 09:35:44 +0000
ROA not before: Wed 22 Jun 2022 09:35:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202712
IP address blocks: 212.7.214.0/24 maxlen: 24
212.7.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 237828890 (0xe2cfb1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d29a41e6f507a37458a49643a7be5790758f726
Validity
Not Before: Jun 22 09:35:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90b93245e755b9ce34cb4d2cff74ee438a3c9c53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:72:e1:ac:cd:12:9f:26:a8:69:01:8a:aa:8a:
7c:ae:99:7b:e1:3b:ab:a5:69:91:2d:00:d4:b1:25:
c7:03:c6:96:1a:96:aa:ae:1a:d9:c3:36:21:39:41:
63:d0:fa:e6:2d:f8:fc:02:ac:99:bc:09:14:88:f7:
ce:2c:8d:e8:06:71:f4:b4:1f:36:f7:6c:f3:6f:be:
13:82:10:59:73:b5:a6:28:6e:6b:f9:ff:bc:36:22:
4a:ca:7b:48:95:99:d5:bf:2d:30:20:37:34:b3:a7:
ae:11:4f:98:cb:07:39:4c:3a:7e:79:80:7e:9e:0d:
ed:f4:88:29:52:e7:19:51:52:a7:60:93:66:1f:66:
37:e9:ee:db:b2:0e:a3:06:cb:a4:83:83:8c:5f:a9:
1e:77:07:5f:a6:a6:bc:79:2f:5f:44:a4:9b:0e:95:
97:db:d1:bc:ac:e8:ef:e5:f8:cf:ef:d4:98:cd:35:
b5:9c:fe:36:8e:03:4a:fc:3e:18:f6:15:aa:52:e3:
b2:6a:47:94:8a:90:e0:2c:31:a8:99:12:ba:e6:b9:
8d:88:ab:8f:94:a2:0c:d5:46:4b:31:2a:6b:85:4b:
22:e0:0b:85:db:57:ad:bc:63:94:4f:ae:69:a1:94:
03:34:09:50:d0:e2:24:c2:6b:34:e3:85:81:86:49:
58:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:B9:32:45:E7:55:B9:CE:34:CB:4D:2C:FF:74:EE:43:8A:3C:9C:53
X509v3 Authority Key Identifier:
keyid:8D:29:A4:1E:6F:50:7A:37:45:8A:49:64:3A:7B:E5:79:07:58:F7:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jSmkHm9QejdFiklkOnvleQdY9yY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/kLkyRedVuc40y00s_3TuQ4o8nFM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/b5b45d-7780-434b-a912-efb9a04d3caa/1/jSmkHm9QejdFiklkOnvleQdY9yY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.7.214.0/23
Signature Algorithm: sha256WithRSAEncryption
71:6a:bd:e5:59:12:46:0d:df:58:53:cb:2a:66:96:97:13:9f:
00:fa:5d:77:60:b0:0e:ff:a2:5f:67:6c:ff:2b:38:31:24:b4:
d2:21:bd:ac:72:39:56:c4:cd:f1:ef:9d:9d:b6:65:3e:0d:f7:
14:75:e2:8d:76:7c:f7:3e:ab:ef:e2:1b:b2:76:93:b4:08:2d:
a4:b5:48:6a:de:30:d8:fb:85:0e:e1:5f:88:bf:4b:48:64:56:
49:5d:a6:db:c8:94:0c:f5:2a:45:ba:0c:7c:dd:56:72:53:da:
c0:b2:97:fb:be:c9:0e:d3:d1:8a:b7:35:28:16:7e:8e:ac:91:
5a:41:c0:29:1d:76:5c:0d:bc:f5:bc:8a:99:71:d6:fd:53:5f:
25:de:dd:c9:ab:48:93:2c:87:1f:11:df:5e:cc:6d:fe:95:ba:
05:5d:e5:af:c0:89:4e:6a:df:0d:e6:ad:10:0e:bf:53:1e:4a:
4d:67:b8:c0:57:9b:93:80:75:6d:72:4d:81:66:d7:72:43:48:
0f:97:d8:1d:95:48:b4:d8:2f:1f:be:21:ca:ac:2e:92:1a:4c:
92:55:bc:aa:6b:b5:7e:d5:56:37:8a:82:48:c8:08:ff:fd:07:
b3:da:7e:b7:a7:31:bb:fe:6d:02:42:49:7b:d8:89:38:ca:df:
04:7b:78:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:54:41 2024 by rpki-client on console-ams.rpki-client.org