Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/d4bbd7-70af-449d-911b-7a87efc694c3/1/trLtFmew_fW9eU95wbPdSoQtUxI.roa
File: trLtFmew_fW9eU95wbPdSoQtUxI.roa (raw, json)
Hash identifier: LG+OK4LFmP6/gvWMMLbSt2wNB5fp5QRYAdHFD+anNFA=
Subject key identifier: B6:B2:ED:16:67:B0:FD:F5:BD:79:4F:79:C1:B3:DD:4A:84:2D:53:12
Certificate issuer: /CN=89e9bba8d62ff53c30a218c4d7cd1806078ae655
Certificate serial: 018572B3FB2252E7B1840E6AEA6B7D6449BF
Authority key identifier: 89:E9:BB:A8:D6:2F:F5:3C:30:A2:18:C4:D7:CD:18:06:07:8A:E6:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iem7qNYv9TwwohjE180YBgeK5lU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/d4bbd7-70af-449d-911b-7a87efc694c3/1/trLtFmew_fW9eU95wbPdSoQtUxI.roa
Signing time: Mon 02 Jan 2023 13:37:55 +0000
ROA not before: Mon 02 Jan 2023 13:37:55 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 63473
IP address blocks: 212.52.0.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b3:fb:22:52:e7:b1:84:0e:6a:ea:6b:7d:64:49:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89e9bba8d62ff53c30a218c4d7cd1806078ae655
Validity
Not Before: Jan 2 13:37:55 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b6b2ed1667b0fdf5bd794f79c1b3dd4a842d5312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:eb:cf:25:4d:ea:2f:72:e0:81:a5:3f:8e:c6:
30:4e:22:49:a5:8e:ea:d8:41:65:fb:45:80:18:b9:
13:33:4d:00:07:45:a3:cd:5b:bc:78:e0:57:41:b2:
5f:b8:7e:76:0d:a9:99:e1:1f:f8:b3:69:be:46:89:
da:6e:b7:be:98:86:12:0c:b8:3f:0b:de:52:30:b2:
49:c5:67:0f:02:0c:b9:2d:81:34:23:bf:a8:3e:69:
b0:52:dd:ce:f2:26:8c:9f:5d:ab:ba:e3:a1:15:ae:
80:9c:16:ea:e1:b5:b7:1a:dc:84:fc:39:5d:07:96:
72:9a:b9:80:d9:27:76:ae:37:a7:f3:6a:b6:bb:2e:
cf:fe:c0:42:c8:48:69:3d:ed:b3:1d:fe:dc:13:16:
62:7c:57:88:a4:82:97:0f:5b:4f:4a:d8:72:3e:3a:
50:1c:63:ec:8f:f3:0b:94:08:49:d7:61:fc:e1:4c:
56:c5:70:9e:80:56:e3:a6:73:74:37:06:fd:1f:9d:
2f:f3:38:3e:15:8b:31:98:bf:9f:95:e7:37:c7:fe:
b2:c8:b0:e1:d8:e9:8f:c7:f0:67:a3:2b:c7:9a:a6:
76:86:c3:7a:cd:b8:b6:77:62:3e:2f:74:15:d6:85:
90:a9:c3:c5:ae:5b:07:a4:08:18:52:ee:e0:39:b4:
b7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:B2:ED:16:67:B0:FD:F5:BD:79:4F:79:C1:B3:DD:4A:84:2D:53:12
X509v3 Authority Key Identifier:
keyid:89:E9:BB:A8:D6:2F:F5:3C:30:A2:18:C4:D7:CD:18:06:07:8A:E6:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iem7qNYv9TwwohjE180YBgeK5lU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4bbd7-70af-449d-911b-7a87efc694c3/1/trLtFmew_fW9eU95wbPdSoQtUxI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/d4bbd7-70af-449d-911b-7a87efc694c3/1/iem7qNYv9TwwohjE180YBgeK5lU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.0.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:54:14:ed:a2:08:28:f4:11:a1:42:eb:90:a9:7c:6e:59:6f:
37:ac:00:e1:46:01:93:5a:2c:7b:8b:0f:de:1a:2a:5b:ae:06:
63:ba:0c:bb:bb:e6:76:75:1e:d9:30:ce:b9:44:52:46:93:9d:
9e:26:96:35:d1:b3:6b:b7:f7:82:b0:e9:47:c4:f0:09:81:a1:
fb:00:c6:02:55:0f:fd:27:b8:75:25:7e:a2:34:53:bb:7b:a3:
3c:32:a1:f9:21:f3:b8:cc:51:14:5b:28:c4:22:f6:02:04:da:
ee:57:c8:a4:64:ea:a2:0f:a1:3d:e9:72:d6:68:9c:74:8c:b8:
ab:59:bd:b9:67:c1:96:34:6b:62:26:85:46:e2:4a:c3:ac:c2:
af:6d:7b:6a:a6:7f:90:ae:01:ea:8d:8c:af:97:02:77:ea:1e:
b1:1e:e4:09:bf:af:2c:5d:bb:9e:13:e5:ed:d2:99:b8:9f:20:
25:54:bd:65:6b:91:cc:35:43:c4:bc:d3:a4:66:d2:74:a1:95:
68:10:7e:58:6a:22:f8:ec:c6:eb:63:d8:29:7a:ff:b5:b0:44:
7a:c4:b1:d4:5b:5e:27:b3:09:e6:b3:d3:70:aa:be:d5:16:df:
c6:e9:50:ee:b9:66:ef:ee:16:d7:db:e4:3c:20:c4:d6:35:d9:
7b:de:f4:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:31 2023 by rpki-client on console.sobornost.net