Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/b4744b-4c8a-4e1f-96c7-9473f19c3638/1/3g2qqOt94YQl40B3rq2k1USPHOU.roa
File: 3g2qqOt94YQl40B3rq2k1USPHOU.roa (raw, json)
Hash identifier: 3qVWvDBF6DryLvkV4y4r1xsQVYWyRWdCtXeSmT3nM5c=
Subject key identifier: DE:0D:AA:A8:EB:7D:E1:84:25:E3:40:77:AE:AD:A4:D5:44:8F:1C:E5
Certificate issuer: /CN=a0c4033c8ac55ee4459569315fd8e4fad9bb5c9d
Certificate serial: 0182176DBA17E1BA4A3ACB6633C734CCB2AB
Authority key identifier: A0:C4:03:3C:8A:C5:5E:E4:45:95:69:31:5F:D8:E4:FA:D9:BB:5C:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMQDPIrFXuRFlWkxX9jk-tm7XJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/b4744b-4c8a-4e1f-96c7-9473f19c3638/1/3g2qqOt94YQl40B3rq2k1USPHOU.roa
Signing time: Tue 19 Jul 2022 17:07:23 +0000
ROA not before: Tue 19 Jul 2022 17:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 217.18.208.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:17:6d:ba:17:e1:ba:4a:3a:cb:66:33:c7:34:cc:b2:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c4033c8ac55ee4459569315fd8e4fad9bb5c9d
Validity
Not Before: Jul 19 17:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de0daaa8eb7de18425e34077aeada4d5448f1ce5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4a:96:b9:ec:35:44:3b:6a:3d:3f:9a:5e:d6:
6d:ee:c8:cd:b6:29:59:cb:68:ca:15:15:c6:2b:d2:
44:63:0a:65:09:37:a9:fe:71:99:66:f9:c2:a2:ae:
b5:8f:6f:80:d2:c8:0b:7f:66:53:2c:71:ac:26:fc:
38:cf:f2:48:94:28:60:59:12:88:c3:28:c0:53:96:
35:16:11:13:69:4a:15:3f:35:96:00:40:3c:41:8f:
d5:6f:86:91:4c:ff:de:a1:89:72:0a:6d:6e:e6:2b:
8a:7a:1f:8e:75:2c:49:34:fa:da:45:55:8e:60:80:
d8:e3:9b:1d:72:13:ea:ad:43:79:c5:81:7e:4c:3f:
e0:09:a6:dc:20:bd:3c:4d:cb:0c:4a:6e:dd:39:68:
7d:5b:6f:d2:f0:e4:1f:57:4f:47:f5:14:4f:25:60:
39:25:97:6b:e4:36:0f:ba:a2:8e:84:4b:f7:37:73:
5e:d0:4e:6f:5f:47:6e:64:ac:ef:d9:3b:d0:7b:86:
2d:e7:ae:3e:21:59:00:ab:c8:4a:ce:48:03:b8:09:
6a:61:cb:c0:90:cd:d7:a0:65:8d:b7:9b:16:2d:b2:
c9:9a:21:32:d5:b9:3f:1c:60:5d:cf:8b:7a:26:63:
8f:10:4d:ac:63:fb:40:59:33:37:3c:69:66:e0:b3:
79:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:0D:AA:A8:EB:7D:E1:84:25:E3:40:77:AE:AD:A4:D5:44:8F:1C:E5
X509v3 Authority Key Identifier:
keyid:A0:C4:03:3C:8A:C5:5E:E4:45:95:69:31:5F:D8:E4:FA:D9:BB:5C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMQDPIrFXuRFlWkxX9jk-tm7XJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b4744b-4c8a-4e1f-96c7-9473f19c3638/1/3g2qqOt94YQl40B3rq2k1USPHOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b4744b-4c8a-4e1f-96c7-9473f19c3638/1/oMQDPIrFXuRFlWkxX9jk-tm7XJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.208.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:3c:1a:1b:ea:ff:4d:bc:d8:0f:91:78:e7:3e:b8:b5:2a:86:
b5:f9:9c:7b:47:37:05:ac:56:90:4d:5a:a0:f4:58:3a:b2:a6:
a4:10:aa:f3:f5:78:7d:56:38:ac:1a:de:c0:95:ff:75:fc:a7:
28:d3:2c:49:df:7d:ca:92:e2:83:17:c0:65:dd:3f:5a:4e:af:
15:af:5a:24:0e:9b:03:d1:23:18:7c:07:a6:f3:5f:77:0f:c5:
35:79:d2:04:e2:ca:c5:07:35:1f:00:d7:9e:49:24:1a:d5:fe:
3e:06:f3:00:5b:ab:25:c4:ea:4b:fa:67:79:b8:92:60:6d:e5:
a7:c5:4c:90:2d:77:59:9c:7d:c3:c1:5e:62:78:fb:fb:b3:a2:
bf:16:8f:9f:24:f2:73:0c:5f:38:00:be:03:54:9e:c2:9d:23:
a6:7b:a2:55:9c:d1:ac:7e:bd:f1:86:d1:0b:a6:f5:6c:c9:0b:
4e:2d:c8:61:1e:94:28:f6:b3:4e:cd:68:29:27:dc:1b:a4:03:
41:14:c1:48:bc:41:3d:41:39:8d:bb:0b:50:d5:f0:a9:ea:1c:
7e:58:d9:90:bd:93:12:af:41:02:11:ca:48:23:b3:fd:86:01:
ac:c2:ad:d6:9a:69:0e:cb:6d:3c:b3:f6:95:68:db:d4:51:83:
de:41:8f:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:49 2023 by rpki-client on console.sobornost.net