Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/aa37b6-bf16-4836-bb9c-9208b0e2fa10/1/3ZyNrpyxa80oE7Gwp61JaoWN3XQ.roa
File: 3ZyNrpyxa80oE7Gwp61JaoWN3XQ.roa (raw, json)
Hash identifier: 53SswrbYN8d9SAsvb8HzG36MNoh4NU7rC2fIGsdpsm0=
Subject key identifier: DD:9C:8D:AE:9C:B1:6B:CD:28:13:B1:B0:A7:AD:49:6A:85:8D:DD:74
Certificate issuer: /CN=721deb13a3d93b7df66abed3c7987717aceb3cc9
Certificate serial: D81DAD
Authority key identifier: 72:1D:EB:13:A3:D9:3B:7D:F6:6A:BE:D3:C7:98:77:17:AC:EB:3C:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ch3rE6PZO332ar7Tx5h3F6zrPMk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/aa37b6-bf16-4836-bb9c-9208b0e2fa10/1/3ZyNrpyxa80oE7Gwp61JaoWN3XQ.roa
Signing time: Thu 03 Feb 2022 10:47:49 +0000
ROA not before: Thu 03 Feb 2022 10:47:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 212.52.2.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 14163373 (0xd81dad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=721deb13a3d93b7df66abed3c7987717aceb3cc9
Validity
Not Before: Feb 3 10:47:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dd9c8dae9cb16bcd2813b1b0a7ad496a858ddd74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:15:e0:1f:97:b3:f7:4d:d0:04:e1:54:4f:26:
f7:5f:b3:cb:44:64:af:b7:7e:e3:90:aa:43:e1:c1:
52:2d:53:71:b1:99:2e:64:69:02:c6:24:89:60:d3:
54:67:0f:6f:4f:33:82:5b:e3:9c:9d:ac:6b:f1:0f:
c3:39:48:fd:85:48:09:b7:a4:18:7e:66:de:65:08:
08:66:56:6b:1c:dd:8c:1a:d9:aa:b6:df:85:64:96:
cc:f8:42:e9:83:6d:78:ec:f7:9b:8d:90:4b:4e:64:
d4:97:a5:b7:a6:13:ec:91:25:b6:69:47:a8:97:bd:
e8:3b:17:69:d3:dd:fc:86:cf:98:ed:c2:ff:0a:17:
95:2e:2d:b5:7b:61:39:6e:33:53:3c:13:69:86:ef:
b3:7e:67:b0:82:33:6b:ff:36:87:e3:79:2f:3e:10:
6c:80:01:08:a7:e9:81:7f:4a:3f:af:87:5d:f4:12:
28:65:d2:6b:7f:bf:04:a0:73:13:ee:8c:9f:2b:32:
c8:32:33:b1:ef:49:d3:3c:89:cc:a6:bd:95:db:07:
0b:c3:46:55:11:ca:7f:91:4e:0f:d1:6f:ae:50:bd:
2b:10:98:b7:a2:e0:de:ea:99:06:ea:c6:81:21:22:
ea:97:f3:bd:2d:8f:99:11:f8:24:65:be:ec:65:50:
24:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:9C:8D:AE:9C:B1:6B:CD:28:13:B1:B0:A7:AD:49:6A:85:8D:DD:74
X509v3 Authority Key Identifier:
keyid:72:1D:EB:13:A3:D9:3B:7D:F6:6A:BE:D3:C7:98:77:17:AC:EB:3C:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ch3rE6PZO332ar7Tx5h3F6zrPMk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/aa37b6-bf16-4836-bb9c-9208b0e2fa10/1/3ZyNrpyxa80oE7Gwp61JaoWN3XQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/aa37b6-bf16-4836-bb9c-9208b0e2fa10/1/ch3rE6PZO332ar7Tx5h3F6zrPMk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.52.2.0/24
Signature Algorithm: sha256WithRSAEncryption
83:3c:e6:f6:fe:72:a7:3a:84:70:54:15:e5:ad:71:b0:37:94:
e6:7a:e4:15:63:e9:ec:f8:4b:0b:7e:1b:a8:a5:df:8f:f7:7a:
de:79:03:73:60:00:76:6c:33:97:1e:5f:26:93:3c:e4:31:31:
81:e5:6b:7b:fc:f7:b3:64:ca:59:1b:b8:6b:b0:5c:3b:8c:71:
54:03:5c:a4:67:d5:05:9d:0c:35:eb:1a:a2:63:c5:2c:a8:78:
7a:0c:76:61:f7:01:c4:5b:a0:51:2c:53:54:37:70:35:55:6e:
2f:e1:55:ed:19:d1:78:fc:5e:72:d2:b2:3e:a4:92:93:67:4e:
a3:53:8a:da:11:95:04:81:9f:1d:17:62:4f:b7:30:fa:d5:3e:
9e:c7:bc:ba:4b:ae:22:c1:4f:6f:e1:17:e2:0b:3d:b6:b5:3a:
d4:dc:22:8c:63:cf:03:87:c4:79:10:92:bf:4f:b3:a7:75:3b:
d0:90:77:91:d5:e5:6b:97:a0:a5:d9:f4:19:17:d0:60:be:f6:
b3:57:8e:b8:8b:27:49:8c:b0:fe:21:73:a4:5f:ff:21:a2:86:
05:f6:e7:c2:7d:7c:7e:b4:4b:34:65:4a:9a:33:18:89:41:3d:
00:8c:30:18:a7:b0:cc:c0:e4:b6:33:37:6e:d1:9c:55:40:c0:
fa:7f:a2:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net