Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/HBdqtO0oP5aJVLpCyCeYgNaaGy0.roa
File: HBdqtO0oP5aJVLpCyCeYgNaaGy0.roa (raw, json)
Hash identifier: 5zlFu2oVkx07PkiJtc6FrrkD1kxOY18ZQEVMoYvYkRA=
Subject key identifier: 1C:17:6A:B4:ED:28:3F:96:89:54:BA:42:C8:27:98:80:D6:9A:1B:2D
Certificate issuer: /CN=24051080400940ff47c807dd6742becbb4edf22d
Certificate serial: 01913132E54EA4C96695A5EA7EF1E30F7CCD
Authority key identifier: 24:05:10:80:40:09:40:FF:47:C8:07:DD:67:42:BE:CB:B4:ED:F2:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/HBdqtO0oP5aJVLpCyCeYgNaaGy0.roa
Signing time: Thu 08 Aug 2024 08:55:04 +0000
ROA not before: Thu 08 Aug 2024 08:55:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21388
IP address blocks: 85.119.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:31:32:e5:4e:a4:c9:66:95:a5:ea:7e:f1:e3:0f:7c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24051080400940ff47c807dd6742becbb4edf22d
Validity
Not Before: Aug 8 08:55:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1c176ab4ed283f968954ba42c8279880d69a1b2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:93:d1:23:88:7f:9d:c5:09:44:6a:5c:76:5f:
e4:de:fd:20:76:7d:f1:a3:09:c8:e3:d9:fd:98:9c:
64:c5:cf:8b:53:7c:1a:73:a3:0f:65:7f:27:11:76:
f1:2d:98:8e:48:44:25:97:91:01:35:2d:e0:40:fd:
ad:e9:e2:59:89:14:f6:6a:0d:fc:53:b4:3d:6f:2a:
c1:2f:14:c4:23:68:cf:65:b1:31:ff:d2:7a:6a:11:
b0:bb:5f:8f:42:cb:63:d3:b7:e2:ba:31:9f:f9:e5:
90:31:dc:8b:0f:d7:d4:c4:26:6c:76:77:52:3f:24:
3b:3f:4c:88:94:1d:6f:b5:79:a7:87:0e:58:0a:00:
23:db:3a:97:9a:ec:a2:96:4d:e3:4d:49:f6:d4:54:
52:69:c6:b4:ec:41:30:0b:8d:47:31:ea:ed:f9:57:
b6:fd:2a:c3:e7:20:48:03:2d:44:56:40:cc:78:11:
0a:c9:17:5b:0e:f1:41:2d:b1:b7:93:78:39:69:cf:
94:9f:d8:10:b4:44:b1:75:09:49:39:f1:9c:5c:8f:
09:0e:d6:3c:73:46:ef:61:8d:90:ab:07:0a:c8:6a:
24:4b:8a:ff:78:d9:13:4f:3e:4e:32:06:4a:46:00:
9e:57:04:90:4e:cf:89:32:7c:52:a5:1b:46:fd:64:
ac:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:17:6A:B4:ED:28:3F:96:89:54:BA:42:C8:27:98:80:D6:9A:1B:2D
X509v3 Authority Key Identifier:
keyid:24:05:10:80:40:09:40:FF:47:C8:07:DD:67:42:BE:CB:B4:ED:F2:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/HBdqtO0oP5aJVLpCyCeYgNaaGy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/0bf5e9-d910-4037-8d37-5d39d5018f78/1/JAUQgEAJQP9HyAfdZ0K-y7Tt8i0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.119.53.0/24
Signature Algorithm: sha256WithRSAEncryption
67:8e:5b:ec:ca:12:66:7e:ea:36:8b:84:b1:36:4f:d4:4c:c3:
f9:d6:5d:be:f2:eb:78:c6:d6:50:d7:c4:07:7d:7c:ba:19:e7:
a6:38:54:06:50:5e:cd:b8:de:bb:3d:b2:86:3c:e9:6a:9d:6c:
a6:98:05:d0:5a:00:11:6f:da:16:cc:37:96:28:c4:e0:1c:13:
d4:ce:4f:38:d0:0d:3b:ef:6e:e2:af:de:83:2c:38:f2:ab:c9:
48:e9:f7:db:4a:6c:b9:64:54:7a:7c:51:d3:fb:ff:db:c2:50:
8c:26:8b:e7:d2:a7:8f:6f:eb:60:e7:ad:41:76:1b:5f:ac:e9:
89:28:91:bb:ae:28:1d:8e:e2:58:6a:0a:9e:4b:eb:ce:39:4f:
7c:4e:54:8e:ec:dd:e5:ba:97:4c:f9:b2:67:93:58:e6:c9:35:
b4:7f:66:db:c4:f7:68:1a:42:f4:59:97:99:d6:11:0c:42:13:
1f:54:1c:9b:8d:21:1e:39:26:fb:1f:95:81:28:b5:77:62:6a:
0c:05:34:83:ce:63:b4:46:4d:50:03:eb:38:64:ba:2d:36:63:
42:f5:23:ce:8a:42:51:09:b5:27:2d:91:6f:e0:17:d0:53:a4:
78:d9:a4:f5:f3:63:4e:22:1f:fb:ca:4c:33:b6:ef:81:15:d3:
f0:7c:82:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:18 2024 by rpki-client on console.sobornost.net