Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/0e25e2-7b6c-4634-a3f5-31ee355f5bd7/1/110Qz8ceKe8qDkUYqDumaKbQVk4.roa
File: 110Qz8ceKe8qDkUYqDumaKbQVk4.roa (raw, json)
Hash identifier: DqjWDsPfT2TAKILwlF+m+5gDJz/cmtiTTj39QwkLSXk=
Subject key identifier: D7:5D:10:CF:C7:1E:29:EF:2A:0E:45:18:A8:3B:A6:68:A6:D0:56:4E
Certificate issuer: /CN=958dbeda17354fa198c8fdb86bfeb1233d21b78e
Certificate serial: 0221D2CD
Authority key identifier: 95:8D:BE:DA:17:35:4F:A1:98:C8:FD:B8:6B:FE:B1:23:3D:21:B7:8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lY2-2hc1T6GYyP24a_6xIz0ht44.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/0e25e2-7b6c-4634-a3f5-31ee355f5bd7/1/110Qz8ceKe8qDkUYqDumaKbQVk4.roa
Signing time: Sat 01 Jan 2022 05:52:00 +0000
ROA not before: Sat 01 Jan 2022 05:52:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 147.78.68.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 35771085 (0x221d2cd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=958dbeda17354fa198c8fdb86bfeb1233d21b78e
Validity
Not Before: Jan 1 05:52:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d75d10cfc71e29ef2a0e4518a83ba668a6d0564e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:c3:0e:87:1a:43:e2:71:41:1a:5d:9d:39:b3:
31:4a:9d:a9:99:18:eb:ca:79:bf:61:81:43:52:3b:
dd:8c:cb:ab:a5:38:d8:a5:c6:84:44:ea:3c:ee:bb:
3d:94:82:e5:e0:44:b2:bf:a9:27:1d:76:41:fb:ce:
fa:8a:57:00:ae:75:8f:8b:c5:ee:c4:37:76:b5:b6:
37:b5:37:c8:88:f7:52:c0:11:1d:53:8c:65:53:b1:
7b:95:ce:70:fa:6e:7b:03:b0:01:be:37:bd:c8:95:
11:66:5d:c6:63:40:5f:81:6e:bd:5e:4e:58:bd:45:
90:aa:de:28:be:ac:26:7f:1f:7a:a6:c4:1d:a5:e9:
89:a5:47:3a:d4:f6:b8:93:7d:08:df:62:ec:58:1a:
ee:b2:03:bf:f2:ae:71:00:df:fd:2a:ba:05:23:81:
98:bf:c9:37:2c:a8:7c:c2:17:6e:89:b6:2b:22:2f:
3f:87:9f:f8:29:d4:48:a8:78:4b:17:b8:78:33:22:
e1:d5:c7:b0:44:12:61:64:8c:05:8b:c1:68:2d:7d:
16:3c:d6:a8:f8:6b:46:f9:60:28:d6:72:38:9d:84:
10:13:cd:00:ef:9a:e4:0b:2e:23:00:b9:8d:62:57:
a3:92:07:79:55:c0:0e:6b:32:a2:8d:12:38:0a:fa:
1b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:5D:10:CF:C7:1E:29:EF:2A:0E:45:18:A8:3B:A6:68:A6:D0:56:4E
X509v3 Authority Key Identifier:
keyid:95:8D:BE:DA:17:35:4F:A1:98:C8:FD:B8:6B:FE:B1:23:3D:21:B7:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lY2-2hc1T6GYyP24a_6xIz0ht44.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/0e25e2-7b6c-4634-a3f5-31ee355f5bd7/1/110Qz8ceKe8qDkUYqDumaKbQVk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/0e25e2-7b6c-4634-a3f5-31ee355f5bd7/1/lY2-2hc1T6GYyP24a_6xIz0ht44.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.68.0/22
Signature Algorithm: sha256WithRSAEncryption
27:b7:77:3a:1c:ab:e2:6d:40:01:99:27:5e:71:b7:cc:74:c3:
14:9c:10:85:ed:fc:6d:f3:5a:b6:a7:07:4b:e0:ee:e9:60:dc:
a7:96:60:50:f7:4c:15:f0:9d:4d:e3:e2:55:f9:11:aa:7d:83:
95:56:8e:f4:d5:4c:a2:e7:09:84:c0:da:05:32:af:bd:d0:82:
15:0a:28:09:5b:88:cf:04:ae:0c:6a:95:b5:c4:50:aa:ad:ad:
16:e4:d9:30:e1:4b:1b:9d:79:1e:74:4a:44:d5:02:f7:7e:41:
ad:34:0f:9a:6b:c1:b2:48:31:85:31:3b:98:56:d1:40:6a:85:
ca:86:a0:01:b8:3c:3c:20:18:5c:00:9c:b7:0a:23:c3:e7:23:
15:86:5e:a7:44:f0:46:21:91:c3:43:1c:ba:a1:d9:f0:76:1c:
c3:ab:09:5a:79:cb:87:4b:ef:21:a4:7b:16:96:f9:3b:32:97:
75:19:44:40:69:4b:b6:61:65:27:67:2b:cd:3f:eb:20:2a:a4:
23:ff:bf:b2:4e:19:3b:99:23:10:7b:b5:92:7a:ea:36:4f:95:
70:00:8d:ac:51:ef:84:69:0b:9a:a8:a9:7a:27:bf:60:29:af:
bb:13:33:da:4f:41:54:63:16:cf:a7:99:44:b8:27:d6:cf:19:
3c:31:80:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:22 2023 by rpki-client on console.sobornost.net