Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/xYJ7NHMoe5ha1FzgqyKOuaBdRWs.roa
File: xYJ7NHMoe5ha1FzgqyKOuaBdRWs.roa (raw, json)
Hash identifier: p+2I/mWQvqemovry4E4BxoINR5qopJsw2BUxzH0s6Kw=
Subject key identifier: C5:82:7B:34:73:28:7B:98:5A:D4:5C:E0:AB:22:8E:B9:A0:5D:45:6B
Certificate issuer: /CN=373b47a3cee79982adb170341d02026027332023
Certificate serial: 018CC492340B17F183720EE714353BC937AC
Authority key identifier: 37:3B:47:A3:CE:E7:99:82:AD:B1:70:34:1D:02:02:60:27:33:20:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NztHo87nmYKtsXA0HQICYCczICM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/xYJ7NHMoe5ha1FzgqyKOuaBdRWs.roa
Signing time: Mon 01 Jan 2024 10:29:25 +0000
ROA not before: Mon 01 Jan 2024 10:29:25 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 61167
IP address blocks: 5.159.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:92:34:0b:17:f1:83:72:0e:e7:14:35:3b:c9:37:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=373b47a3cee79982adb170341d02026027332023
Validity
Not Before: Jan 1 10:29:25 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=c5827b3473287b985ad45ce0ab228eb9a05d456b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:43:22:7c:05:6e:fe:29:20:40:8f:2d:02:17:
2d:de:c8:88:e0:9d:18:a4:f3:c3:4f:d8:67:db:f0:
c6:3e:c9:0e:53:a7:50:da:08:d5:87:26:0e:29:70:
df:b3:9e:34:44:eb:fa:69:ae:40:ec:98:21:84:c5:
06:0e:c3:be:09:74:e0:bb:71:ba:44:1d:1e:34:33:
4a:bd:2f:1f:be:8c:db:8a:27:3b:65:23:19:29:c1:
44:e5:44:ba:79:be:07:97:69:b7:63:4c:a5:f1:2d:
9b:f7:43:b1:d0:16:a2:41:08:3d:7c:f8:f4:a5:92:
bc:ff:7e:c9:f6:6f:4a:1e:56:98:b0:df:e3:57:c5:
22:61:fa:37:2d:92:69:33:ab:3b:09:f7:6b:66:74:
e1:2a:18:ba:48:18:6a:b2:0a:e9:70:16:f7:00:95:
73:fc:57:eb:2a:07:b0:84:e2:91:32:62:58:35:11:
b0:5a:5a:1d:54:6e:f7:e5:47:5c:04:06:d8:d9:f7:
7c:7e:ed:7a:ef:bd:06:54:a3:00:b6:24:a2:e5:31:
7a:67:92:c7:59:fb:38:d7:44:6b:f5:3c:ef:31:3b:
51:6e:6d:cc:11:85:6e:d9:33:4b:89:3a:57:9b:16:
7e:11:a4:f2:66:7c:91:96:e5:41:f3:9b:0b:32:3c:
06:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:82:7B:34:73:28:7B:98:5A:D4:5C:E0:AB:22:8E:B9:A0:5D:45:6B
X509v3 Authority Key Identifier:
keyid:37:3B:47:A3:CE:E7:99:82:AD:B1:70:34:1D:02:02:60:27:33:20:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NztHo87nmYKtsXA0HQICYCczICM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/xYJ7NHMoe5ha1FzgqyKOuaBdRWs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/NztHo87nmYKtsXA0HQICYCczICM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.20.0/24
Signature Algorithm: sha256WithRSAEncryption
88:7f:93:57:cd:fa:ee:4f:9a:71:cc:01:0e:60:0e:47:31:e8:
31:34:7a:dd:a1:99:7c:4c:dd:2e:5f:7c:9d:a6:1f:ce:dc:21:
14:80:01:a6:e9:bb:7e:a6:f9:c1:a1:c8:6e:59:5c:96:8f:23:
97:85:cd:47:f0:d6:87:4f:ec:9f:37:8f:e9:5b:4f:cc:39:fb:
29:ab:a6:a3:de:b0:78:6d:77:2a:35:30:53:40:a7:64:72:10:
ec:da:94:a7:04:ac:8d:2a:e1:2c:eb:08:99:6a:ea:f6:d9:55:
f0:11:0d:66:5f:1f:dd:77:e5:4b:54:fd:21:5c:ca:02:ac:42:
eb:03:f4:28:cc:50:66:a0:a3:e7:9f:fc:f4:71:68:31:24:c9:
af:3a:1f:51:20:a1:ff:31:08:74:6d:ad:ac:17:10:c3:40:68:
17:77:68:c0:93:54:2e:ba:58:af:4e:3a:06:21:7a:74:66:97:
b1:9a:a1:f8:b8:d9:db:76:2f:44:a4:c7:3f:5b:2a:7a:47:0c:
87:12:44:b8:5c:35:b9:ce:33:61:b9:a7:d3:51:9d:8e:f2:42:
4a:e3:83:4d:66:8c:44:d6:c6:6c:9f:0b:58:73:b3:09:d4:01:
02:da:02:57:06:0b:7f:7b:1f:05:2e:de:b6:cf:a8:82:60:61:
c5:0c:2b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:21 2024 by rpki-client on console.sobornost.net