Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/e0b67e-2690-4a88-9d16-22e98de26106/1/c-nXaUaHEotROOG6_-xa7qO77No.roa
File: c-nXaUaHEotROOG6_-xa7qO77No.roa (raw, json)
Hash identifier: fcmHkpn8XObThoc7k1qVH6lC+CdyXtm3IbpBQvjVvvA=
Subject key identifier: 73:E9:D7:69:46:87:12:8B:51:38:E1:BA:FF:EC:5A:EE:A3:BB:EC:DA
Certificate issuer: /CN=2ee56d4d7b1d1a06ce89f746f79b656c7348c525
Certificate serial: 018CC56EFB985EDD0D347CB7164DA4262856
Authority key identifier: 2E:E5:6D:4D:7B:1D:1A:06:CE:89:F7:46:F7:9B:65:6C:73:48:C5:25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LuVtTXsdGgbOifdG95tlbHNIxSU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/e0b67e-2690-4a88-9d16-22e98de26106/1/c-nXaUaHEotROOG6_-xa7qO77No.roa
Signing time: Mon 01 Jan 2024 14:30:33 +0000
ROA not before: Mon 01 Jan 2024 14:30:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 206970
IP address blocks: 5.104.156.0/23 maxlen: 23
2a06:e381::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6e:fb:98:5e:dd:0d:34:7c:b7:16:4d:a4:26:28:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ee56d4d7b1d1a06ce89f746f79b656c7348c525
Validity
Not Before: Jan 1 14:30:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=73e9d7694687128b5138e1baffec5aeea3bbecda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:06:99:70:9e:9d:84:75:6a:96:e1:90:f9:50:
67:48:3b:22:4b:a5:39:86:18:1c:4d:74:c5:06:b0:
d1:e3:87:10:67:d1:7f:dd:a0:1a:56:61:31:3c:52:
1e:7e:17:c8:89:a7:f9:89:a8:1f:05:3e:1a:cc:b9:
6c:9f:03:e5:c9:90:22:34:2d:5c:7f:ab:5c:72:2f:
bb:98:c2:6d:4a:b0:7d:86:eb:03:d3:df:68:3a:a2:
62:94:ff:2e:43:5f:95:c9:1f:7b:5e:a2:80:37:fb:
50:79:c9:c4:02:bf:20:30:0a:bd:c2:49:5b:46:b2:
a2:2f:69:ae:ad:97:50:3d:44:25:9b:8d:48:45:16:
01:81:81:64:9e:25:3d:5b:0f:54:b4:0e:77:80:61:
16:41:40:70:69:7f:b5:0b:1f:b5:d0:43:9b:70:df:
ae:1d:6b:7c:07:3e:2f:f9:1c:76:6a:64:ef:7d:e3:
5b:7f:0c:f0:fc:b5:ff:0c:48:b3:ae:63:48:4d:d9:
6a:70:3a:5a:fb:3d:11:34:aa:84:c0:f2:9f:09:4b:
ba:4c:2a:b7:c6:bb:3b:2d:89:09:de:78:48:1e:30:
8a:f7:8c:08:c2:e2:6d:27:2c:9b:a4:0d:51:e3:43:
be:d5:2f:0f:5e:8f:28:78:a3:9a:81:ee:97:4c:71:
60:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E9:D7:69:46:87:12:8B:51:38:E1:BA:FF:EC:5A:EE:A3:BB:EC:DA
X509v3 Authority Key Identifier:
keyid:2E:E5:6D:4D:7B:1D:1A:06:CE:89:F7:46:F7:9B:65:6C:73:48:C5:25
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LuVtTXsdGgbOifdG95tlbHNIxSU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e0b67e-2690-4a88-9d16-22e98de26106/1/c-nXaUaHEotROOG6_-xa7qO77No.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e0b67e-2690-4a88-9d16-22e98de26106/1/LuVtTXsdGgbOifdG95tlbHNIxSU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.104.156.0/23
IPv6:
2a06:e381::/32
Signature Algorithm: sha256WithRSAEncryption
5a:b3:0d:11:e0:30:f3:89:61:36:10:b8:4b:2e:e2:8f:bc:bc:
7f:90:ba:b9:11:26:88:4e:ec:7a:c0:5f:41:f0:86:9c:94:f9:
48:41:f3:7a:ff:40:de:40:10:f9:ff:ec:54:65:ae:38:a4:3c:
ce:54:36:6f:02:0b:c0:f7:0c:2a:59:a7:2f:1c:59:32:a9:53:
28:70:c9:d2:e9:ba:7e:52:dc:05:e3:f7:23:b5:45:e8:f0:95:
c8:ad:d7:d3:d8:37:59:48:b8:1d:a3:ef:c0:ef:e5:87:98:fd:
1c:08:33:21:c8:39:8c:20:cd:32:77:47:c9:6c:b7:f0:fd:e0:
c4:ad:ba:9d:1b:e9:13:fc:23:25:0b:d3:de:ec:33:ba:ac:ea:
0d:a0:29:14:e4:d5:7d:67:3d:01:36:3f:bc:2e:c6:6a:3c:75:
3f:61:72:90:03:b2:3f:03:12:21:0d:0c:0e:de:72:7c:59:d2:
e9:4d:f6:cd:3f:8c:71:46:8f:a3:fa:75:1e:bc:e0:e5:e1:a1:
0b:07:d0:25:d5:aa:15:2b:aa:1c:34:9c:08:83:eb:92:8c:53:
66:a7:07:ec:17:a3:e2:16:fb:4e:8f:01:e4:da:c0:fd:80:ab:
d9:29:39:ff:a6:62:b4:39:c3:3a:e8:2d:47:29:2d:aa:b4:ac:
40:4c:6e:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:25:21 2024 by rpki-client on console.sobornost.net