Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/F7n2L38Z60qVNAWuYhqSKT3Xs5c.roa
File: F7n2L38Z60qVNAWuYhqSKT3Xs5c.roa (raw, json)
Hash identifier: x3J8Uv+fz77dgs2W0WWkExMqTRE8oWFsAePCPk7IBEU=
Subject key identifier: 17:B9:F6:2F:7F:19:EB:4A:95:34:05:AE:62:1A:92:29:3D:D7:B3:97
Certificate issuer: /CN=91362d3c0953e8c933f0092a589b75494904f962
Certificate serial: 018CC56DEB860BAA4FF7E409516A3979B25E
Authority key identifier: 91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/F7n2L38Z60qVNAWuYhqSKT3Xs5c.roa
Signing time: Mon 01 Jan 2024 14:29:24 +0000
ROA not before: Mon 01 Jan 2024 14:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 30754
IP address blocks: 217.71.144.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:6d:eb:86:0b:aa:4f:f7:e4:09:51:6a:39:79:b2:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91362d3c0953e8c933f0092a589b75494904f962
Validity
Not Before: Jan 1 14:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=17b9f62f7f19eb4a953405ae621a92293dd7b397
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:bf:22:37:e8:c0:b9:69:2c:2c:54:dd:d1:f4:
2d:24:80:91:b4:9f:1d:6e:d5:ef:35:5d:17:3c:6a:
3d:82:88:da:27:28:3f:f7:36:0f:e1:b6:0b:90:f0:
94:bb:c7:ed:95:c2:0b:b1:dd:cc:18:35:dd:6c:4d:
f4:0b:59:cd:8e:db:07:92:27:3e:a5:94:e0:c0:14:
54:35:77:21:6f:17:10:f5:1c:90:83:59:96:87:31:
59:ea:04:b8:28:7c:41:f9:27:a2:7d:1b:00:22:b7:
aa:70:da:ae:92:37:1b:ac:ae:1c:3d:08:a0:d7:f6:
3c:88:12:24:74:c7:3e:c5:cb:fd:1f:ae:23:71:94:
7b:06:87:27:2e:c7:52:0b:f6:c1:da:09:6f:32:b5:
a1:c3:a9:05:ea:cf:e9:5a:83:72:7b:4d:dd:0f:14:
b4:cf:06:91:94:f8:b5:68:c6:07:94:49:7a:b4:60:
3c:fd:87:37:b9:dc:0d:aa:33:83:9d:42:aa:87:88:
b7:29:4b:c2:c0:65:ef:65:f5:ae:cc:36:99:93:4d:
e3:12:8a:25:db:4e:32:98:60:0a:38:0d:e1:ee:de:
7c:98:79:c6:ea:c5:63:dc:16:80:da:53:01:7f:c4:
30:92:f8:39:c7:67:1e:6b:d2:cb:04:ee:58:bf:c1:
3b:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:B9:F6:2F:7F:19:EB:4A:95:34:05:AE:62:1A:92:29:3D:D7:B3:97
X509v3 Authority Key Identifier:
keyid:91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/F7n2L38Z60qVNAWuYhqSKT3Xs5c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.71.144.0/20
Signature Algorithm: sha256WithRSAEncryption
41:3a:ee:86:02:37:49:8d:a9:60:19:c9:93:87:7c:c0:1c:f4:
fb:44:63:2c:e6:72:2f:f1:14:3a:d7:0d:13:53:7b:f7:b9:8b:
91:3b:c4:81:b3:ab:28:c5:4e:04:47:b1:3a:10:4d:4b:9a:5c:
c1:bc:46:e6:51:82:2b:4d:fe:f5:24:34:c4:80:ed:25:2b:54:
63:b0:c5:20:8b:8c:ab:a1:15:4a:97:c4:54:c5:d5:b6:82:7c:
0f:eb:7a:ea:18:f0:eb:50:58:93:a8:c5:d5:6d:81:5d:b3:3a:
24:aa:02:0c:f4:cd:2c:f5:0a:a2:fd:3d:41:7f:8f:bc:09:f2:
b6:a2:a6:bf:40:34:2c:63:2d:62:b4:8a:b3:7c:b8:e7:03:34:
c2:b8:40:11:b1:61:9c:12:c2:02:e9:d7:4b:d0:6b:a4:8e:fa:
c6:e2:73:51:e7:d6:2d:d2:83:a9:ff:14:2b:00:be:e8:5f:59:
3b:38:89:83:be:ad:35:cb:b0:79:24:af:2c:82:9c:1e:38:b0:
c3:79:7a:78:9f:70:4e:be:78:69:07:82:ad:46:21:f2:61:34:
cd:1f:f1:07:72:28:2d:a4:3f:76:aa:39:5c:5d:c4:bd:61:9d:
99:9a:8b:ad:b0:d0:e1:b2:1b:9f:ee:14:be:d4:c7:f6:29:07:
4b:a7:f7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:26:10 2024 by rpki-client on console.sobornost.net