Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6f/88d56c-6720-4fdc-9a13-d09bee137baa/1/XhvWLRZ0BXkUp17WS6d5J38KcC4.roa
File: XhvWLRZ0BXkUp17WS6d5J38KcC4.roa (raw, json)
Hash identifier: nrKxIaHa/FmQTL2+HSFCZy7Hd26ESY1KYjewX3A/8go=
Subject key identifier: 5E:1B:D6:2D:16:74:05:79:14:A7:5E:D6:4B:A7:79:27:7F:0A:70:2E
Certificate issuer: /CN=a47a81e6d6b3e0312307dca1d863982cc90bc673
Certificate serial: 06F9F5FB
Authority key identifier: A4:7A:81:E6:D6:B3:E0:31:23:07:DC:A1:D8:63:98:2C:C9:0B:C6:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pHqB5taz4DEjB9yh2GOYLMkLxnM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6f/88d56c-6720-4fdc-9a13-d09bee137baa/1/XhvWLRZ0BXkUp17WS6d5J38KcC4.roa
Signing time: Fri 13 May 2022 11:10:40 +0000
ROA not before: Fri 13 May 2022 11:10:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200845
IP address blocks: 185.158.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117044731 (0x6f9f5fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a47a81e6d6b3e0312307dca1d863982cc90bc673
Validity
Not Before: May 13 11:10:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e1bd62d1674057914a75ed64ba779277f0a702e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:38:26:84:cd:0a:79:c7:55:23:72:05:ff:b2:
99:c0:93:22:c8:aa:47:57:8c:68:30:4a:ca:2b:47:
e4:cb:92:f1:5c:a4:53:25:2b:03:f0:44:05:fb:0b:
af:c0:c9:10:0e:d0:71:81:f3:5e:2a:5c:21:81:33:
68:d7:f9:e3:05:e8:d6:02:46:6c:92:a9:b4:d5:3a:
74:8d:b4:eb:fc:33:f2:e7:10:54:b2:cb:01:46:70:
73:07:b1:00:a8:9f:53:2d:db:cd:fd:50:89:c3:18:
28:fe:82:a1:e5:87:6c:e8:c8:2e:d4:1f:c8:dc:f2:
47:39:ba:c0:8b:f0:1f:4b:0d:f8:31:14:fc:30:f0:
61:e4:49:48:f7:66:76:66:a7:19:a8:fe:65:4c:97:
93:fb:2e:09:96:65:71:52:b4:d8:c6:f2:25:ce:0c:
c9:48:d1:b1:b3:60:04:2b:d5:67:2d:95:53:60:5b:
53:8a:78:0d:66:bd:68:61:0d:c0:d2:18:e4:1d:3e:
4c:d4:d4:34:f1:04:38:fb:59:2e:f8:b5:49:73:23:
49:5f:4b:1b:b0:b9:4d:4f:5e:ea:c3:34:7f:9c:5c:
60:52:cb:95:cc:91:46:12:7d:29:35:ed:5f:dc:e4:
47:b7:65:85:fb:5e:58:45:db:4f:04:d8:7b:13:41:
22:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:1B:D6:2D:16:74:05:79:14:A7:5E:D6:4B:A7:79:27:7F:0A:70:2E
X509v3 Authority Key Identifier:
keyid:A4:7A:81:E6:D6:B3:E0:31:23:07:DC:A1:D8:63:98:2C:C9:0B:C6:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pHqB5taz4DEjB9yh2GOYLMkLxnM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/88d56c-6720-4fdc-9a13-d09bee137baa/1/XhvWLRZ0BXkUp17WS6d5J38KcC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6f/88d56c-6720-4fdc-9a13-d09bee137baa/1/pHqB5taz4DEjB9yh2GOYLMkLxnM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.158.52.0/22
Signature Algorithm: sha256WithRSAEncryption
4c:26:62:9a:77:e1:07:ee:14:ad:be:de:1d:a8:f7:ca:13:13:
d2:f8:b4:56:e1:89:dd:37:42:60:81:25:8c:d7:d7:e7:43:52:
e5:b7:bb:b7:22:2d:b8:d2:d3:c2:fe:b4:e1:71:5c:1a:dd:7d:
27:d7:b6:d2:3a:45:43:71:53:96:eb:eb:a0:37:ee:0a:77:aa:
77:1a:6d:89:d2:46:2e:49:da:24:87:75:42:3d:88:9f:6b:90:
5f:1d:23:6e:8a:e0:13:2b:2e:56:82:d1:ad:53:31:68:18:a2:
28:6b:02:05:77:65:b5:5f:ed:da:2b:65:61:9c:38:ee:1e:9c:
62:09:73:93:1f:11:5e:7d:20:87:ab:29:16:1a:16:15:97:27:
f7:77:ea:62:14:ed:3d:71:b1:52:8d:e9:a3:5c:87:b4:b3:fc:
48:6f:1a:63:ef:c2:70:24:f4:79:23:3a:99:9b:72:a3:b8:17:
9e:1a:f3:b7:00:eb:d9:f7:6f:0d:3e:4c:99:8d:84:cc:4b:e9:
31:55:e5:93:6e:c2:3c:37:4e:d6:f0:f7:d9:53:ee:3c:f3:33:
69:ad:a8:8a:1c:3c:e2:46:ea:6d:29:fc:25:47:de:f9:a7:0a:
fd:63:5e:cc:6f:aa:e2:d2:76:83:97:7e:9e:77:8c:23:3f:f4:
ee:2f:67:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:19 2023 by rpki-client on console.sobornost.net