Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/b4744b-4c8a-4e1f-96c7-9473f19c3638/1/PJo5N-MFnAKY0M_WmowV7YNm0vU.roa
File: PJo5N-MFnAKY0M_WmowV7YNm0vU.roa (raw, json)
Hash identifier: zTs04ffRNV2sp9+if7vysPwMa04OgQKWo12xbl/OwPg=
Subject key identifier: 3C:9A:39:37:E3:05:9C:02:98:D0:CF:D6:9A:8C:15:ED:83:66:D2:F5
Certificate issuer: /CN=a0c4033c8ac55ee4459569315fd8e4fad9bb5c9d
Certificate serial: 02455E17
Authority key identifier: A0:C4:03:3C:8A:C5:5E:E4:45:95:69:31:5F:D8:E4:FA:D9:BB:5C:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oMQDPIrFXuRFlWkxX9jk-tm7XJ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/b4744b-4c8a-4e1f-96c7-9473f19c3638/1/PJo5N-MFnAKY0M_WmowV7YNm0vU.roa
Signing time: Sat 01 Jan 2022 08:52:58 +0000
ROA not before: Sat 01 Jan 2022 08:52:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 217.18.208.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 38100503 (0x2455e17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a0c4033c8ac55ee4459569315fd8e4fad9bb5c9d
Validity
Not Before: Jan 1 08:52:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c9a3937e3059c0298d0cfd69a8c15ed8366d2f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:59:91:97:14:79:0e:3f:b6:f6:4e:7b:6c:85:
f5:5a:72:94:76:cf:6a:2b:29:12:b3:81:e4:45:bb:
78:2f:89:1a:b6:dd:64:89:4e:59:58:fb:28:f4:0e:
35:4b:95:e7:2b:dc:8d:9d:8d:3e:a0:a3:10:27:3d:
33:fb:f4:1d:90:b6:4a:ba:97:e0:82:4e:75:90:0e:
4e:3f:ca:e5:20:f1:13:5d:24:a6:a8:c3:8f:a9:01:
29:4f:46:6d:b7:95:c4:5a:d7:06:2b:74:d3:0e:95:
d3:b1:22:5c:98:dc:d7:bc:fa:26:dd:9b:ca:16:e6:
2c:57:c4:cd:28:e1:e0:bc:76:c2:22:d3:0e:c7:bc:
18:5a:d8:b9:82:8c:35:aa:c0:e3:60:33:1d:ad:6c:
d1:07:bc:01:9f:9a:c9:3b:2b:c0:9d:0d:61:99:c6:
3b:d9:93:b4:6a:0f:3d:43:ed:b3:eb:11:c1:0a:9c:
f9:47:aa:78:f8:04:aa:a5:4a:fd:8d:ea:b6:25:03:
20:73:f8:da:06:ad:14:d2:89:ff:ab:1a:e0:08:83:
b8:ce:d8:83:b8:f9:72:45:fd:d8:21:0d:55:3f:1c:
91:25:c8:49:2f:18:5f:f2:d0:5c:00:b1:23:82:50:
d1:fb:83:b2:30:72:69:ba:ba:bb:89:f3:39:c8:f8:
67:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:9A:39:37:E3:05:9C:02:98:D0:CF:D6:9A:8C:15:ED:83:66:D2:F5
X509v3 Authority Key Identifier:
keyid:A0:C4:03:3C:8A:C5:5E:E4:45:95:69:31:5F:D8:E4:FA:D9:BB:5C:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oMQDPIrFXuRFlWkxX9jk-tm7XJ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b4744b-4c8a-4e1f-96c7-9473f19c3638/1/PJo5N-MFnAKY0M_WmowV7YNm0vU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/b4744b-4c8a-4e1f-96c7-9473f19c3638/1/oMQDPIrFXuRFlWkxX9jk-tm7XJ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.18.208.0/22
Signature Algorithm: sha256WithRSAEncryption
56:31:e9:04:b0:20:ac:f5:0c:d0:42:aa:66:c3:7f:93:bc:0c:
43:32:82:63:a6:a2:c0:3d:91:c0:76:48:f8:85:7a:03:63:cd:
09:15:15:7c:c5:cd:3b:1c:6c:5e:6b:d5:1e:a1:2f:f9:6d:a1:
e2:74:51:88:43:dd:65:58:fa:8d:5f:8b:2e:20:2b:a8:9f:aa:
9b:86:bf:de:bc:57:57:72:c9:53:b4:75:59:01:b1:70:e2:3e:
18:53:9f:ec:56:21:f2:31:0e:ac:ec:69:66:9a:5d:59:71:7f:
0c:86:2c:76:0d:91:82:78:aa:09:6c:3d:bb:7a:22:c2:8c:fb:
ce:f7:b0:f4:59:09:62:a7:97:ad:2f:74:41:6f:a5:73:86:eb:
36:24:1e:4f:0c:39:ff:9e:c1:67:da:cd:29:b3:9c:0f:28:27:
96:04:23:50:2d:c1:75:8e:b5:f6:3c:d0:31:60:31:b9:27:b4:
49:8c:a0:23:fa:0a:e0:dd:83:53:21:80:29:02:b5:cf:2e:8c:
ac:54:9c:52:5c:8b:b6:ff:02:02:35:dc:a8:8b:e7:88:38:e1:
db:6f:5e:63:83:bf:83:ba:1b:9e:b6:df:b5:93:df:91:83:85:
b7:52:c0:46:fc:91:66:39:18:da:7c:f1:9c:a1:06:eb:18:52:
be:3f:a7:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:49 2023 by rpki-client on console.sobornost.net