Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/2451b7-9091-4a27-ab91-348f9ffbd883/1/5-WrHMIgvzf-2bFljborqa5zDgc.roa
File: 5-WrHMIgvzf-2bFljborqa5zDgc.roa (raw, json)
Hash identifier: a6OvEkJL8fUzopvZhYQJr3TJhfZLj7Z5iLfs4F0AGyg=
Subject key identifier: E7:E5:AB:1C:C2:20:BF:37:FE:D9:B1:65:8D:BA:2B:A9:AE:73:0E:07
Certificate issuer: /CN=a1b0477f9d09a2c74f4c459e80b729afeeb312d4
Certificate serial: 018CC5000E7B849DBD4DC9554265AEA9B5E5
Authority key identifier: A1:B0:47:7F:9D:09:A2:C7:4F:4C:45:9E:80:B7:29:AF:EE:B3:12:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/obBHf50JosdPTEWegLcpr-6zEtQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/2451b7-9091-4a27-ab91-348f9ffbd883/1/5-WrHMIgvzf-2bFljborqa5zDgc.roa
Signing time: Mon 01 Jan 2024 12:29:24 +0000
ROA not before: Mon 01 Jan 2024 12:29:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 207311
IP address blocks: 178.17.218.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:0e:7b:84:9d:bd:4d:c9:55:42:65:ae:a9:b5:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1b0477f9d09a2c74f4c459e80b729afeeb312d4
Validity
Not Before: Jan 1 12:29:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e7e5ab1cc220bf37fed9b1658dba2ba9ae730e07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d2:ed:aa:67:0d:07:d6:63:9f:03:64:b1:51:
95:59:66:08:57:db:fd:ea:d9:db:02:ed:47:a3:dc:
3e:bd:6c:65:b3:8a:af:09:c5:67:f5:cd:ec:fc:e0:
3b:31:65:54:2f:b9:65:49:03:bb:e9:23:b8:f0:1a:
bd:c1:47:3d:93:32:16:08:5a:9c:e3:03:e6:af:55:
7a:e8:5d:20:b8:01:a0:87:6a:4b:87:34:ef:61:62:
65:b9:13:64:64:56:3b:4b:df:66:f5:10:c1:46:8a:
bf:b2:69:30:29:fc:3b:80:08:60:8c:b5:fb:b8:d0:
13:52:c2:f8:0d:7e:a2:a8:4f:f8:1a:ba:bd:e7:56:
a7:da:50:5d:17:79:8f:1d:45:7e:68:d2:3d:e2:ea:
16:01:48:e6:d5:0e:8b:bf:50:16:db:ac:46:f4:ab:
f2:81:55:1a:d0:21:06:43:3c:d0:85:cb:0f:2c:63:
d9:58:70:6a:04:06:a2:46:58:72:ba:42:52:ac:c1:
51:fe:06:ff:e7:e9:a1:7a:5e:d5:5d:5b:45:b1:d7:
a6:e7:06:01:b9:34:92:ef:90:6c:20:bf:bc:dd:80:
29:b0:3c:9b:f3:b2:a3:52:21:0f:8b:5b:c8:6f:15:
e1:11:7d:a9:e5:7d:85:ff:3e:42:d6:df:27:f9:3c:
8c:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:E5:AB:1C:C2:20:BF:37:FE:D9:B1:65:8D:BA:2B:A9:AE:73:0E:07
X509v3 Authority Key Identifier:
keyid:A1:B0:47:7F:9D:09:A2:C7:4F:4C:45:9E:80:B7:29:AF:EE:B3:12:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/obBHf50JosdPTEWegLcpr-6zEtQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/2451b7-9091-4a27-ab91-348f9ffbd883/1/5-WrHMIgvzf-2bFljborqa5zDgc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/2451b7-9091-4a27-ab91-348f9ffbd883/1/obBHf50JosdPTEWegLcpr-6zEtQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.17.218.0/24
Signature Algorithm: sha256WithRSAEncryption
51:c7:e9:b2:50:8d:33:9f:88:8e:11:81:37:95:cb:75:11:0b:
c3:c7:a2:09:5f:5e:2b:5d:0b:59:86:dc:b5:2a:58:d3:0a:fc:
41:32:6d:50:17:e8:89:8e:7c:ad:fb:1e:89:cb:61:cb:25:95:
bd:c5:11:ab:5b:1c:50:fb:4d:f6:69:03:1a:01:e1:d0:4f:11:
a2:87:e7:1d:7c:98:34:68:0a:ba:eb:b3:7c:dd:70:1d:d7:34:
3c:ed:28:29:e4:34:f3:bf:a5:7f:12:6f:ea:76:11:a5:c8:29:
f6:80:e7:39:64:fd:09:bc:80:b4:99:dd:70:95:1e:27:8a:f7:
28:d5:69:e5:bb:5c:b3:c6:8e:ab:52:8f:32:ad:b3:22:c5:2a:
6f:fa:b1:43:93:8d:d3:d4:0a:5a:8d:e9:eb:c8:f2:56:ed:07:
38:47:fa:e9:c2:55:c7:5b:86:91:c9:9f:97:b8:d2:19:62:30:
60:8a:86:cf:a3:a1:0a:ff:83:b1:e1:54:c7:bd:33:0c:9b:a0:
e9:36:33:b5:79:b8:7c:88:16:cf:1e:88:db:ac:e9:04:48:f7:
41:be:56:a2:f3:26:d3:a9:16:a6:f6:d1:00:ec:ec:9e:49:af:
80:0f:e7:4d:c1:49:86:31:f6:9b:dc:13:7c:83:02:23:62:34:
dc:e2:4a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:27:45 2024 by rpki-client on console.sobornost.net