Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/44f32f-8723-41a0-8014-376292d8b2fe/1/5geOYgVpCIZYoou0tL7Zzrx6UgY.roa
File: 5geOYgVpCIZYoou0tL7Zzrx6UgY.roa (raw, json)
Hash identifier: sBEbEhcAChaeA6mKvQcbTrmsAYiJfFnpqBkz+YfDhB8=
Subject key identifier: E6:07:8E:62:05:69:08:86:58:A2:8B:B4:B4:BE:D9:CE:BC:7A:52:06
Certificate issuer: /CN=ae5d5fbbd4277e02297ecd01b5cd7e1bf29fc759
Certificate serial: 018755DF2D5647BB2F94D3B7F98B59E4D185
Authority key identifier: AE:5D:5F:BB:D4:27:7E:02:29:7E:CD:01:B5:CD:7E:1B:F2:9F:C7:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rl1fu9QnfgIpfs0Btc1-G_Kfx1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/44f32f-8723-41a0-8014-376292d8b2fe/1/5geOYgVpCIZYoou0tL7Zzrx6UgY.roa
Signing time: Thu 06 Apr 2023 09:21:42 +0000
ROA not before: Thu 06 Apr 2023 09:21:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60781
IP address blocks: 109.234.75.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:55:df:2d:56:47:bb:2f:94:d3:b7:f9:8b:59:e4:d1:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ae5d5fbbd4277e02297ecd01b5cd7e1bf29fc759
Validity
Not Before: Apr 6 09:21:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e6078e620569088658a28bb4b4bed9cebc7a5206
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:98:f6:ec:8f:af:90:d0:00:09:dc:67:8c:aa:
be:c4:ee:7d:7d:0d:ee:e7:f6:9e:f9:47:3c:cf:c9:
05:6c:23:41:bd:5d:d5:50:f3:4b:34:e5:1e:a0:a6:
a1:0f:0e:7d:ce:e5:1a:c3:d0:11:77:97:dc:b0:65:
99:17:0f:c3:6b:28:77:50:fc:15:35:42:22:b5:46:
ad:9c:84:34:0c:de:cf:27:47:cc:b4:d8:67:70:f9:
12:ff:08:63:a0:c9:80:d7:53:c7:8d:21:a1:3e:9c:
2a:36:06:ef:d5:c1:8f:cc:03:e5:1d:45:db:aa:d3:
cb:ef:55:fd:c0:dc:e8:f2:8e:d1:1a:b4:be:91:40:
1d:47:9f:20:08:68:80:8a:3d:52:2c:5f:f0:84:8e:
2e:fb:50:c3:a0:e9:a8:5f:70:81:90:e6:2a:05:59:
f8:e3:4b:c1:8d:51:c4:c6:fb:05:9f:95:f9:38:b0:
8f:de:ac:34:35:4e:6b:7b:c5:b2:f3:68:43:69:e3:
f4:61:c5:03:3b:05:84:5a:b5:29:14:e0:7a:e9:e3:
13:70:03:9c:a7:fb:f1:e6:8d:ba:58:0a:98:1c:c3:
5c:11:fb:e3:56:57:3a:f8:25:2f:07:92:17:ce:01:
10:fb:e3:c9:d0:14:2f:c2:36:8f:4b:b1:fc:eb:e1:
db:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:07:8E:62:05:69:08:86:58:A2:8B:B4:B4:BE:D9:CE:BC:7A:52:06
X509v3 Authority Key Identifier:
keyid:AE:5D:5F:BB:D4:27:7E:02:29:7E:CD:01:B5:CD:7E:1B:F2:9F:C7:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rl1fu9QnfgIpfs0Btc1-G_Kfx1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/44f32f-8723-41a0-8014-376292d8b2fe/1/5geOYgVpCIZYoou0tL7Zzrx6UgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/44f32f-8723-41a0-8014-376292d8b2fe/1/rl1fu9QnfgIpfs0Btc1-G_Kfx1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.75.0/24
Signature Algorithm: sha256WithRSAEncryption
82:53:b7:cd:65:ac:26:5b:b2:0d:0b:4e:e0:dd:dc:0b:04:9b:
ba:92:f3:72:b7:f7:88:6f:b3:be:ff:61:d1:ee:a9:db:05:43:
3e:17:78:f4:fa:06:49:d4:dc:d4:4e:19:93:54:3b:7b:3b:00:
64:46:f9:e7:80:46:63:9d:d0:c3:09:91:62:39:41:24:13:94:
c8:b7:a3:0b:2c:7e:02:e0:22:e4:8b:bf:16:3d:ed:70:6d:d2:
a2:6d:72:08:6d:48:05:43:b8:df:c2:ae:59:df:aa:0b:bd:3b:
f3:d4:ab:f4:bd:c8:be:18:0f:e8:df:77:3b:6d:24:db:16:82:
c5:b0:80:94:92:07:4f:57:35:09:13:90:3e:81:e2:ab:c4:be:
10:22:e1:1e:90:c0:42:70:c7:f4:11:19:dc:89:53:ac:61:31:
b3:9d:9c:0b:9c:84:b9:e2:de:7f:d1:ab:4e:57:5f:0c:eb:88:
fa:a1:fd:16:08:5a:70:ac:5d:e5:55:71:fc:1e:43:0b:01:18:
46:ca:84:2c:37:53:1c:8e:7e:e5:a9:ab:55:71:a8:be:9d:96:
06:d9:d1:f3:a6:a2:5c:9e:b9:74:a1:6f:4f:4e:4e:1e:a0:e2:
cc:52:be:c2:7c:21:17:a5:e9:20:75:93:d4:70:43:ce:18:31:
46:19:08:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:12 2023 by rpki-client on console.sobornost.net