Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/pxd2_MkE5S_EH_XUtUgCaDsF4s0.roa
File: pxd2_MkE5S_EH_XUtUgCaDsF4s0.roa (raw, json)
Hash identifier: JiMNDwQn95dNRvYdUPaWUtpxXCvWpzrEcCBxhigetUk=
Subject key identifier: A7:17:76:FC:C9:04:E5:2F:C4:1F:F5:D4:B5:48:02:68:3B:05:E2:CD
Certificate issuer: /CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Certificate serial: 019398B922E83D7798EBE072BDEDE8BA2F20
Authority key identifier: C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/pxd2_MkE5S_EH_XUtUgCaDsF4s0.roa
Signing time: Thu 05 Dec 2024 21:28:10 +0000
ROA not before: Thu 05 Dec 2024 21:28:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 216286
IP address blocks: 78.142.58.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:98:b9:22:e8:3d:77:98:eb:e0:72:bd:ed:e8:ba:2f:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c35eac64ea4802e6824686f7c0d201f2c85cb2aa
Validity
Not Before: Dec 5 21:28:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a71776fcc904e52fc41ff5d4b54802683b05e2cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:89:e3:c8:7c:75:53:0a:d3:55:6e:07:cf:7a:
48:73:39:b7:d4:44:c7:04:0c:96:82:a3:ff:2c:ea:
4c:c9:c6:1e:94:08:31:05:ef:9c:0d:37:77:30:11:
82:d0:50:46:70:ec:f7:be:35:0e:87:3b:52:d7:53:
5c:f1:cf:66:fa:6b:aa:65:35:ac:b8:81:13:0f:4e:
0b:5b:58:01:fc:6c:8c:5a:6c:d1:b1:01:d5:82:a6:
59:71:90:a0:7e:60:d6:28:72:bd:c3:ac:df:47:31:
22:5e:54:2d:4c:bb:92:7f:97:a2:26:60:ff:82:8f:
0e:30:fb:4d:34:94:b4:c3:9f:26:27:89:06:7b:91:
9f:24:68:f4:29:1f:a2:f6:40:45:8c:f1:db:45:4d:
79:7c:90:00:3c:29:ed:5e:da:b3:ea:36:15:d8:df:
4a:df:49:d9:00:95:d8:7a:7b:37:d4:80:d2:5a:26:
17:21:e5:7b:64:b3:13:e0:b1:64:57:90:d8:49:68:
a5:56:ba:1a:d4:c6:28:f4:0e:e1:2d:a2:65:67:0e:
1a:eb:ff:63:8a:26:b6:e7:c4:43:79:44:e8:21:f6:
17:04:72:8e:66:d1:32:77:78:ef:41:c3:62:08:73:
56:a7:0b:24:e5:b4:a5:d3:20:89:94:c1:94:b9:ee:
8e:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:17:76:FC:C9:04:E5:2F:C4:1F:F5:D4:B5:48:02:68:3B:05:E2:CD
X509v3 Authority Key Identifier:
keyid:C3:5E:AC:64:EA:48:02:E6:82:46:86:F7:C0:D2:01:F2:C8:5C:B2:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w16sZOpIAuaCRob3wNIB8shcsqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/pxd2_MkE5S_EH_XUtUgCaDsF4s0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/ccdd8b-7720-4de0-8c43-dacb5f356ea3/1/w16sZOpIAuaCRob3wNIB8shcsqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.142.58.0/24
Signature Algorithm: sha256WithRSAEncryption
32:98:9c:3f:5c:20:db:e9:3e:51:a7:2c:8e:44:62:dc:c5:cf:
61:19:39:29:07:ee:9b:97:a3:75:2f:9f:e2:10:d5:c3:55:ad:
b5:33:fa:10:6e:22:00:3a:ae:2c:89:43:2e:d7:26:06:cc:81:
2e:20:27:95:0a:2d:d2:c2:b6:24:a7:1d:19:80:25:b4:32:49:
04:b8:31:34:6b:be:43:e6:a1:be:61:02:aa:b3:ff:1d:2f:9d:
ea:5b:d2:81:b3:3a:07:8f:55:06:8a:ef:e9:8b:27:f6:16:ca:
09:22:19:98:19:24:81:08:57:b6:3b:16:59:a5:41:6b:27:33:
5a:97:09:c4:61:da:d5:a0:33:19:4f:b9:c3:16:e4:61:55:45:
23:4a:6f:bd:27:14:2c:b3:f1:13:a2:b0:d2:5c:50:d7:c6:c3:
77:a6:1f:cf:ed:ad:8b:de:20:8f:cd:d3:2a:df:ee:4f:fd:a4:
c9:87:ba:bd:12:18:f9:12:26:a1:75:14:e6:e9:07:8e:1e:27:
eb:c9:29:65:7e:cb:f0:b1:1b:0f:36:9f:7f:e1:4a:a3:f4:c9:
0d:68:a3:3b:a7:84:d8:cf:20:e4:f7:ea:63:97:f6:59:68:74:
fe:95:ed:ee:86:e4:01:a8:e3:b1:29:93:93:ba:28:a1:c9:5c:
f1:c3:2f:f7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAZOYuSLoPXeY6+Byve3oui8gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGMzNWVhYzY0ZWE0ODAyZTY4MjQ2ODZmN2MwZDIwMWYyYzg1
Y2IyYWEwHhcNMjQxMjA1MjEyODEwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzE3NzZmY2M5MDRlNTJmYzQxZmY1ZDRiNTQ4MDI2ODNiMDVlMmNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4njyHx1UwrTVW4Hz3pIczm31ETH
BAyWgqP/LOpMycYelAgxBe+cDTd3MBGC0FBGcOz3vjUOhztS11Nc8c9m+muqZTWs
uIETD04LW1gB/GyMWmzRsQHVgqZZcZCgfmDWKHK9w6zfRzEiXlQtTLuSf5eiJmD/
go8OMPtNNJS0w58mJ4kGe5GfJGj0KR+i9kBFjPHbRU15fJAAPCntXtqz6jYV2N9K
30nZAJXYens31IDSWiYXIeV7ZLMT4LFkV5DYSWilVroa1MYo9A7hLaJlZw4a6/9j
iia258RDeUToIfYXBHKOZtEyd3jvQcNiCHNWpwsk5bSl0yCJlMGUue6O0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKcXdvzJBOUvxB/11LVIAmg7BeLNMB8GA1UdIwQY
MBaAFMNerGTqSALmgkaG98DSAfLIXLKqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMt
ZGFjYjVmMzU2ZWEzLzEvcHhkMl9Na0U1U19FSF9YVXRVZ0NhRHNGNHMwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMy9jY2RkOGItNzcyMC00ZGUwLThjNDMtZGFjYjVmMzU2ZWEz
LzEvdzE2c1pPcElBdWFDUm9iM3dOSUI4c2hjc3FvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQATo46MA0G
CSqGSIb3DQEBCwUAA4IBAQAymJw/XCDb6T5RpyyORGLcxc9hGTkpB+6bl6N1L5/i
ENXDVa21M/oQbiIAOq4siUMu1yYGzIEuICeVCi3SwrYkpx0ZgCW0MkkEuDE0a75D
5qG+YQKqs/8dL53qW9KBszoHj1UGiu/piyf2FsoJIhmYGSSBCFe2OxZZpUFrJzNa
lwnEYdrVoDMZT7nDFuRhVUUjSm+9JxQss/ETorDSXFDXxsN3ph/P7a2L3iCPzdMq
3+5P/aTJh7q9Ehj5EiahdRTm6QeOHifrySllfsvwsRsPNp9/4Uqj9MkNaKM7p4TY
zyDk9+pjl/ZZaHT+le3uhuQBqOOxKZOTuiihyVzxwy/3
-----END CERTIFICATE-----
Generated at Wed Dec 25 21:29:57 2024 by rpki-client on console.sobornost.net