Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/c95480-2e26-4662-a7c4-70c8a4bcab0d/1/QjpPWmk9AG5jaVTUqp1VpAGdzxg.roa
File: QjpPWmk9AG5jaVTUqp1VpAGdzxg.roa (raw, json)
Hash identifier: 5lpwS0YJgnwBLBnMtcTEnVmQwwfN4alk/G0zyKFydfo=
Subject key identifier: 42:3A:4F:5A:69:3D:00:6E:63:69:54:D4:AA:9D:55:A4:01:9D:CF:18
Certificate issuer: /CN=9fd1158f9e34011c32a0102561a331d64dd8aa96
Certificate serial: 018958AC934A6C56AF5F9875B9E29C98E785
Authority key identifier: 9F:D1:15:8F:9E:34:01:1C:32:A0:10:25:61:A3:31:D6:4D:D8:AA:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n9EVj540ARwyoBAlYaMx1k3YqpY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/c95480-2e26-4662-a7c4-70c8a4bcab0d/1/QjpPWmk9AG5jaVTUqp1VpAGdzxg.roa
Signing time: Sat 15 Jul 2023 08:30:52 +0000
ROA not before: Sat 15 Jul 2023 08:30:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197787
IP address blocks: 217.114.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:58:ac:93:4a:6c:56:af:5f:98:75:b9:e2:9c:98:e7:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9fd1158f9e34011c32a0102561a331d64dd8aa96
Validity
Not Before: Jul 15 08:30:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=423a4f5a693d006e636954d4aa9d55a4019dcf18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:31:28:97:9c:42:b4:ff:df:e9:ec:22:cf:b7:
cc:1d:67:63:f9:49:e3:81:ed:67:f1:3d:71:aa:0e:
df:7d:2a:02:2c:bf:f6:e4:2f:d3:40:cc:ea:32:0b:
b8:03:26:bf:7d:ee:78:87:0d:a7:88:18:a8:ec:6f:
e0:69:00:73:5a:64:cd:fc:7b:ce:44:16:59:a2:89:
e7:47:a9:64:0f:d5:77:cc:27:b2:f6:63:5d:72:aa:
8a:e9:24:66:69:c7:d2:c3:57:14:78:f0:52:1a:45:
37:63:84:eb:e7:e3:60:54:e7:11:4d:fc:9c:d3:1e:
0e:70:12:96:7b:4a:ad:e3:e6:e1:58:e7:2e:ac:c5:
f0:cb:ef:63:5a:24:45:11:87:7c:8b:37:34:34:14:
42:78:7b:a7:1c:34:a5:f6:f5:11:7b:4d:ca:3d:10:
d9:e6:16:bb:58:15:c4:d1:b0:bf:2b:ea:81:42:70:
9b:7b:69:b7:8b:87:ea:f9:dc:96:09:19:aa:8a:2f:
c4:66:54:66:0d:90:9a:3f:be:9f:9f:43:b1:e9:6e:
25:25:35:77:f0:4d:51:31:70:55:c1:ca:08:35:2c:
2d:ff:29:e2:00:cb:c6:c2:b2:5c:5c:2a:49:a1:c4:
91:a0:bf:c6:3b:2d:b1:e8:64:91:1f:f8:c1:05:b7:
8b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:3A:4F:5A:69:3D:00:6E:63:69:54:D4:AA:9D:55:A4:01:9D:CF:18
X509v3 Authority Key Identifier:
keyid:9F:D1:15:8F:9E:34:01:1C:32:A0:10:25:61:A3:31:D6:4D:D8:AA:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n9EVj540ARwyoBAlYaMx1k3YqpY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c95480-2e26-4662-a7c4-70c8a4bcab0d/1/QjpPWmk9AG5jaVTUqp1VpAGdzxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/c95480-2e26-4662-a7c4-70c8a4bcab0d/1/n9EVj540ARwyoBAlYaMx1k3YqpY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.46.0/24
Signature Algorithm: sha256WithRSAEncryption
82:6c:a1:47:ca:f4:57:98:48:81:a4:de:34:59:b2:b7:22:fe:
e6:e1:75:d5:27:6e:bf:0f:42:12:0e:ff:d0:a3:ab:c0:c8:71:
41:53:75:0f:bb:d7:8e:76:75:04:be:af:63:28:3b:8c:58:8e:
ca:95:a6:db:78:09:db:61:7c:6e:60:40:07:78:84:88:c0:b0:
ea:38:91:71:c2:cd:cf:0b:fc:26:9b:8a:2c:a6:9e:e1:04:e6:
9c:dc:46:53:4b:eb:13:bf:eb:8f:94:5e:d3:e7:9e:cf:d2:d5:
46:42:07:39:1e:6b:1e:b4:e8:97:fd:cf:2c:39:b8:59:19:81:
b1:42:4f:ad:f0:f8:19:0d:4c:d8:f6:31:bd:1b:85:9e:71:a5:
cc:3d:69:5d:af:88:42:5e:2a:7b:cf:e7:87:de:4b:38:63:70:
6d:84:d2:d0:44:e6:fd:bc:91:ca:8f:92:65:1a:89:1a:33:88:
8f:bd:26:92:83:ab:ed:0d:d5:39:17:a6:92:dd:56:89:4d:2b:
c1:bb:c7:5c:4d:67:2b:d2:d4:bd:be:5b:6f:2f:83:5b:94:e0:
69:5b:ab:f2:83:11:43:ad:c2:e5:f8:10:66:33:b1:36:3a:c3:
16:a0:e9:ae:32:8b:8c:e6:75:3b:fc:8f:79:6c:1f:5e:15:aa:
79:f9:c7:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:28 2023 by rpki-client on console.sobornost.net