Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/38e027-5820-4cc9-aa35-a4450b6b4b11/1/44dA5EWNw45zgZyUZ2yt8GjQgAM.roa
File: 44dA5EWNw45zgZyUZ2yt8GjQgAM.roa (raw, json)
Hash identifier: bbVmGQYJXxCYSf4jpnrKvcu34Vfq2FM6uJUXN+uAHOE=
Subject key identifier: E3:87:40:E4:45:8D:C3:8E:73:81:9C:94:67:6C:AD:F0:68:D0:80:03
Certificate issuer: /CN=97c926998e26e283fd0220f59f4b06737bff3661
Certificate serial: 9673AE
Authority key identifier: 97:C9:26:99:8E:26:E2:83:FD:02:20:F5:9F:4B:06:73:7B:FF:36:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l8kmmY4m4oP9AiD1n0sGc3v_NmE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/38e027-5820-4cc9-aa35-a4450b6b4b11/1/44dA5EWNw45zgZyUZ2yt8GjQgAM.roa
Signing time: Sat 01 Jan 2022 02:01:32 +0000
ROA not before: Sat 01 Jan 2022 02:01:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43618
IP address blocks: 5.183.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9860014 (0x9673ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97c926998e26e283fd0220f59f4b06737bff3661
Validity
Not Before: Jan 1 02:01:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e38740e4458dc38e73819c94676cadf068d08003
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:8c:e7:4c:38:18:4f:01:f1:49:2d:fc:5e:64:
5a:11:f7:bc:fe:63:b6:3a:24:88:d2:a8:fb:8c:00:
8d:8d:7e:1c:c2:04:63:a7:de:c9:72:20:61:1a:c9:
04:bb:6b:df:f5:21:a3:ab:60:a0:6e:71:94:79:25:
fa:b7:da:3d:08:56:27:1b:4f:67:16:6e:e0:f9:24:
fc:87:0c:41:7e:41:4f:f2:34:f4:53:05:ed:00:57:
d3:ee:1a:e7:85:51:5f:70:c2:49:b7:c4:6f:69:2a:
36:82:b2:94:1c:84:43:e5:8c:34:77:99:6a:88:b4:
ff:43:f3:04:22:d0:cf:b9:89:34:12:9b:6a:be:b5:
3a:c9:1e:42:65:64:a7:21:6d:14:92:92:7b:a4:af:
bf:aa:c6:40:e4:63:d5:61:9c:94:64:e7:c3:11:d0:
98:00:0a:c1:e2:3e:20:56:73:4b:23:f5:f5:f8:c1:
e9:6a:b3:f9:46:5f:5e:29:1f:c2:f7:da:47:84:a7:
09:df:f2:13:15:f6:fb:52:1c:81:dc:b9:50:92:12:
cf:7e:4a:80:4e:0f:33:89:12:2e:81:8d:82:9e:c6:
df:c3:a7:8c:4a:7d:82:0c:ae:b0:c6:fd:84:27:6d:
14:5f:fd:46:9e:8a:d0:35:aa:44:61:93:c9:ec:13:
f7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:87:40:E4:45:8D:C3:8E:73:81:9C:94:67:6C:AD:F0:68:D0:80:03
X509v3 Authority Key Identifier:
keyid:97:C9:26:99:8E:26:E2:83:FD:02:20:F5:9F:4B:06:73:7B:FF:36:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l8kmmY4m4oP9AiD1n0sGc3v_NmE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/38e027-5820-4cc9-aa35-a4450b6b4b11/1/44dA5EWNw45zgZyUZ2yt8GjQgAM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/38e027-5820-4cc9-aa35-a4450b6b4b11/1/l8kmmY4m4oP9AiD1n0sGc3v_NmE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.150.0/24
Signature Algorithm: sha256WithRSAEncryption
79:7e:eb:8f:29:98:68:d6:ec:c1:c9:b2:3d:2c:89:4a:8f:1c:
72:0b:3a:9b:13:f9:15:48:2b:57:e4:6d:48:7e:5a:18:bc:fa:
1a:e8:96:98:56:58:51:5b:9e:ef:31:95:64:e8:3f:20:33:86:
db:e8:d2:c4:a9:f1:7e:26:dc:7e:ac:0c:c7:70:74:b5:76:10:
48:94:5e:fa:c0:2d:53:18:9b:18:f5:a4:ea:04:50:6c:fd:cf:
b7:6b:9a:3d:2e:d0:33:30:55:5c:06:da:64:94:f3:1f:83:6f:
d6:34:e8:58:6e:26:28:db:e0:7a:89:91:9f:5d:de:11:78:bd:
61:e3:3a:72:bf:ee:30:1d:ee:2d:38:1c:2a:d8:a9:d6:91:d7:
fd:b8:66:f4:48:49:38:a8:81:ea:49:11:15:79:55:81:2d:9c:
24:e4:e5:f7:0c:eb:c6:34:0b:e9:fd:c0:dc:5a:4c:9d:13:6b:
02:12:03:1f:cf:1b:34:df:ab:3e:0d:81:cb:1f:00:5c:f0:32:
20:d1:18:1d:b8:57:e8:74:3a:d5:38:89:b3:6c:9f:2d:f1:0e:
44:9d:d6:06:b4:2b:a7:93:cf:d1:e3:60:b4:99:0a:34:91:41:
f3:98:0b:ed:ef:ed:77:fd:ca:fa:99:83:c9:86:74:ee:9e:03:
33:01:f9:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:33 2023 by rpki-client on console.sobornost.net