Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/6f63f2-b412-4e55-8b2f-bf37d96e5b77/1/XJHoohkfx5BYdhsJowgWoEkn1PA.roa
File: XJHoohkfx5BYdhsJowgWoEkn1PA.roa (raw, json)
Hash identifier: F0RXBzMpoBZF5WvFzv6z127wM4VSbPawIf2Kj5f0nR4=
Subject key identifier: 5C:91:E8:A2:19:1F:C7:90:58:76:1B:09:A3:08:16:A0:49:27:D4:F0
Certificate issuer: /CN=640e2db8c5e0fd2c726b0ab4780d97811843ad70
Certificate serial: 01856CB867C9CD0D493F92DEBB7F539FF465
Authority key identifier: 64:0E:2D:B8:C5:E0:FD:2C:72:6B:0A:B4:78:0D:97:81:18:43:AD:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZA4tuMXg_Sxyawq0eA2XgRhDrXA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/6f63f2-b412-4e55-8b2f-bf37d96e5b77/1/XJHoohkfx5BYdhsJowgWoEkn1PA.roa
Signing time: Sun 01 Jan 2023 09:45:02 +0000
ROA not before: Sun 01 Jan 2023 09:45:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.145.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:b8:67:c9:cd:0d:49:3f:92:de:bb:7f:53:9f:f4:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=640e2db8c5e0fd2c726b0ab4780d97811843ad70
Validity
Not Before: Jan 1 09:45:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5c91e8a2191fc79058761b09a30816a04927d4f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:94:82:8d:7b:2e:c0:23:55:89:2d:7d:5a:e3:
ec:0b:cb:d9:3e:55:38:ed:9b:c8:0e:ac:c5:2a:28:
4d:1b:62:2f:26:51:84:05:c8:5d:ff:da:4f:74:63:
69:27:21:6f:22:d5:d8:02:2a:6b:8c:37:fe:d2:a4:
b9:f6:58:72:02:e1:14:98:fc:1a:b3:14:65:7c:56:
90:8d:a9:2b:10:94:42:4d:34:82:41:ac:88:f5:2f:
60:5d:4f:f3:f4:d9:cb:c7:04:fc:b6:6c:75:66:1b:
e1:0c:9c:d4:06:5d:21:53:fb:c5:ae:4f:e6:1b:a7:
5b:82:56:82:85:75:85:77:6b:34:36:8b:ad:2a:9b:
30:75:8a:60:9b:97:4c:42:6c:4d:59:7d:5c:34:46:
ae:8e:00:45:41:50:d0:99:e2:34:0e:ce:c0:3b:31:
a1:25:3e:e4:fc:53:19:2f:90:7e:2d:b0:0d:eb:cf:
37:34:cb:57:22:f7:b8:44:99:60:e0:be:0c:22:3a:
07:b1:57:12:94:87:ae:e8:60:c9:f5:d9:5d:68:da:
9e:5e:1a:0c:b7:f2:e9:31:fb:a1:b9:37:8c:40:9d:
80:ff:66:3c:ca:3e:c8:2a:3f:ca:c9:cd:f9:fb:f3:
80:41:a7:d8:e7:d2:6f:b0:c9:89:16:2a:da:14:0b:
94:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:91:E8:A2:19:1F:C7:90:58:76:1B:09:A3:08:16:A0:49:27:D4:F0
X509v3 Authority Key Identifier:
keyid:64:0E:2D:B8:C5:E0:FD:2C:72:6B:0A:B4:78:0D:97:81:18:43:AD:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZA4tuMXg_Sxyawq0eA2XgRhDrXA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/6f63f2-b412-4e55-8b2f-bf37d96e5b77/1/XJHoohkfx5BYdhsJowgWoEkn1PA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/6f63f2-b412-4e55-8b2f-bf37d96e5b77/1/ZA4tuMXg_Sxyawq0eA2XgRhDrXA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.145.237.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:89:d1:cd:a3:13:e5:af:b0:23:15:97:a5:63:df:da:b2:b3:
86:bc:b1:51:36:a8:ce:3a:e7:70:14:29:bc:21:74:65:ed:73:
ad:94:df:77:41:6e:66:0e:34:10:c9:1a:e3:35:5a:9a:e8:11:
c8:f4:35:d6:7b:ea:ba:d4:44:12:0a:85:10:f8:30:16:42:94:
50:49:6e:89:9a:f0:bb:19:e1:b0:69:19:b3:53:32:20:bd:5d:
cb:5d:2a:8f:0d:9b:8c:18:b2:0e:7f:75:f4:ae:2f:e7:8b:5e:
9d:8f:3d:00:89:f0:d5:6f:11:ab:3c:cd:d5:a9:59:8a:83:c1:
18:53:45:78:20:4a:c1:11:ab:b8:d1:96:f1:40:f1:b6:f9:cb:
a8:e2:e6:b6:ae:de:77:60:e4:07:4e:71:58:63:f3:69:a2:db:
f8:dc:27:a1:40:df:7a:47:80:b9:b5:d3:a7:ba:00:40:0c:eb:
3a:ca:22:25:0d:96:5e:eb:1e:6d:b5:50:f3:6d:5d:56:75:3d:
7f:db:d3:00:50:2a:3e:6c:e1:ab:12:65:5a:17:7b:e6:ec:d9:
b7:41:e7:6a:12:9c:a1:5c:00:4c:8f:d4:13:6f:76:cf:63:0f:
e1:c9:5c:76:f9:3d:4b:93:82:12:f1:ce:2d:3a:63:df:ed:65:
e4:2a:d9:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:47 2023 by rpki-client on console.sobornost.net