Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/1db0cb-79fd-4d69-9515-42fcfb755744/1/hP9X0ek01B0xOwuTOo9oRV_hpa0.roa
File: hP9X0ek01B0xOwuTOo9oRV_hpa0.roa (raw, json)
Hash identifier: V7+eHLhIMTXBN1HtxGidX7MGbFfQ0Th9GmxVqTB94Wg=
Subject key identifier: 84:FF:57:D1:E9:34:D4:1D:31:3B:0B:93:3A:8F:68:45:5F:E1:A5:AD
Certificate issuer: /CN=5aee92846fe38fde8e0f62948ca9883c1a29b755
Certificate serial: 018FF18E53E180F2A87C4385A96944DF7057
Authority key identifier: 5A:EE:92:84:6F:E3:8F:DE:8E:0F:62:94:8C:A9:88:3C:1A:29:B7:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wu6ShG_jj96OD2KUjKmIPBopt1U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/1db0cb-79fd-4d69-9515-42fcfb755744/1/hP9X0ek01B0xOwuTOo9oRV_hpa0.roa
Signing time: Fri 07 Jun 2024 07:16:27 +0000
ROA not before: Fri 07 Jun 2024 07:16:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 5400
IP address blocks: 192.109.52.0/24 maxlen: 24
2a0c:7c80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f1:8e:53:e1:80:f2:a8:7c:43:85:a9:69:44:df:70:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5aee92846fe38fde8e0f62948ca9883c1a29b755
Validity
Not Before: Jun 7 07:16:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=84ff57d1e934d41d313b0b933a8f68455fe1a5ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:51:d3:7d:8f:bc:80:a2:37:56:6d:3d:b6:37:
33:9f:d0:1c:4a:97:ed:a7:89:76:aa:05:c9:29:ea:
8f:1d:59:04:b1:b0:25:ad:34:29:e0:0f:8d:79:5a:
38:bc:8f:06:dc:51:9e:36:15:fc:37:5d:ee:4c:39:
4a:1e:6b:f1:bb:7a:e6:c9:93:d5:5f:5f:9d:a5:b4:
ee:47:5f:f8:7d:40:d7:73:6a:f5:d8:8f:c1:2e:11:
51:88:5c:ec:3d:ed:2f:4c:b9:37:6f:f1:79:6c:9c:
01:21:cd:ab:58:93:2c:8c:00:bd:8a:79:bc:d3:8b:
56:76:93:ca:64:0e:be:87:16:00:85:55:f9:bf:16:
1a:12:6a:fc:fc:5c:b5:f3:68:9b:19:b0:82:c4:a0:
e8:93:a3:af:04:7a:73:07:9a:b8:fb:33:23:0c:1b:
a6:3a:c8:51:8d:aa:a5:4f:f2:d4:5d:a8:da:c4:f2:
c8:97:3c:23:6b:05:88:e0:2e:61:33:94:81:63:45:
d1:4f:3a:81:a1:a3:2f:51:f3:4c:09:53:c2:3f:5e:
78:8f:c9:f0:70:32:19:fa:41:45:1d:56:06:fd:5d:
4d:5c:bd:b7:78:fb:5d:b6:bc:c5:ec:d4:f1:38:68:
6a:96:a6:58:9f:d2:40:bb:62:b8:a3:dc:7e:5a:b4:
c4:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:FF:57:D1:E9:34:D4:1D:31:3B:0B:93:3A:8F:68:45:5F:E1:A5:AD
X509v3 Authority Key Identifier:
keyid:5A:EE:92:84:6F:E3:8F:DE:8E:0F:62:94:8C:A9:88:3C:1A:29:B7:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wu6ShG_jj96OD2KUjKmIPBopt1U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1db0cb-79fd-4d69-9515-42fcfb755744/1/hP9X0ek01B0xOwuTOo9oRV_hpa0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/1db0cb-79fd-4d69-9515-42fcfb755744/1/Wu6ShG_jj96OD2KUjKmIPBopt1U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.109.52.0/24
IPv6:
2a0c:7c80::/29
Signature Algorithm: sha256WithRSAEncryption
a1:b6:76:bf:a4:16:d4:ca:20:9f:99:45:2f:f7:a0:82:90:99:
cd:55:97:2c:7b:4a:15:8b:b4:0b:03:6e:71:df:55:39:c0:5f:
ff:23:61:38:ff:58:7e:ba:11:2c:7c:f4:45:07:13:2b:1d:de:
0c:c8:97:a4:9e:4e:f2:ff:29:f2:d8:0c:8d:31:18:84:47:2c:
6f:fd:40:aa:45:45:6a:95:2d:be:46:2c:8e:1b:ac:17:3a:d9:
ec:d8:f1:ca:b4:d2:4a:22:18:1e:55:cd:7c:00:eb:f0:e8:47:
24:44:1d:84:6e:54:6c:21:27:86:85:f1:c5:46:48:1f:26:ff:
31:03:9f:c7:84:9d:2a:b5:f9:e7:23:28:ca:48:6f:ae:bd:b1:
a6:46:da:be:4d:98:cb:d3:f4:db:f4:41:cd:09:c8:bf:ee:f6:
55:0b:3a:79:82:2b:8b:2a:b3:e2:13:ad:22:83:12:ff:4d:f6:
56:79:a8:62:f7:3d:79:08:4e:ac:50:d6:12:8a:a0:1f:ae:99:
d2:16:d3:3c:dc:4a:2b:ed:e7:f8:90:77:b3:5c:99:48:6c:d2:
4e:09:a2:0f:4d:5d:ab:57:85:31:c9:62:40:ff:77:f0:a9:f2:
4c:e2:5d:1b:d2:e4:6e:9d:08:b7:24:51:ab:d4:55:d8:f0:64:
f4:aa:f4:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 25 21:30:18 2024 by rpki-client on console.sobornost.net