Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/K-5Llvu6tkiVnhvLWerdJSFtWF0.roa
File: K-5Llvu6tkiVnhvLWerdJSFtWF0.roa (raw, json)
Hash identifier: KorO26mcbpeVt71qw+vFyWUiYKcad8IN6t2UXQmbT7U=
Subject key identifier: 2B:EE:4B:96:FB:BA:B6:48:95:9E:1B:CB:59:EA:DD:25:21:6D:58:5D
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 01856D11D5DAB916A05C0D04589F4A48E3D6
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/K-5Llvu6tkiVnhvLWerdJSFtWF0.roa
Signing time: Sun 01 Jan 2023 11:22:43 +0000
ROA not before: Sun 01 Jan 2023 11:22:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 49999
IP address blocks: 109.111.245.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:11:d5:da:b9:16:a0:5c:0d:04:58:9f:4a:48:e3:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Jan 1 11:22:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2bee4b96fbbab648959e1bcb59eadd25216d585d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9e:ef:c4:c3:a7:fb:6c:eb:8c:d9:22:38:ed:
cf:16:b1:08:c0:c6:78:3f:dc:1f:82:12:63:29:27:
c5:b8:5a:ec:ae:55:b7:77:58:ff:2c:87:5d:fc:e2:
5d:11:f7:20:67:11:14:a1:72:7a:8b:7e:a9:f3:5a:
ee:9d:dd:61:94:93:b5:e0:88:60:a4:3c:83:cf:8c:
60:44:66:a7:4a:42:f5:23:6c:4c:d0:3c:e3:c8:21:
c7:73:11:8c:a1:3e:d0:ff:3f:39:6e:a7:68:dd:26:
fc:9a:84:ad:3e:07:46:4f:f2:28:0f:88:1c:f1:0a:
6e:23:bb:26:7c:39:c7:07:0c:b7:67:ef:98:50:9e:
82:8a:00:66:ff:4d:7a:ca:7a:2e:e1:8c:69:66:f9:
a8:db:3e:84:87:cc:3a:6a:a5:71:9d:6d:11:23:20:
84:0e:c2:bf:e1:04:8e:34:88:90:65:47:c7:fa:ec:
7a:a7:3c:8e:7f:b0:79:7c:16:cc:35:6d:73:24:07:
b2:c4:c6:23:70:68:88:2f:3b:9b:19:41:e7:c1:25:
1d:79:fe:ab:f5:d2:5a:61:86:24:21:d5:cc:f6:25:
67:09:8c:2e:95:e9:46:ef:71:c3:e8:8f:85:b4:8e:
f2:32:d7:e9:b4:2b:64:b4:4f:91:66:79:97:26:1f:
b5:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:EE:4B:96:FB:BA:B6:48:95:9E:1B:CB:59:EA:DD:25:21:6D:58:5D
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/K-5Llvu6tkiVnhvLWerdJSFtWF0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.111.245.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:16:dd:81:98:4f:cc:36:eb:f4:5d:ca:d8:e6:6c:ea:65:97:
7e:0b:c3:43:48:a1:15:24:e3:a1:2a:87:97:cb:b7:5b:53:03:
9c:74:cf:3d:5a:6e:a0:29:b8:29:16:65:02:e0:65:42:5d:c9:
14:e0:f8:d9:31:02:a9:e1:7e:04:01:61:3f:e8:34:c2:51:ba:
96:36:89:02:3a:f8:89:d2:f0:d2:2c:b4:5e:6b:33:cd:7f:d2:
4c:b7:69:4f:ff:67:f8:89:d3:67:ba:10:49:85:55:f8:11:26:
12:01:af:a5:7d:c1:96:a6:d6:36:87:0b:ca:ce:99:cd:41:04:
0c:d3:e8:d8:2c:49:2c:17:15:4c:66:19:08:9b:c4:49:f3:9c:
12:5a:b6:94:8d:c9:a2:1c:3e:40:99:db:67:d2:bc:46:ca:e2:
1b:e4:e3:e7:c6:0f:94:04:c5:ad:2f:ea:14:60:72:3b:54:8a:
39:18:51:84:9d:d7:13:9e:28:f7:a2:e3:a9:df:f8:68:3f:41:
8a:e2:fb:ad:a5:a8:6d:ec:04:2e:99:7a:00:4c:c5:e7:db:23:
d4:fe:f3:bf:da:22:48:80:b9:84:c9:72:80:07:94:97:e9:9e:
b2:a6:47:fa:43:e6:7c:0c:e3:38:ae:b3:3f:f5:db:b6:52:75:
c4:f1:d5:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net