Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/Q70lH_PMacXoBT0WN3nHREm5t08.roa
File: Q70lH_PMacXoBT0WN3nHREm5t08.roa (raw, json)
Hash identifier: 2AWSlsp6P87f+K4qevf+RkYXi7Y0zbMb+jVvnSoyOSU=
Subject key identifier: 43:BD:25:1F:F3:CC:69:C5:E8:05:3D:16:37:79:C7:44:49:B9:B7:4F
Certificate issuer: /CN=764f8daadf1d775d59d1502b573901b875513b56
Certificate serial: 077E67F8
Authority key identifier: 76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/Q70lH_PMacXoBT0WN3nHREm5t08.roa
Signing time: Sat 01 Jan 2022 00:59:03 +0000
ROA not before: Sat 01 Jan 2022 00:59:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47479
IP address blocks: 178.254.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125724664 (0x77e67f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=764f8daadf1d775d59d1502b573901b875513b56
Validity
Not Before: Jan 1 00:59:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=43bd251ff3cc69c5e8053d163779c74449b9b74f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d9:5e:23:23:12:b8:5c:4a:93:0a:5e:1b:ab:
6f:af:38:79:97:a5:bb:43:b1:e2:65:4f:89:e2:4d:
16:f4:a9:40:a8:d8:fa:b1:24:a2:98:fe:7f:ab:5c:
27:df:85:31:b7:76:28:f4:1a:41:48:45:87:84:e9:
70:e5:1a:b5:c4:ef:69:3e:13:69:5e:2a:f0:cc:c3:
6d:3a:a0:2d:6a:c3:0b:7b:00:bc:b6:79:a4:f0:33:
84:d7:fc:3a:57:c6:26:1d:e5:0f:f7:f7:9a:d2:87:
43:1d:73:66:c6:4a:90:7b:87:99:75:43:70:e7:a8:
92:22:a0:ae:7c:5c:0f:aa:e9:17:7a:3e:e1:b5:59:
27:58:15:d6:47:53:9b:c0:7a:a4:d9:66:16:72:fe:
da:ad:c7:52:9d:4f:fe:05:bb:8a:45:5c:72:57:8a:
e5:d8:b7:4a:0d:91:33:25:7b:ca:87:7d:65:a9:d6:
fe:36:97:f3:3c:e5:55:fc:bd:70:21:ce:2c:a9:d8:
7a:60:2c:96:34:4c:2b:d6:aa:c7:37:3f:5a:95:46:
64:ff:95:bd:92:b5:d3:4b:a3:27:91:7d:9e:04:eb:
54:7d:ee:88:09:cb:fd:b6:dd:a8:ce:50:0c:ac:a3:
93:d8:7d:a8:6f:5c:18:de:61:84:d5:cd:4f:62:33:
0f:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:BD:25:1F:F3:CC:69:C5:E8:05:3D:16:37:79:C7:44:49:B9:B7:4F
X509v3 Authority Key Identifier:
keyid:76:4F:8D:AA:DF:1D:77:5D:59:D1:50:2B:57:39:01:B8:75:51:3B:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/Q70lH_PMacXoBT0WN3nHREm5t08.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/7b92bf-011b-44a7-8382-bfb2b8815e49/1/dk-Nqt8dd11Z0VArVzkBuHVRO1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.254.134.0/24
Signature Algorithm: sha256WithRSAEncryption
88:15:c6:1a:83:00:ef:ce:54:54:54:d3:2b:eb:cb:01:aa:90:
c0:82:fe:da:b1:a0:4c:7f:fa:bf:b6:a9:d6:59:4c:60:2c:6d:
5f:c1:53:10:32:66:ba:78:0d:d8:04:88:00:fe:c0:4f:00:5e:
3e:c8:c4:9e:84:68:24:c4:e3:9b:fd:84:48:10:ff:65:a4:59:
ae:31:48:da:50:bd:11:4c:ae:b0:2d:22:b5:0f:ef:30:d9:a3:
f6:17:78:a4:d6:60:90:c6:5a:4f:34:5a:97:54:54:77:56:6a:
cf:bf:5b:1b:0d:f5:4d:14:b0:16:1f:5e:9a:5a:6a:fb:b3:18:
26:3f:3e:21:22:64:34:69:e9:38:a8:a9:ac:56:77:e1:6d:b7:
24:d3:0a:7a:00:16:b0:5d:20:06:8a:d0:5e:39:ea:f5:04:1f:
fe:d5:34:26:9a:89:5a:9f:fd:97:dc:08:68:77:b2:c8:0f:2d:
05:ce:b3:7f:7e:fe:fe:ae:14:37:3f:e3:36:ef:a3:3c:f2:8f:
02:7f:31:54:4a:42:cb:b0:43:2e:4c:33:c1:d4:75:2f:5d:b8:
c2:18:27:e4:c4:36:c1:3d:7c:8b:18:5f:85:69:69:97:d7:1d:
c7:cb:09:da:f5:5b:27:c5:b4:0e:3c:d7:0d:9c:36:a0:dd:01:
02:3c:e8:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:35 2023 by rpki-client on console.sobornost.net