Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/218311-4443-416f-99b6-badd619cf342/1/HPMH5Mq7UmnkBTInB8RwejlcRcc.roa
File: HPMH5Mq7UmnkBTInB8RwejlcRcc.roa (raw, json)
Hash identifier: vvwgkkuNtbnKyUNHdMmEPXMHqneq3swd0i4vFvDZWuU=
Subject key identifier: 1C:F3:07:E4:CA:BB:52:69:E4:05:32:27:07:C4:70:7A:39:5C:45:C7
Certificate issuer: /CN=55b1f12ad2c470d8af372c58f4904e4c9fb684b5
Certificate serial: 01304B66
Authority key identifier: 55:B1:F1:2A:D2:C4:70:D8:AF:37:2C:58:F4:90:4E:4C:9F:B6:84:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VbHxKtLEcNivNyxY9JBOTJ-2hLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/218311-4443-416f-99b6-badd619cf342/1/HPMH5Mq7UmnkBTInB8RwejlcRcc.roa
Signing time: Sat 01 Jan 2022 01:56:59 +0000
ROA not before: Sat 01 Jan 2022 01:56:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44285
IP address blocks: 5.1.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19942246 (0x1304b66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55b1f12ad2c470d8af372c58f4904e4c9fb684b5
Validity
Not Before: Jan 1 01:56:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1cf307e4cabb5269e405322707c4707a395c45c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:07:3a:1a:09:2c:02:a9:4a:22:3c:bc:a4:17:
84:68:bf:9d:85:ea:e7:6d:b9:d2:04:b3:54:78:79:
63:2b:a3:e2:45:a4:12:bc:26:d2:e5:29:cc:6a:5e:
ae:36:b1:a1:d6:f7:95:22:cf:f8:03:1a:58:22:ab:
c3:73:c6:5b:0d:72:59:65:1c:73:e3:e7:f3:d4:5f:
36:ed:3c:87:58:fe:c5:3d:84:df:57:20:a6:c0:93:
72:29:02:c6:c8:fb:bb:89:a8:69:70:4b:64:9f:1c:
a0:4b:bc:89:1b:6d:72:2b:bf:70:fc:c5:cc:96:a9:
01:1a:5c:a9:f6:90:85:89:0c:91:db:58:e9:01:29:
95:d1:90:c8:c2:e4:32:87:0b:66:51:4d:2a:80:6a:
92:0b:f0:4d:06:73:4d:7a:18:0e:6a:93:93:43:12:
72:bc:0f:18:40:56:4b:50:07:d3:23:c3:45:00:c9:
07:dc:41:31:01:03:59:24:27:55:d3:66:cf:c1:6b:
b8:5d:98:6a:6f:41:04:ae:2d:57:f2:f6:4d:0e:a0:
c7:c1:d9:86:ea:56:05:d6:30:61:bb:d6:6f:65:7e:
ab:ab:63:ea:1c:2c:90:e2:d3:7c:40:f2:5a:bf:b2:
62:d5:dd:75:bd:44:b7:09:57:02:7e:85:7a:ce:04:
43:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F3:07:E4:CA:BB:52:69:E4:05:32:27:07:C4:70:7A:39:5C:45:C7
X509v3 Authority Key Identifier:
keyid:55:B1:F1:2A:D2:C4:70:D8:AF:37:2C:58:F4:90:4E:4C:9F:B6:84:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VbHxKtLEcNivNyxY9JBOTJ-2hLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/218311-4443-416f-99b6-badd619cf342/1/HPMH5Mq7UmnkBTInB8RwejlcRcc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/218311-4443-416f-99b6-badd619cf342/1/VbHxKtLEcNivNyxY9JBOTJ-2hLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.43.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:f0:4e:8e:29:3a:6d:40:0b:b8:47:79:45:a5:6e:78:d4:4e:
1a:6a:83:a7:ed:cf:54:ed:33:29:ef:f1:de:cd:2b:c8:dd:6d:
55:e0:b0:bd:d5:e6:c3:fb:4f:7b:cf:63:a6:7f:a8:72:20:12:
29:62:1c:aa:dd:9b:8e:1c:2f:a5:1d:20:4b:e9:2a:fe:de:3b:
d7:68:c1:55:78:a0:cb:05:c4:93:15:77:e7:6f:c2:72:87:a2:
88:41:d4:65:0c:51:71:37:92:2f:42:5f:01:54:58:28:92:41:
cf:30:59:85:d3:72:4d:b8:5d:ef:c4:59:10:a6:02:60:8d:6f:
44:e6:61:2d:25:f4:71:d1:3f:a3:ac:17:e2:4e:a3:20:f1:ca:
cc:06:9f:17:2a:4b:d4:3e:7d:a6:5e:c2:02:c2:46:c5:a2:8a:
fd:75:b6:4c:1d:99:15:4f:c2:9f:4b:d4:e2:aa:c1:dc:6b:3e:
ed:da:15:18:2a:fc:9b:ec:a4:49:13:0d:aa:92:96:1f:ae:46:
e5:1b:4f:d9:0c:02:83:b5:05:6f:f8:71:fa:ba:94:4c:1c:7e:
58:52:d4:6b:b5:ea:e0:73:4d:f5:ab:0c:ec:59:f8:ba:96:15:
73:50:70:97:72:2a:8a:82:b1:44:01:08:db:51:61:37:6c:7c:
c2:3b:c2:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:54 2023 by rpki-client on console.sobornost.net