Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/218311-4443-416f-99b6-badd619cf342/1/d31W70yb3zP-zLSnfhB0RKWh2uc.roa
File: d31W70yb3zP-zLSnfhB0RKWh2uc.roa (raw, json)
Hash identifier: 6vbNp9QW6bUo5YxkHj1f+PMK9wyxnGs6k9knBiKJ1zo=
Subject key identifier: 77:7D:56:EF:4C:9B:DF:33:FE:CC:B4:A7:7E:10:74:44:A5:A1:DA:E7
Certificate issuer: /CN=55b1f12ad2c470d8af372c58f4904e4c9fb684b5
Certificate serial: 01856DA6691E3CE4767AD2AEE138DABC858B
Authority key identifier: 55:B1:F1:2A:D2:C4:70:D8:AF:37:2C:58:F4:90:4E:4C:9F:B6:84:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VbHxKtLEcNivNyxY9JBOTJ-2hLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/218311-4443-416f-99b6-badd619cf342/1/d31W70yb3zP-zLSnfhB0RKWh2uc.roa
Signing time: Sun 01 Jan 2023 14:05:00 +0000
ROA not before: Sun 01 Jan 2023 14:05:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48715
IP address blocks: 5.1.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:a6:69:1e:3c:e4:76:7a:d2:ae:e1:38:da:bc:85:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=55b1f12ad2c470d8af372c58f4904e4c9fb684b5
Validity
Not Before: Jan 1 14:05:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=777d56ef4c9bdf33feccb4a77e107444a5a1dae7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bc:3c:a4:45:84:8a:78:9b:4d:4c:39:d8:da:
ec:25:65:4c:58:07:eb:57:09:aa:49:f3:19:17:a8:
8e:20:6e:8d:39:39:5b:61:63:c8:85:64:5d:d2:63:
66:c2:23:87:c1:77:1c:8f:a4:07:3b:c6:cc:a8:7b:
7b:b0:0f:e7:b9:56:2e:75:7c:d6:df:95:23:8d:26:
80:9c:4b:ba:15:01:0c:32:20:94:c7:ab:bd:8d:33:
c7:41:bc:8e:da:20:ac:bf:b3:b6:b5:9e:34:2e:cc:
d6:e5:ad:6b:de:df:a4:c3:56:eb:1c:1d:73:65:0b:
ba:b1:8d:4f:69:dd:80:58:f3:75:f2:ae:32:e8:34:
c3:13:2a:5b:be:6d:c9:4c:d9:4e:a4:d9:bd:22:d2:
a4:4c:bf:02:fd:05:5b:36:a1:c4:fd:4e:ad:ab:4f:
05:2a:ae:09:0d:50:6f:fa:1e:ea:5c:b5:6f:4c:b8:
ab:96:d0:34:82:59:58:7e:2e:fc:b5:30:62:42:02:
50:a4:8c:0e:99:4f:db:e3:6f:9d:bb:2b:c0:31:15:
dc:f7:1f:21:df:98:86:7e:56:c3:f0:ac:d9:2e:54:
69:59:88:91:cd:d8:0e:2b:be:d5:97:a4:f4:86:34:
db:29:2a:0c:67:fa:d9:20:a6:95:34:e3:d5:73:c6:
22:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7D:56:EF:4C:9B:DF:33:FE:CC:B4:A7:7E:10:74:44:A5:A1:DA:E7
X509v3 Authority Key Identifier:
keyid:55:B1:F1:2A:D2:C4:70:D8:AF:37:2C:58:F4:90:4E:4C:9F:B6:84:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VbHxKtLEcNivNyxY9JBOTJ-2hLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/218311-4443-416f-99b6-badd619cf342/1/d31W70yb3zP-zLSnfhB0RKWh2uc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/218311-4443-416f-99b6-badd619cf342/1/VbHxKtLEcNivNyxY9JBOTJ-2hLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.1.43.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:89:e0:25:e2:ea:de:bc:0d:4c:a1:2f:93:db:a5:68:b8:68:
2e:04:b3:1d:37:79:e7:65:16:66:68:f1:43:38:25:53:88:a5:
2f:51:aa:d2:91:51:0d:5e:52:9e:69:ed:e5:2b:09:29:b0:11:
2f:92:d3:12:2d:7f:ad:c7:37:7e:2b:d3:c7:1a:b5:fc:f5:ca:
50:12:51:7c:46:3e:14:e2:7b:52:73:e2:c9:7e:d4:dd:a4:02:
14:17:c1:8b:61:75:79:c3:07:b1:83:80:38:f4:0f:55:93:2e:
dc:f0:42:09:77:c9:54:0e:c0:c4:11:ff:21:ce:3a:92:2e:2e:
60:0f:94:ac:ef:28:23:c0:41:a6:ac:dc:99:e5:ea:4b:a4:f0:
62:a5:3c:a1:d2:ae:1b:cf:08:b2:12:5a:8f:ae:d9:b8:f9:13:
1f:44:85:b3:ef:7e:ba:6b:12:5b:02:b6:a3:63:a4:e1:83:99:
85:e3:f5:53:04:8b:0d:2c:c3:ca:a9:39:9c:fe:b3:c8:0d:b1:
69:53:f8:9e:b7:49:f1:f4:54:df:3a:a3:c8:7e:e4:b5:c5:78:
c6:4c:9e:67:0c:55:8d:08:fa:30:e4:3f:32:62:36:c8:d9:12:
5a:e4:c2:db:14:3f:42:04:5f:eb:51:8a:23:0e:f1:4e:29:9d:
72:5b:85:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:54 2023 by rpki-client on console.sobornost.net