Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/5764e9-3a73-4799-b119-909530d487f8/1/4Aa7LwGsOq7SOkUpWi9juXW2i7Q.roa
File: 4Aa7LwGsOq7SOkUpWi9juXW2i7Q.roa (raw, json)
Hash identifier: ER3a/GCKhx2T5L96GC450lyp0MAq759cmRaL1Q2tyNM=
Subject key identifier: E0:06:BB:2F:01:AC:3A:AE:D2:3A:45:29:5A:2F:63:B9:75:B6:8B:B4
Certificate issuer: /CN=5868fe00e3940657ac7fe634e8982c81b0f00686
Certificate serial: 01856F14E063BDBEEF5C332E9E36AB3CD23A
Authority key identifier: 58:68:FE:00:E3:94:06:57:AC:7F:E6:34:E8:98:2C:81:B0:F0:06:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGj-AOOUBlesf-Y06JgsgbDwBoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/5764e9-3a73-4799-b119-909530d487f8/1/4Aa7LwGsOq7SOkUpWi9juXW2i7Q.roa
Signing time: Sun 01 Jan 2023 20:45:17 +0000
ROA not before: Sun 01 Jan 2023 20:45:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197883
IP address blocks: 176.97.207.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:14:e0:63:bd:be:ef:5c:33:2e:9e:36:ab:3c:d2:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5868fe00e3940657ac7fe634e8982c81b0f00686
Validity
Not Before: Jan 1 20:45:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e006bb2f01ac3aaed23a45295a2f63b975b68bb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6c:e9:a2:36:5f:9e:90:14:44:ad:a0:2f:6c:
87:00:0e:ee:d7:56:b2:80:d4:a0:92:c9:ab:1a:fa:
fb:ab:cd:b6:cc:c8:54:78:55:81:39:ca:1a:8f:4c:
30:bb:79:b9:e6:94:02:78:8b:cb:f0:a9:cd:f8:1d:
1b:01:5c:9c:63:c2:a8:7d:39:a8:30:30:f8:50:62:
df:b1:65:36:1f:ab:cf:e4:0d:5f:2a:74:d2:8d:b6:
ce:6a:d1:b3:74:fe:2b:d7:8f:c6:18:5b:b5:6b:9c:
df:5c:e8:06:9b:cc:ce:53:3f:ae:03:40:6c:2b:8e:
a6:65:fe:5f:75:33:00:56:49:8a:05:51:e4:64:d8:
c4:03:ef:a5:58:66:5a:9f:d2:44:cf:b3:40:8d:03:
09:57:46:4a:d7:ce:32:67:36:55:83:13:7f:b5:1f:
c4:3b:86:10:54:44:b8:c6:26:c1:98:c1:31:2e:d5:
19:05:92:6f:77:7e:90:c7:5c:f8:18:b8:42:14:55:
8d:bb:49:fd:37:d3:a7:de:19:a3:5e:a5:fa:51:17:
05:70:82:6e:6c:cb:40:52:9a:ba:5a:3d:61:d3:12:
7e:ce:8e:e6:31:6e:92:1f:f8:49:19:fd:90:6c:51:
d5:a6:bd:a9:5d:a9:c7:a4:55:00:3d:27:70:0f:75:
0b:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:06:BB:2F:01:AC:3A:AE:D2:3A:45:29:5A:2F:63:B9:75:B6:8B:B4
X509v3 Authority Key Identifier:
keyid:58:68:FE:00:E3:94:06:57:AC:7F:E6:34:E8:98:2C:81:B0:F0:06:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGj-AOOUBlesf-Y06JgsgbDwBoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/5764e9-3a73-4799-b119-909530d487f8/1/4Aa7LwGsOq7SOkUpWi9juXW2i7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/5764e9-3a73-4799-b119-909530d487f8/1/WGj-AOOUBlesf-Y06JgsgbDwBoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.207.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:be:39:3b:02:22:b8:d1:a5:f8:25:b6:82:58:9f:f3:30:b6:
35:cd:70:56:fc:4c:bb:cf:9e:e0:8b:14:20:df:81:a3:64:ca:
e4:d2:36:e6:2e:cb:20:82:0d:42:5f:61:29:b5:95:19:e0:b4:
a8:00:4e:69:ff:5c:6b:f9:c2:10:69:4b:09:4b:e8:06:bd:1a:
d8:24:52:2f:3e:56:2b:d4:fa:fd:01:0b:fb:06:5c:f9:aa:c6:
64:17:21:3d:45:0f:79:06:5b:9d:0b:de:87:03:b8:fa:2b:3e:
34:d8:ea:32:1c:95:66:54:f5:f6:52:23:f2:f4:03:b5:7a:3b:
a1:38:2c:81:60:9c:21:77:bc:3a:f7:50:81:8a:c4:be:8f:aa:
f3:3f:32:3b:6f:68:3d:5e:05:74:73:3f:68:b7:42:77:4e:dd:
74:8a:57:8e:a2:09:ab:60:9f:ce:b9:8b:0b:b3:36:39:a2:e7:
ee:8c:39:f2:8e:69:ed:29:36:92:46:53:76:10:e7:fa:00:de:
a0:4c:c0:33:8b:38:b9:d9:43:34:90:0b:cb:5d:55:ed:ca:c7:
af:b9:ac:5a:04:e7:35:e9:2f:dd:54:23:20:c2:b0:b2:23:fa:
6f:72:8b:cd:76:3c:fc:40:30:c1:d3:b9:a7:57:52:77:d3:26:
6d:80:d8:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:28 2024 by rpki-client on console-fra.rpki-client.org