Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/a7df4a-77a9-43d8-bfd7-a853144879f3/1/0OxNdVP08269vakJ71LFoNkE-Lk.roa
File: 0OxNdVP08269vakJ71LFoNkE-Lk.roa (raw, json)
Hash identifier: 2OVPjDbLIXqnVLvH/hdL9gMNE4GLdGzTeGDxVV0x1lk=
Subject key identifier: D0:EC:4D:75:53:F4:F3:6E:BD:BD:A9:09:EF:52:C5:A0:D9:04:F8:B9
Certificate issuer: /CN=e4749c3367ba6e7e9f77354a55d388379135df0e
Certificate serial: 01856EAFE72652703308ADD56C32E7A445D0
Authority key identifier: E4:74:9C:33:67:BA:6E:7E:9F:77:35:4A:55:D3:88:37:91:35:DF:0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5HScM2e6bn6fdzVKVdOIN5E13w4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/a7df4a-77a9-43d8-bfd7-a853144879f3/1/0OxNdVP08269vakJ71LFoNkE-Lk.roa
Signing time: Sun 01 Jan 2023 18:54:59 +0000
ROA not before: Sun 01 Jan 2023 18:54:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212328
IP address blocks: 82.102.14.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:af:e7:26:52:70:33:08:ad:d5:6c:32:e7:a4:45:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e4749c3367ba6e7e9f77354a55d388379135df0e
Validity
Not Before: Jan 1 18:54:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d0ec4d7553f4f36ebdbda909ef52c5a0d904f8b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:31:ff:35:c1:b1:ef:fc:c5:68:1a:64:a7:c7:
24:2b:96:f6:95:54:9e:0c:ba:f0:2b:ed:7b:ef:ce:
ab:c9:47:62:f4:50:22:0b:ab:00:ca:ff:68:cc:eb:
bf:00:20:2f:6a:ee:d0:ef:34:54:3d:cf:60:a3:c8:
a7:1b:40:b9:bf:d1:2e:ab:82:c7:fc:5b:bf:86:26:
9c:fc:71:e2:e0:2e:61:92:2b:06:b6:92:26:0b:ef:
48:e8:a4:de:9c:6c:0e:d8:9a:65:bc:d6:a1:a2:88:
e7:bc:25:59:75:29:8d:a4:66:df:b9:16:1f:9c:37:
bf:6e:cd:8c:a9:54:13:af:2a:bf:fc:51:6b:f7:2d:
c9:ec:4c:38:ec:af:f7:30:67:fe:d5:a9:55:4a:fd:
36:e1:ed:7f:fa:8a:33:94:a0:5c:2b:cb:c4:19:ea:
6e:78:28:5a:70:97:2e:9c:57:18:94:ea:f0:d5:93:
8e:33:09:cb:69:a3:a1:22:52:33:0a:19:91:15:1f:
e9:2d:b5:1d:77:8c:19:48:d3:af:42:b0:d4:d5:e9:
0d:65:9a:10:b0:f3:05:d8:ad:b7:da:b6:2c:9d:db:
64:8e:b9:e5:dc:f7:85:7f:95:7c:84:08:f8:06:21:
de:c5:08:9e:ae:d0:93:ed:b4:cc:be:f4:cf:ec:65:
85:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:EC:4D:75:53:F4:F3:6E:BD:BD:A9:09:EF:52:C5:A0:D9:04:F8:B9
X509v3 Authority Key Identifier:
keyid:E4:74:9C:33:67:BA:6E:7E:9F:77:35:4A:55:D3:88:37:91:35:DF:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5HScM2e6bn6fdzVKVdOIN5E13w4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/a7df4a-77a9-43d8-bfd7-a853144879f3/1/0OxNdVP08269vakJ71LFoNkE-Lk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/a7df4a-77a9-43d8-bfd7-a853144879f3/1/5HScM2e6bn6fdzVKVdOIN5E13w4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.102.14.0/23
Signature Algorithm: sha256WithRSAEncryption
b5:0e:ce:61:0e:a8:51:15:0d:2b:ec:ca:72:72:a1:57:35:d0:
45:95:e5:09:6a:34:fc:9d:65:33:d6:75:41:f7:48:ea:fd:e4:
92:d0:ff:42:53:0e:ec:98:9c:e9:9e:33:e2:c8:51:d7:61:84:
74:5e:a0:be:ad:09:d6:6a:c9:ad:3e:7c:65:36:8d:6c:7d:a4:
49:4e:f8:d6:43:09:9b:a2:b9:be:3e:30:87:39:46:2e:97:66:
06:e4:ce:18:a4:7b:8c:ad:4a:eb:88:39:98:14:88:8b:93:8d:
c3:39:04:5e:24:b8:3d:ae:64:b8:4c:26:45:7a:3c:3d:ed:4e:
26:6e:e1:62:57:58:e1:c1:42:c5:72:af:74:fe:fa:f8:1a:bc:
74:67:9f:0d:27:f1:de:a5:95:27:9a:99:7d:c3:32:8b:c3:cf:
21:33:11:aa:67:3e:d2:da:b1:d4:34:19:83:d1:ef:12:11:7a:
d2:59:c2:3d:25:e9:94:25:6d:fd:bf:28:58:f7:3c:14:1c:ab:
d1:41:cb:42:fb:b9:d9:b6:8f:59:85:ff:bd:20:31:03:67:8a:
b6:4d:e3:85:ff:c9:39:88:c5:51:d3:87:84:2a:75:4d:3e:4e:
fe:6b:0b:27:cf:ea:88:49:a5:8d:29:fe:92:0f:9c:69:dd:82:
99:26:df:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:25 2024 by rpki-client on console-fra.rpki-client.org