Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/bb0bba-f095-423e-92d2-7995bf60803b/1/En56rYLvpjk2QkjPnxQkt41JZ2I.roa
File: En56rYLvpjk2QkjPnxQkt41JZ2I.roa (raw, json)
Hash identifier: Io/P+R0E477/TF/+HhPxhJQVs4pPkpvP28NBChZU0oE=
Subject key identifier: 12:7E:7A:AD:82:EF:A6:39:36:42:48:CF:9F:14:24:B7:8D:49:67:62
Certificate issuer: /CN=2e5d76a1b3b05de4248feb1cb56f0f1b5851bbba
Certificate serial: 0185EBEA8958CE59FAF9133B5467C845315D
Authority key identifier: 2E:5D:76:A1:B3:B0:5D:E4:24:8F:EB:1C:B5:6F:0F:1B:58:51:BB:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ll12obOwXeQkj-sctW8PG1hRu7o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/bb0bba-f095-423e-92d2-7995bf60803b/1/En56rYLvpjk2QkjPnxQkt41JZ2I.roa
Signing time: Thu 26 Jan 2023 02:31:34 +0000
ROA not before: Thu 26 Jan 2023 02:31:34 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 16097
IP address blocks: 209.16.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:eb:ea:89:58:ce:59:fa:f9:13:3b:54:67:c8:45:31:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2e5d76a1b3b05de4248feb1cb56f0f1b5851bbba
Validity
Not Before: Jan 26 02:31:34 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=127e7aad82efa639364248cf9f1424b78d496762
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ed:93:76:a9:4e:56:e3:ca:59:22:d2:64:cf:
78:bb:ae:94:35:1f:55:bf:e5:a7:58:74:9b:3f:17:
e9:61:e7:1d:94:54:da:95:7b:85:66:13:e9:e3:eb:
8a:ba:78:3a:3e:1b:69:ac:d8:07:b6:f2:b5:72:1b:
18:e7:ce:e5:1f:d8:19:8b:ad:9e:90:1d:a5:06:14:
9d:97:a2:29:c3:0e:4b:de:b7:9e:f0:11:a6:bb:ca:
fa:5b:fe:0c:34:5c:fa:c3:2d:15:52:22:45:bf:e6:
41:02:d9:bc:46:35:d1:6e:de:00:d2:2a:e1:51:33:
ce:81:3a:46:5f:4c:02:ee:83:15:3f:95:fa:9a:c0:
9d:26:73:a6:ae:a8:f5:fa:2b:d0:e6:d4:57:08:9d:
29:e7:24:d0:be:71:81:7d:18:78:94:38:04:7f:c3:
9b:e8:3a:41:6f:04:c2:33:42:b3:b3:bd:d5:fa:57:
00:68:61:b1:20:f5:58:90:a5:db:8b:66:f3:6d:d9:
c3:c8:22:4d:b9:ab:9f:72:40:b7:b3:2f:f4:2a:08:
ca:30:f6:b5:27:d1:77:a9:1e:10:c4:4a:d3:be:c9:
1d:b8:7a:82:9c:05:06:06:18:06:8e:bb:cc:e5:da:
02:38:81:55:aa:08:f0:8d:f6:73:4b:9c:b2:e1:1c:
ff:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:7E:7A:AD:82:EF:A6:39:36:42:48:CF:9F:14:24:B7:8D:49:67:62
X509v3 Authority Key Identifier:
keyid:2E:5D:76:A1:B3:B0:5D:E4:24:8F:EB:1C:B5:6F:0F:1B:58:51:BB:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ll12obOwXeQkj-sctW8PG1hRu7o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bb0bba-f095-423e-92d2-7995bf60803b/1/En56rYLvpjk2QkjPnxQkt41JZ2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/bb0bba-f095-423e-92d2-7995bf60803b/1/Ll12obOwXeQkj-sctW8PG1hRu7o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
209.16.145.0/24
Signature Algorithm: sha256WithRSAEncryption
69:d6:95:87:49:d4:29:fd:d5:d3:f6:df:17:3a:15:9e:4a:aa:
2a:04:8a:6a:11:35:9c:6d:20:1a:69:84:94:df:01:1d:1b:b2:
8a:75:07:d7:3e:ab:4d:b2:1e:31:b1:17:b0:44:1e:c4:ac:c2:
5e:3e:9c:71:82:57:fb:ff:2b:61:2c:c3:d0:94:37:ac:82:2e:
03:07:83:59:d6:71:d8:38:2c:48:69:cf:40:c5:e5:9f:c6:2c:
ff:4c:8e:b0:5c:57:81:3d:c7:18:57:ce:f4:4e:5c:83:ed:8c:
d0:0b:ba:55:82:02:4c:3e:af:6c:1a:9e:8d:fa:48:ee:a5:17:
26:6c:2e:6c:ff:4f:7b:e0:58:9d:81:99:52:ce:85:29:a7:27:
e5:73:f8:3b:89:69:99:19:dc:eb:94:b8:55:92:b6:2a:c9:e3:
42:31:c0:d9:f0:a9:a4:d0:ae:bb:08:f7:98:79:2a:67:e4:c6:
55:71:d9:2b:00:ce:fa:88:75:8c:77:97:41:63:b3:11:1a:e5:
f1:40:bb:80:4f:ff:1b:71:06:c8:86:87:a3:21:aa:7a:79:e3:
3b:0a:6a:38:8f:25:ba:8d:81:c0:1a:7f:2f:5e:9d:54:2a:ff:
55:14:9e:15:32:89:b3:59:d9:1c:37:88:20:33:cd:4f:a3:36:
57:45:0a:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:12 2024 by rpki-client on console-ams.rpki-client.org