Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/299984-6d7d-45e3-b6fd-bc917c9235d2/1/R5H86v0M3TvZY7EBb3O6uV4DDgQ.roa
File: R5H86v0M3TvZY7EBb3O6uV4DDgQ.roa (raw, json)
Hash identifier: wFKvZApcERv2sl1ElCd4I8ljMRS9sIVYHD29zMgtrk4=
Subject key identifier: 47:91:FC:EA:FD:0C:DD:3B:D9:63:B1:01:6F:73:BA:B9:5E:03:0E:04
Certificate issuer: /CN=4bf203d6ae6698e09f255780b88accdcd94675a1
Certificate serial: 018CC8010C56BFD11D0BA8A1BF3E20213997
Authority key identifier: 4B:F2:03:D6:AE:66:98:E0:9F:25:57:80:B8:8A:CC:DC:D9:46:75:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S_ID1q5mmOCfJVeAuIrM3NlGdaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/299984-6d7d-45e3-b6fd-bc917c9235d2/1/R5H86v0M3TvZY7EBb3O6uV4DDgQ.roa
Signing time: Tue 02 Jan 2024 02:29:21 +0000
ROA not before: Tue 02 Jan 2024 02:29:21 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 36998
IP address blocks: 151.248.99.240/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:01:0c:56:bf:d1:1d:0b:a8:a1:bf:3e:20:21:39:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bf203d6ae6698e09f255780b88accdcd94675a1
Validity
Not Before: Jan 2 02:29:21 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=4791fceafd0cdd3bd963b1016f73bab95e030e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:85:a8:9f:c6:f3:8f:94:59:20:62:5a:78:73:
88:ff:af:1f:70:d4:19:c1:8b:ec:1a:e3:c7:e2:65:
90:e3:c4:11:ff:4a:3f:f9:fe:33:f8:37:36:52:ae:
79:51:07:33:50:2e:61:8a:c9:3b:f1:2e:95:d7:fe:
62:6e:a5:b7:1e:05:99:48:ca:8d:63:21:28:20:3f:
f9:91:b3:08:10:7e:21:de:63:1e:ab:93:5a:11:d6:
45:ff:ff:94:c7:53:9b:e2:ab:9a:01:48:44:94:c4:
2a:9f:9c:ac:df:ac:e1:5c:89:3a:2d:57:67:a5:98:
31:8e:04:6b:10:50:5b:60:8e:60:86:35:0e:63:d8:
f8:06:29:d5:fb:16:f0:3c:e2:5c:c2:78:f5:bc:9d:
9f:59:a8:27:28:72:9a:47:c7:a3:cd:57:a1:4e:e6:
7f:09:bd:cc:aa:cd:2b:ba:e7:0c:ea:25:92:9b:53:
b4:f1:e6:1b:66:ef:45:1f:3c:12:b5:16:b4:10:e5:
76:3f:17:23:e9:9d:7e:86:97:78:46:9e:73:cb:37:
17:95:49:15:0d:74:fe:14:0f:49:0c:82:ec:02:57:
36:a7:72:1c:8e:a2:fd:07:75:48:c7:5f:62:f6:de:
75:cb:f9:27:f6:b8:07:ea:8e:93:87:2e:6b:ea:fb:
c4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:91:FC:EA:FD:0C:DD:3B:D9:63:B1:01:6F:73:BA:B9:5E:03:0E:04
X509v3 Authority Key Identifier:
keyid:4B:F2:03:D6:AE:66:98:E0:9F:25:57:80:B8:8A:CC:DC:D9:46:75:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S_ID1q5mmOCfJVeAuIrM3NlGdaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/299984-6d7d-45e3-b6fd-bc917c9235d2/1/R5H86v0M3TvZY7EBb3O6uV4DDgQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/299984-6d7d-45e3-b6fd-bc917c9235d2/1/S_ID1q5mmOCfJVeAuIrM3NlGdaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.248.99.240/29
Signature Algorithm: sha256WithRSAEncryption
cd:ba:37:c9:cd:b8:ef:e9:be:d0:6c:04:f5:2d:6f:4c:2e:01:
6e:df:55:82:5d:dc:b6:b6:85:66:84:14:54:d6:bc:33:61:0a:
a6:9b:3c:86:78:a4:d6:a2:da:9e:02:2d:09:b9:9f:28:df:b5:
7d:95:d8:fb:90:36:a0:16:4a:ac:8f:2b:ad:d1:f0:c1:f2:32:
c4:d1:af:6c:0c:fe:c1:21:8e:b2:65:d2:bb:f8:2d:29:f0:04:
ab:79:56:0f:6f:cb:35:e4:c5:66:24:38:58:48:22:2a:50:fb:
57:cd:d1:32:9b:cf:6b:ee:08:69:ab:19:81:db:ee:02:6c:4e:
42:10:37:98:bd:a3:9b:03:56:db:57:18:34:62:1c:ea:c0:f9:
37:21:48:d7:23:94:df:50:b6:05:54:94:8e:9a:a8:fc:70:a9:
8f:a2:bb:7f:62:61:d8:e4:4e:e7:05:da:e6:72:9a:45:f0:92:
cd:d6:5d:da:2b:f2:6b:60:8b:c3:a4:c3:80:63:c9:af:da:7e:
49:71:65:e0:67:88:3b:b1:c0:7e:c9:27:c6:b1:5d:ae:0e:76:
dc:58:fc:77:d4:db:6a:b8:ef:be:96:db:b7:76:5e:f4:27:cc:
2f:a7:19:c7:cd:67:92:de:d7:c8:3f:75:9f:88:13:31:8f:a1:
b4:67:45:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:48 2024 by rpki-client on console-fra.rpki-client.org