Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/e0cf71-30b2-461c-b584-f079f4262365/1/NIJj9JqAOEKRRXw_hrDjcFPLOG8.roa
File: NIJj9JqAOEKRRXw_hrDjcFPLOG8.roa (raw, json)
Hash identifier: 4mANcSBLGBbDJzeFcj2aDQJkUJ8izJzjt3s7Ep4XqPE=
Subject key identifier: 34:82:63:F4:9A:80:38:42:91:45:7C:3F:86:B0:E3:70:53:CB:38:6F
Certificate issuer: /CN=8fdf335a6e72690d783376f78f7a1dba90e8d6be
Certificate serial: 01856DDD2472B4272A6B1349C421D1B80DC6
Authority key identifier: 8F:DF:33:5A:6E:72:69:0D:78:33:76:F7:8F:7A:1D:BA:90:E8:D6:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j98zWm5yaQ14M3b3j3odupDo1r4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/e0cf71-30b2-461c-b584-f079f4262365/1/NIJj9JqAOEKRRXw_hrDjcFPLOG8.roa
Signing time: Sun 01 Jan 2023 15:04:47 +0000
ROA not before: Sun 01 Jan 2023 15:04:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48011
IP address blocks: 5.172.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:dd:24:72:b4:27:2a:6b:13:49:c4:21:d1:b8:0d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fdf335a6e72690d783376f78f7a1dba90e8d6be
Validity
Not Before: Jan 1 15:04:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=348263f49a80384291457c3f86b0e37053cb386f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b7:2e:97:49:75:99:75:f4:05:20:a7:a6:64:
77:2c:21:df:dd:43:2d:82:15:09:3f:4c:d2:6d:6b:
d6:76:b3:b8:fc:ed:56:47:15:49:d0:75:b7:e6:05:
38:92:ac:cb:69:42:9c:e6:50:e9:ab:40:44:34:69:
55:98:81:63:f8:99:16:3c:fa:5a:43:cb:c2:b2:b6:
be:d1:d6:64:ff:9e:50:47:80:19:52:32:bc:aa:be:
53:78:c2:b7:6d:8b:e0:de:61:f6:e8:1a:ee:39:49:
cb:80:af:6d:10:c1:ee:dc:3f:9a:e6:c1:ed:eb:9f:
60:f5:ba:45:e6:b4:b9:49:84:42:5c:70:29:31:75:
3b:ea:93:e2:07:bf:f2:2b:2b:78:c3:45:d1:81:97:
a0:cc:64:0c:76:0b:e8:49:0f:73:ac:bf:24:19:06:
0c:96:ae:a8:e0:9e:5b:0a:20:f0:26:27:a2:96:15:
b0:c8:80:d3:b0:9e:af:38:cb:40:62:a9:7b:11:f5:
8c:47:65:9f:2f:af:05:56:e1:c8:8c:d4:72:9e:19:
f7:cc:9e:8c:9c:5e:67:6e:48:e5:00:78:db:2b:93:
a5:ce:e8:8a:09:6c:6b:24:0e:8a:de:b8:7b:5a:c6:
20:fc:42:03:45:08:ce:6b:c8:ba:f4:cf:b2:5d:35:
76:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:82:63:F4:9A:80:38:42:91:45:7C:3F:86:B0:E3:70:53:CB:38:6F
X509v3 Authority Key Identifier:
keyid:8F:DF:33:5A:6E:72:69:0D:78:33:76:F7:8F:7A:1D:BA:90:E8:D6:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j98zWm5yaQ14M3b3j3odupDo1r4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/e0cf71-30b2-461c-b584-f079f4262365/1/NIJj9JqAOEKRRXw_hrDjcFPLOG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/e0cf71-30b2-461c-b584-f079f4262365/1/j98zWm5yaQ14M3b3j3odupDo1r4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.177.0/24
Signature Algorithm: sha256WithRSAEncryption
60:5f:fb:38:8b:ce:a2:b1:52:39:ff:e2:20:1e:1d:db:7b:d3:
60:5c:85:6a:6a:25:35:fd:cb:07:13:b1:fb:d7:c8:d8:f3:9c:
95:b5:db:35:b4:24:c9:b6:19:bb:a2:79:7c:fd:79:42:95:e9:
1a:e4:67:eb:fc:3a:0c:5a:ec:ed:2e:63:fb:db:a9:ca:81:75:
e4:f4:31:02:13:43:64:d5:9e:87:e1:93:3b:91:9f:e0:4b:39:
dc:7e:24:32:59:da:1c:86:06:42:13:1e:fb:26:c5:e3:1e:9a:
74:70:e6:1f:57:3d:13:74:a5:4b:61:d4:51:3a:f5:94:01:dc:
4a:97:21:00:6f:05:6b:2a:bc:0a:63:c2:12:2b:8f:8a:49:00:
e9:8c:91:61:29:a0:cd:af:12:a0:b3:d8:78:cf:6f:7e:4b:c8:
a6:2f:49:0a:d7:72:9d:54:36:7f:2e:9d:4d:77:11:8a:84:1d:
62:82:71:b4:f6:5e:ab:6a:96:7c:64:1a:4c:d8:85:60:92:33:
08:82:2e:4e:8c:1a:80:70:5b:30:4f:9f:03:cc:14:21:04:13:
65:0c:52:17:bb:b8:86:9f:7e:65:8f:15:e8:32:53:f0:88:e0:
ae:62:9d:17:54:27:f2:4d:f6:3b:f7:59:2c:8f:83:f3:76:1c:
5e:cb:39:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:34 2024 by rpki-client on console-fra.rpki-client.org