Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/HT0AhS0MBHfZFIaExwi1NKdOJzQ.roa
File: HT0AhS0MBHfZFIaExwi1NKdOJzQ.roa (raw, json)
Hash identifier: OLNpvXFTJkHbg5DaoXBaTySXUhTGQyiw0wWSXAd+7CY=
Subject key identifier: 1D:3D:00:85:2D:0C:04:77:D9:14:86:84:C7:08:B5:34:A7:4E:27:34
Certificate issuer: /CN=b70594f265f0c3eb00e7cfc28fec8590c8a632a5
Certificate serial: 0185728C6D33BCBE419BD657D16C9158BC07
Authority key identifier: B7:05:94:F2:65:F0:C3:EB:00:E7:CF:C2:8F:EC:85:90:C8:A6:32:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/twWU8mXww-sA58_Cj-yFkMimMqU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/HT0AhS0MBHfZFIaExwi1NKdOJzQ.roa
Signing time: Mon 02 Jan 2023 12:54:43 +0000
ROA not before: Mon 02 Jan 2023 12:54:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212219
IP address blocks: 2.59.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:8c:6d:33:bc:be:41:9b:d6:57:d1:6c:91:58:bc:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b70594f265f0c3eb00e7cfc28fec8590c8a632a5
Validity
Not Before: Jan 2 12:54:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d3d00852d0c0477d9148684c708b534a74e2734
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f9:2c:de:4e:a5:3f:92:63:7c:5e:24:30:5f:
3e:20:5d:f5:9f:b5:c7:43:2e:d9:2d:c9:ab:17:90:
f4:b5:a0:8e:f1:39:60:5b:4d:c4:13:f2:6f:1e:6f:
96:c5:15:f0:50:8f:38:09:52:15:38:29:88:2d:bb:
ac:b7:19:60:53:63:db:48:63:a5:73:88:66:c1:51:
2a:7f:c2:f5:ff:df:d8:aa:af:14:bd:ca:77:36:cb:
bd:be:96:c3:8c:b7:50:e0:23:70:75:bd:58:c9:77:
8c:7b:0b:81:da:a8:f9:62:dd:24:c3:1f:00:a3:92:
9e:05:8d:24:f4:c1:a8:8e:7a:55:7a:23:ef:dd:8f:
fd:63:23:88:85:28:38:4d:e7:ac:4e:e4:52:6c:a0:
d7:3a:87:13:85:60:cf:b1:44:d9:a1:d6:f3:8b:bd:
3e:78:6f:72:2a:f2:57:e4:90:82:8e:8d:b9:d3:bc:
39:a9:1f:86:e9:c4:c9:c4:11:44:a0:3a:ee:de:e6:
fc:01:dc:18:1a:9c:ab:17:d0:0c:1e:7a:89:61:26:
81:52:42:64:bd:0d:58:c3:c1:95:f5:5b:7d:e4:f6:
d7:79:e3:aa:f9:b0:64:48:52:f1:00:2b:db:4e:2d:
3c:38:ef:5e:c8:1e:b8:45:03:15:76:0c:b5:9d:b1:
29:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:3D:00:85:2D:0C:04:77:D9:14:86:84:C7:08:B5:34:A7:4E:27:34
X509v3 Authority Key Identifier:
keyid:B7:05:94:F2:65:F0:C3:EB:00:E7:CF:C2:8F:EC:85:90:C8:A6:32:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/twWU8mXww-sA58_Cj-yFkMimMqU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/HT0AhS0MBHfZFIaExwi1NKdOJzQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/2077ba-1dc6-4117-bcb7-ab4cdf3145c9/1/twWU8mXww-sA58_Cj-yFkMimMqU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.119.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:3b:d1:19:48:1b:9d:77:c0:c7:57:7b:3a:a2:e9:60:ad:ed:
0a:ab:f0:6e:2e:a1:21:8f:65:a2:5e:99:19:d2:08:58:4d:5d:
19:5d:06:32:cb:e0:21:6a:5c:2c:38:47:50:a6:2c:a1:e7:e3:
4e:a5:10:72:10:e1:74:7f:54:a4:29:81:ac:75:7f:51:8a:14:
51:00:d0:a6:b4:aa:01:37:8a:71:d4:ae:ba:23:a2:16:4a:cc:
55:0f:82:f2:5e:44:93:1f:77:60:88:c6:e3:7a:c2:11:a8:31:
94:88:17:ce:e9:40:b2:e0:bc:be:e1:a8:e8:d8:cb:38:1e:bd:
4c:14:b7:3a:b5:3a:1e:26:21:52:05:49:4c:d0:3c:d6:84:36:
53:75:1d:53:d8:79:1f:8b:f0:ab:f8:21:9b:13:38:a2:e5:15:
37:a8:55:fe:af:cf:96:22:bd:be:da:2a:d9:8b:80:69:01:3f:
31:da:7f:81:26:d6:7d:ba:e1:a1:76:29:85:e2:2c:e7:08:45:
74:aa:15:84:fb:9c:99:46:bd:c8:37:08:5c:07:3a:0c:ba:11:
a2:10:5e:58:80:a2:84:17:31:f4:fe:7d:4b:f7:a0:67:d6:cd:
cc:97:60:72:23:28:8c:c1:e7:31:cb:52:eb:ff:92:93:9c:2e:
9e:77:cc:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:27 2024 by rpki-client on console-fra.rpki-client.org