Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/a8e808-95f3-4ab3-978b-23cd7cceac45/1/0ecJ69ygkc5nhCjmXilU1IwpoKo.roa
File: 0ecJ69ygkc5nhCjmXilU1IwpoKo.roa (raw, json)
Hash identifier: Mqo920CHl3NZVfhXVjqhPZmO+gjGZGnjvqtDuD3NgRA=
Subject key identifier: D1:E7:09:EB:DC:A0:91:CE:67:84:28:E6:5E:29:54:D4:8C:29:A0:AA
Certificate issuer: /CN=3fbf0d4f25ec119728f14a9c51aee8034fff3ff6
Certificate serial: 015FCFB4
Authority key identifier: 3F:BF:0D:4F:25:EC:11:97:28:F1:4A:9C:51:AE:E8:03:4F:FF:3F:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/P78NTyXsEZco8UqcUa7oA0__P_Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/a8e808-95f3-4ab3-978b-23cd7cceac45/1/0ecJ69ygkc5nhCjmXilU1IwpoKo.roa
Signing time: Fri 28 Jan 2022 14:18:45 +0000
ROA not before: Fri 28 Jan 2022 14:18:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 176.118.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23056308 (0x15fcfb4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3fbf0d4f25ec119728f14a9c51aee8034fff3ff6
Validity
Not Before: Jan 28 14:18:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d1e709ebdca091ce678428e65e2954d48c29a0aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:a9:6b:42:6f:0b:eb:d8:53:ac:a8:fd:8f:ba:
a0:f8:80:0b:51:dd:e4:fc:5b:a5:31:42:ae:8d:cd:
0a:4f:8d:ed:fb:cf:43:15:f7:00:bc:5c:16:29:fe:
7f:3b:df:1f:84:2e:7d:07:b6:87:90:b0:60:00:7a:
72:f5:52:29:ff:ef:ff:4a:5f:be:a1:8b:7c:99:e8:
a8:1f:63:e4:6b:69:4d:09:ce:45:d4:35:ca:45:40:
aa:c9:28:cc:85:89:df:58:52:05:72:6a:fc:78:52:
c1:18:6a:97:f7:0b:d0:0a:0a:46:0f:3b:1b:3b:b1:
d1:48:2d:e8:06:5e:56:d9:95:85:d4:5b:c6:1e:58:
cb:cd:e7:84:0f:5a:c3:be:ce:d5:5a:58:f2:96:49:
d8:3f:81:af:39:44:a6:4f:79:f4:be:4c:54:04:d0:
57:a6:99:8a:94:2e:8c:8a:1b:1c:60:38:3f:3e:5f:
38:eb:33:98:e8:6f:7f:a8:ce:2e:e3:1c:58:48:cf:
d4:b4:1e:61:c1:ac:f7:5e:f4:39:24:e0:25:f3:47:
d2:cb:6f:8a:19:98:ae:80:0a:15:25:8f:9b:dc:67:
a1:1f:d4:ce:ba:31:52:f9:d3:c6:28:27:cc:5b:d8:
26:3f:e2:e5:02:44:8c:9a:bd:01:89:3f:82:36:ce:
5e:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:E7:09:EB:DC:A0:91:CE:67:84:28:E6:5E:29:54:D4:8C:29:A0:AA
X509v3 Authority Key Identifier:
keyid:3F:BF:0D:4F:25:EC:11:97:28:F1:4A:9C:51:AE:E8:03:4F:FF:3F:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/P78NTyXsEZco8UqcUa7oA0__P_Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a8e808-95f3-4ab3-978b-23cd7cceac45/1/0ecJ69ygkc5nhCjmXilU1IwpoKo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/a8e808-95f3-4ab3-978b-23cd7cceac45/1/P78NTyXsEZco8UqcUa7oA0__P_Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.33.0/24
Signature Algorithm: sha256WithRSAEncryption
08:e5:ad:cf:dd:56:9c:4b:ea:13:6c:6c:b2:7d:ae:cd:2e:a1:
3d:aa:d1:7a:c9:5f:9a:65:42:73:0d:1a:9a:a1:80:c3:91:5c:
4e:1e:d8:ac:f7:59:4a:db:a8:a7:68:e5:01:31:5c:e3:55:b0:
40:47:ab:3e:58:a0:fc:8c:ca:a1:60:d7:81:30:d9:85:4e:b6:
c5:66:ae:5e:9d:bd:0f:f1:a6:99:f8:a9:fa:dd:cd:fa:df:c5:
2d:b3:1a:b7:9e:df:85:9c:3d:c5:62:8b:b1:2e:45:62:b3:65:
8d:13:fe:dc:f6:66:0e:e8:d3:ab:bf:96:19:be:ce:21:66:2b:
c7:14:56:6e:c6:78:c3:1d:59:d6:0a:6a:78:5a:60:fd:c8:33:
2c:01:0f:e5:b7:27:e1:25:66:ab:9a:79:fd:72:1b:82:10:bb:
cd:56:9d:14:6b:e9:63:8d:87:e6:b7:f7:10:1d:b7:a4:db:01:
a0:fb:52:60:a4:b8:18:aa:37:91:96:93:66:7e:e6:a5:e5:b5:
9d:43:d6:79:b2:b2:23:d7:c8:02:b8:bf:d0:2c:49:7a:ca:07:
a5:02:c6:5b:e1:db:4a:35:42:0c:1e:14:9d:e3:04:7e:8c:a2:
48:45:aa:f2:70:83:69:03:92:76:32:d7:74:e0:ff:b4:89:a4:
04:bc:da:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:32 2024 by rpki-client on console-ams.rpki-client.org