Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/fbadd4-e370-40ff-b461-2b0c851302b4/1/8BrZ1Kq42KAkTI4tYmsOLjawgC0.roa
File: 8BrZ1Kq42KAkTI4tYmsOLjawgC0.roa (raw, json)
Hash identifier: OFwhmLYIsRHZS2GioVKG4w7UO44iMWeSxxaaFRFgcFw=
Subject key identifier: F0:1A:D9:D4:AA:B8:D8:A0:24:4C:8E:2D:62:6B:0E:2E:36:B0:80:2D
Certificate issuer: /CN=cc04ccbb587a6c2615c131b1b849130d9de92e41
Certificate serial: 018572CCCEEECAA9C7234B956972F451DFBA
Authority key identifier: CC:04:CC:BB:58:7A:6C:26:15:C1:31:B1:B8:49:13:0D:9D:E9:2E:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zATMu1h6bCYVwTGxuEkTDZ3pLkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/fbadd4-e370-40ff-b461-2b0c851302b4/1/8BrZ1Kq42KAkTI4tYmsOLjawgC0.roa
Signing time: Mon 02 Jan 2023 14:05:02 +0000
ROA not before: Mon 02 Jan 2023 14:05:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208485
IP address blocks: 5.42.216.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:ce:ee:ca:a9:c7:23:4b:95:69:72:f4:51:df:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cc04ccbb587a6c2615c131b1b849130d9de92e41
Validity
Not Before: Jan 2 14:05:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=f01ad9d4aab8d8a0244c8e2d626b0e2e36b0802d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:4b:0c:16:16:b6:4c:82:24:d9:22:9a:cf:22:
69:01:3b:94:0d:66:b0:18:de:db:0e:b4:eb:63:4b:
9a:5b:e8:a1:75:78:67:7c:7f:ae:dc:a6:74:a5:6b:
7a:62:a5:cf:df:a5:30:f1:09:17:a6:ba:d2:bc:0e:
86:fc:83:0e:e7:1c:52:b2:78:ad:26:00:7e:29:e2:
50:72:80:84:7a:7e:bd:6d:1c:47:db:43:d3:29:a6:
29:7d:e2:e4:4b:ac:6e:2e:4b:c4:9f:f2:11:34:a5:
d8:4f:dd:1c:43:ba:72:9c:54:2a:42:fa:5b:b4:ef:
f3:85:7c:27:f4:e0:e8:1b:9e:d9:3e:0e:67:a5:af:
6c:e9:10:9a:2a:62:95:fb:90:47:68:a2:af:8e:a7:
a7:c7:6b:6d:cd:bd:ca:76:1b:5a:af:0e:43:06:89:
1b:95:49:32:cc:7b:7e:e7:17:9a:9f:19:d7:33:ea:
ce:54:c5:d4:00:ca:77:cd:d3:51:cd:1d:5b:b1:a8:
df:cc:2b:b5:ba:59:60:aa:21:21:7a:6b:a2:55:d6:
b4:70:fd:2c:5e:1e:b8:67:a5:e2:1a:f8:2a:70:6c:
9e:fe:3c:9c:91:64:70:94:86:4c:f9:aa:2a:ea:22:
86:63:57:9d:12:fe:9e:eb:37:79:4a:08:a6:dc:99:
11:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:1A:D9:D4:AA:B8:D8:A0:24:4C:8E:2D:62:6B:0E:2E:36:B0:80:2D
X509v3 Authority Key Identifier:
keyid:CC:04:CC:BB:58:7A:6C:26:15:C1:31:B1:B8:49:13:0D:9D:E9:2E:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zATMu1h6bCYVwTGxuEkTDZ3pLkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/fbadd4-e370-40ff-b461-2b0c851302b4/1/8BrZ1Kq42KAkTI4tYmsOLjawgC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/fbadd4-e370-40ff-b461-2b0c851302b4/1/zATMu1h6bCYVwTGxuEkTDZ3pLkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.216.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:e6:3d:04:23:73:eb:e3:a0:24:78:ed:14:32:90:6c:60:4f:
a4:93:4a:0b:88:de:c0:a0:d0:39:0b:a8:55:34:c4:6d:d0:84:
64:9b:5d:88:03:5b:d8:86:6f:b5:d0:bf:da:7a:40:52:e2:17:
50:bc:85:ae:52:b2:cb:36:a7:f4:40:cf:a3:b8:97:3c:e0:ad:
11:a3:60:71:16:a2:d8:b3:bb:cf:85:17:32:0a:24:52:28:df:
a8:e5:bc:e3:70:4a:e6:62:ab:a9:6b:8b:2c:ab:63:a6:ea:e3:
8a:06:01:f3:9b:f6:b4:e5:0f:ff:ff:fd:5b:3e:f2:7e:51:f1:
79:44:28:d7:fb:20:dd:b4:2f:43:d3:66:e2:52:00:00:67:29:
77:e9:3a:32:05:9c:10:cf:e0:89:9b:71:b6:aa:02:a5:79:40:
90:3d:ee:ec:d1:6c:6f:49:c3:14:a0:6c:4b:15:1a:de:a4:dd:
b4:e9:05:94:35:c0:37:23:84:a9:9c:7b:3c:a8:30:16:ed:7e:
00:bc:47:32:aa:02:2a:7a:51:4d:0a:4e:6f:b5:a5:e1:d4:31:
8c:d2:e7:3e:60:1a:ba:60:a1:f9:d2:09:05:30:65:0d:35:86:
2c:17:eb:80:d5:fa:b1:f3:c9:5c:b7:3c:1c:27:cb:97:7e:ff:
ec:17:c0:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:14 2024 by rpki-client on console-fra.rpki-client.org