Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/76d728-900c-4d80-aea0-22eef93d6c7e/1/rtPP7P28fhWgCwmS2zmwW-OM0GA.roa
File: rtPP7P28fhWgCwmS2zmwW-OM0GA.roa (raw, json)
Hash identifier: GMKNWiMk51LT9UZ9MMk41qxptbDEtMgDsmewrkZFu4o=
Subject key identifier: AE:D3:CF:EC:FD:BC:7E:15:A0:0B:09:92:DB:39:B0:5B:E3:8C:D0:60
Certificate issuer: /CN=c077631b70046f8afb8c5969d99e11e865107d7d
Certificate serial: 01856D81A266AA0B3B9DAC6841D10DA834FC
Authority key identifier: C0:77:63:1B:70:04:6F:8A:FB:8C:59:69:D9:9E:11:E8:65:10:7D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wHdjG3AEb4r7jFlp2Z4R6GUQfX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/76d728-900c-4d80-aea0-22eef93d6c7e/1/rtPP7P28fhWgCwmS2zmwW-OM0GA.roa
Signing time: Sun 01 Jan 2023 13:24:50 +0000
ROA not before: Sun 01 Jan 2023 13:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 217.114.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:81:a2:66:aa:0b:3b:9d:ac:68:41:d1:0d:a8:34:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c077631b70046f8afb8c5969d99e11e865107d7d
Validity
Not Before: Jan 1 13:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=aed3cfecfdbc7e15a00b0992db39b05be38cd060
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:1e:f8:25:46:f5:cf:eb:cb:ee:15:b7:04:a8:
83:17:cc:da:ca:ac:62:ce:0f:3a:1e:20:01:05:b9:
70:f5:02:07:e2:1a:d5:2d:fd:0a:2a:d8:e9:f4:79:
00:56:00:53:5e:a2:85:1d:b1:8e:e4:04:22:03:6d:
ab:76:c3:e3:55:f5:dd:ef:56:91:d1:97:b2:f4:f3:
30:b9:92:9d:8e:2d:c9:81:54:f3:66:fc:ca:0f:1a:
d8:86:ea:56:e4:a5:bd:e2:cc:92:f8:3e:d8:bc:93:
55:ad:d2:d7:be:37:b3:a3:2f:61:1b:d8:77:3b:bf:
ac:59:0c:7e:c5:9f:58:74:48:42:fe:c7:36:28:fa:
81:ab:1a:5e:f4:12:7d:13:8f:e0:68:c5:d5:58:86:
e0:e4:ac:cf:31:59:c4:1d:de:56:47:cb:7b:c2:58:
c6:b1:e5:37:f6:ff:74:1c:92:51:d8:2a:bf:be:52:
a2:f7:46:32:2d:ce:20:10:7b:c4:10:87:cb:65:67:
8c:8b:2c:b3:f7:85:cb:d2:59:9b:86:1a:37:52:0c:
b9:97:54:98:fa:27:b7:7b:54:80:e7:b6:54:17:aa:
71:4c:77:18:89:7d:1d:b6:41:45:38:17:a1:f1:85:
6e:f6:10:f0:f4:dd:13:f5:20:4d:ed:b2:ae:9f:18:
a1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D3:CF:EC:FD:BC:7E:15:A0:0B:09:92:DB:39:B0:5B:E3:8C:D0:60
X509v3 Authority Key Identifier:
keyid:C0:77:63:1B:70:04:6F:8A:FB:8C:59:69:D9:9E:11:E8:65:10:7D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wHdjG3AEb4r7jFlp2Z4R6GUQfX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/76d728-900c-4d80-aea0-22eef93d6c7e/1/rtPP7P28fhWgCwmS2zmwW-OM0GA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/76d728-900c-4d80-aea0-22eef93d6c7e/1/wHdjG3AEb4r7jFlp2Z4R6GUQfX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.114.36.0/24
Signature Algorithm: sha256WithRSAEncryption
93:08:b7:bf:c2:2d:a8:92:58:94:8d:43:0e:8e:20:4e:3d:f9:
9f:fb:0b:8e:0e:fb:e4:0b:1f:51:bc:3a:c2:10:7e:4e:1c:e7:
89:09:b8:0c:cb:97:77:49:8e:61:69:a6:f4:83:45:20:01:30:
df:24:93:8b:13:64:2a:4c:0d:01:43:34:d4:ad:d8:27:b1:9c:
a5:51:62:f5:a9:28:be:89:ab:22:51:00:5b:89:24:e0:8a:60:
d2:41:73:6c:7f:aa:ac:49:02:e0:b2:32:d3:b1:5c:7b:bc:4f:
db:7b:7a:07:f3:87:da:93:df:f6:57:bc:bd:f5:ae:c6:10:b6:
00:a4:1a:5a:4f:03:ce:7d:2f:87:c7:97:f2:23:32:09:3c:62:
ac:75:32:a4:f6:bf:9a:6b:25:5a:02:ec:63:34:db:ef:6c:6d:
a2:f6:3c:1e:fa:0c:58:b2:a8:fb:a5:c8:4d:e5:3e:b5:0d:f5:
f2:ae:96:b0:fa:44:28:09:e1:ff:cd:72:07:04:82:1d:e1:db:
7c:ee:32:07:cc:d3:2b:50:ee:db:cc:98:ce:81:f3:b8:8f:e5:
a0:cb:e8:75:f8:b2:73:5b:14:23:04:ca:c9:f6:b3:ab:d9:82:
fa:bb:a6:37:39:b1:53:e9:97:66:24:a5:cc:05:94:f0:8e:86:
55:e9:34:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:18 2024 by rpki-client on console-fra.rpki-client.org