Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/e0d0b2-9b9a-47f8-84ec-1460c78ea75d/1/XH_GPVyFg2owJgahBqq1uFu3D10.roa
File: XH_GPVyFg2owJgahBqq1uFu3D10.roa (raw, json)
Hash identifier: 8m2dHVdKFiqrc2bwhIVWTQ82rCOcuY4zAGIT3KqkNQ0=
Subject key identifier: 5C:7F:C6:3D:5C:85:83:6A:30:26:06:A1:06:AA:B5:B8:5B:B7:0F:5D
Certificate issuer: /CN=24c64272b0b3aeb812549dee7ec58a3eaf6fa576
Certificate serial: 03B5588C
Authority key identifier: 24:C6:42:72:B0:B3:AE:B8:12:54:9D:EE:7E:C5:8A:3E:AF:6F:A5:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JMZCcrCzrrgSVJ3ufsWKPq9vpXY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/e0d0b2-9b9a-47f8-84ec-1460c78ea75d/1/XH_GPVyFg2owJgahBqq1uFu3D10.roa
Signing time: Sat 01 Jan 2022 12:00:45 +0000
ROA not before: Sat 01 Jan 2022 12:00:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50977
IP address blocks: 109.107.96.0/19 maxlen: 24
185.96.24.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62216332 (0x3b5588c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24c64272b0b3aeb812549dee7ec58a3eaf6fa576
Validity
Not Before: Jan 1 12:00:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c7fc63d5c85836a302606a106aab5b85bb70f5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:20:48:19:24:b6:c4:f4:18:ba:a8:83:4c:f8:
5c:5f:ca:2c:21:ee:17:7f:85:30:23:12:98:b4:fd:
6c:4a:93:ee:af:0f:f1:4d:4f:9e:2b:70:9d:63:71:
86:87:8b:86:80:33:22:06:af:7f:fc:62:30:42:d5:
ee:56:95:81:58:7b:f8:9c:63:3f:ab:35:fb:22:d6:
ec:c8:83:cd:78:9e:60:c9:a7:05:49:3e:02:1f:a6:
52:7b:93:99:2f:1c:bb:a1:03:e6:1d:15:da:a2:cb:
2d:ad:a6:23:70:e7:4a:5a:56:3c:c2:b9:52:bd:0d:
db:ee:e9:02:7b:8a:b8:b1:55:58:e2:d7:3a:b3:59:
d9:36:48:84:94:65:7e:05:60:ed:b7:a0:45:9f:eb:
4c:2c:92:f4:c7:33:d9:41:63:5d:11:d0:e4:b8:6f:
b1:29:fb:bd:ab:dc:56:8b:32:75:e9:2e:06:a6:c8:
d6:86:40:fa:7a:58:0f:24:4a:69:8c:68:4d:a8:d9:
10:05:2a:d0:1d:41:81:e3:12:60:76:72:7a:29:28:
be:da:1d:d9:41:74:57:77:d8:65:43:c1:cc:79:30:
14:cb:d4:16:86:57:8b:5f:b1:81:98:4b:fc:a1:44:
05:04:1d:06:5e:c0:c1:70:10:a0:81:87:59:67:ff:
59:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:7F:C6:3D:5C:85:83:6A:30:26:06:A1:06:AA:B5:B8:5B:B7:0F:5D
X509v3 Authority Key Identifier:
keyid:24:C6:42:72:B0:B3:AE:B8:12:54:9D:EE:7E:C5:8A:3E:AF:6F:A5:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JMZCcrCzrrgSVJ3ufsWKPq9vpXY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e0d0b2-9b9a-47f8-84ec-1460c78ea75d/1/XH_GPVyFg2owJgahBqq1uFu3D10.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/e0d0b2-9b9a-47f8-84ec-1460c78ea75d/1/JMZCcrCzrrgSVJ3ufsWKPq9vpXY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.107.96.0/19
185.96.24.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:63:0f:57:26:cc:59:49:32:69:ef:2f:3d:8c:4f:f7:b4:6e:
2c:19:7e:ef:f5:c3:5e:dd:8f:1d:0a:fc:2b:1f:70:e5:e0:47:
4a:8d:36:7d:90:a8:d2:81:16:ca:75:54:48:c4:4e:0a:0e:7a:
08:f2:30:df:6d:95:72:e9:fd:07:58:c1:e1:40:6f:74:bc:a5:
bb:de:13:15:10:d1:e3:60:e9:b2:f9:e1:fd:6d:68:be:df:c0:
2f:d4:c9:9b:50:24:45:1e:ad:ab:2f:fc:ea:7c:19:20:61:70:
0a:62:86:64:cc:97:6a:9f:e3:e9:64:ca:ba:76:c0:5f:32:b0:
8f:c2:96:a1:25:1e:64:99:f6:11:b8:34:9f:4f:2e:af:2f:14:
10:6d:6c:50:1b:db:0b:48:5f:c6:53:2a:94:11:6b:40:71:63:
fb:e6:49:91:b4:ec:c2:18:5d:38:20:8f:40:f7:ba:79:35:a8:
0b:0f:8a:10:0d:60:43:43:09:4b:7a:95:d0:33:41:0d:c1:2b:
8b:b7:de:24:76:05:38:b1:b5:03:3d:19:b7:43:4a:eb:ee:83:
96:0a:b4:41:ec:39:a9:90:93:45:75:61:83:15:53:c3:c3:cc:
ff:2d:a9:09:29:71:b0:2d:8d:b5:d2:c5:5c:4e:ff:40:b4:ee:
59:fe:ee:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:56 2023 by rpki-client on console-fra.rpki-client.org