Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/wHj3b1yKthI4Fic9DchEbo4QMTY.roa
File: wHj3b1yKthI4Fic9DchEbo4QMTY.roa (raw, json)
Hash identifier: Xj7TYfzeFGFqFlZM91CFVwMOq2JSbNQ57cmrF8XvRlY=
Subject key identifier: C0:78:F7:6F:5C:8A:B6:12:38:16:27:3D:0D:C8:44:6E:8E:10:31:36
Certificate issuer: /CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Certificate serial: 0188FE415D71F389379DFBA570D1C5E9C1F9
Authority key identifier: 96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/wHj3b1yKthI4Fic9DchEbo4QMTY.roa
Signing time: Tue 27 Jun 2023 19:07:56 +0000
ROA not before: Tue 27 Jun 2023 19:07:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 5.42.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:fe:41:5d:71:f3:89:37:9d:fb:a5:70:d1:c5:e9:c1:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Validity
Not Before: Jun 27 19:07:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c078f76f5c8ab6123816273d0dc8446e8e103136
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:04:03:49:a5:7e:86:17:76:da:02:8a:31:e3:
a5:2c:04:da:5c:07:bf:96:20:cf:6d:1b:53:c4:1a:
e8:5e:fd:b4:c3:8f:52:cd:24:fe:28:f5:47:dd:dd:
5d:c4:8e:ff:66:f7:0a:38:29:72:c4:0f:9c:be:97:
42:36:69:56:b0:92:99:f9:03:a9:81:78:9a:06:63:
12:c3:7e:a1:0b:cb:e7:a3:fc:9c:94:11:f3:d3:e1:
82:05:89:b1:b4:f0:4e:71:44:a2:31:51:3c:39:ef:
0e:5b:58:50:c4:91:a7:8a:42:31:c6:6f:b7:8f:f6:
00:13:90:53:b1:57:e7:12:59:ae:6d:6a:f4:bc:9a:
f8:38:84:1f:6a:4f:2f:b9:7b:08:66:f4:91:1a:1e:
c9:e3:1b:c6:6e:3d:c8:71:44:18:66:2b:e0:05:c1:
2a:97:7b:e7:36:bc:04:7b:62:f1:b8:c6:b5:04:66:
50:00:10:bd:40:65:0b:0d:01:b4:ac:fd:a3:d0:48:
f2:57:2f:03:e0:5f:5e:b3:89:1d:2a:d4:7c:02:84:
db:33:85:af:df:ca:c1:b3:6a:0b:98:84:de:7c:0e:
8b:0e:58:eb:4e:a4:7b:70:50:e1:f2:0f:62:0f:2a:
38:4d:ef:c5:c8:42:43:c2:4c:8f:99:15:2d:fb:33:
58:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:78:F7:6F:5C:8A:B6:12:38:16:27:3D:0D:C8:44:6E:8E:10:31:36
X509v3 Authority Key Identifier:
keyid:96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/wHj3b1yKthI4Fic9DchEbo4QMTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/lgYvXdsY-W14SSs1ONd0XMRxSiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.70.0/24
Signature Algorithm: sha256WithRSAEncryption
37:c7:2a:d7:bc:a9:aa:e6:eb:24:0c:73:69:57:92:88:7d:1e:
11:c4:90:17:51:21:61:b4:8a:59:13:86:8f:fa:57:db:65:35:
11:e9:24:83:82:5a:07:67:c9:32:ba:58:86:b9:51:e1:46:f2:
fd:dc:06:71:4c:b5:a0:61:89:88:9c:07:4a:8d:0a:ca:8c:77:
01:e1:dd:ca:42:bc:2d:80:df:06:44:aa:9b:90:58:04:6a:d8:
9d:cb:41:88:7a:c2:ed:92:27:18:a1:c3:08:09:aa:25:77:f2:
40:4e:cd:94:00:9e:67:1d:d3:d5:6d:fc:be:bf:60:58:0a:16:
38:0a:38:fc:0f:78:c0:9d:e2:10:22:75:2e:e1:2d:9e:a1:83:
31:41:ef:19:d6:28:c2:ae:01:ec:a1:6c:f7:49:df:93:26:3e:
aa:7d:b0:70:aa:15:54:5a:12:3e:aa:88:bf:92:4b:2a:67:3a:
11:e1:99:4c:df:af:4f:00:14:56:e5:ba:7e:e0:29:76:87:aa:
96:d7:6f:8d:c3:90:bf:6f:a8:ef:71:68:63:1e:bb:07:04:d4:
e6:8a:1e:b3:da:0b:08:63:dd:bd:6b:80:86:bc:c5:84:a6:ed:
a9:c3:ca:2e:19:54:a0:d2:d4:f8:b1:f3:90:a7:d8:a8:2d:83:
7e:8f:23:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:14 2025 by rpki-client