Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/85c1ab-4321-4e67-8d6f-74b2ec0d406b/1/HvruuLcxokAknxe-R0WmXehDI_c.roa
File: HvruuLcxokAknxe-R0WmXehDI_c.roa (raw, json)
Hash identifier: T9NYTn4hOjsr2WPSxSnKWYBa7keOv8qfkPKbWAtfrIw=
Subject key identifier: 1E:FA:EE:B8:B7:31:A2:40:24:9F:17:BE:47:45:A6:5D:E8:43:23:F7
Certificate issuer: /CN=3bc78458fa04acc0ce28e12fee96615df656535f
Certificate serial: 01882086B50143A5A68F8A723F1DA9FA8AC0
Authority key identifier: 3B:C7:84:58:FA:04:AC:C0:CE:28:E1:2F:EE:96:61:5D:F6:56:53:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/O8eEWPoErMDOKOEv7pZhXfZWU18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/85c1ab-4321-4e67-8d6f-74b2ec0d406b/1/HvruuLcxokAknxe-R0WmXehDI_c.roa
Signing time: Mon 15 May 2023 17:47:59 +0000
ROA not before: Mon 15 May 2023 17:47:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 213.109.156.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:b5:01:43:a5:a6:8f:8a:72:3f:1d:a9:fa:8a:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3bc78458fa04acc0ce28e12fee96615df656535f
Validity
Not Before: May 15 17:47:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1efaeeb8b731a240249f17be4745a65de84323f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:48:d1:c0:d6:9f:80:62:34:39:68:e5:a5:e8:
a4:cc:a8:d3:dc:f0:62:82:1d:e9:b0:63:55:41:fd:
04:a4:0f:6a:43:78:f5:45:49:60:cf:96:43:a1:2a:
08:cb:4f:58:1e:a5:f8:31:cc:df:88:b8:a0:d3:8c:
65:21:9a:e5:f7:0d:4c:03:db:07:49:ef:fc:4c:30:
7e:b3:c5:66:77:81:c8:b1:84:3f:08:e9:73:f8:5e:
b7:f2:88:fb:85:7d:03:08:59:90:e0:59:48:bb:89:
5e:c8:ea:28:c4:d1:e0:60:e8:85:84:5f:6c:20:22:
42:df:ae:fc:42:2a:2b:15:44:95:24:09:80:0d:70:
37:26:96:4d:40:2d:a4:ce:ed:a1:a5:30:46:0e:2f:
90:88:83:62:e3:5c:56:47:7c:27:78:e8:2b:5b:e3:
ee:ac:c8:d3:54:87:61:a2:ab:2e:d0:fa:30:21:6d:
f9:f9:5d:82:79:5e:e5:43:65:7d:1e:27:b1:37:db:
41:c2:ce:2f:2c:36:a5:10:61:b6:ac:b1:be:8f:35:
a4:64:a9:f4:95:2f:da:1a:17:c7:50:31:4c:65:c3:
05:b0:30:c6:ea:03:45:c9:0c:ad:f3:4c:ca:2b:a0:
5c:65:8b:d7:d7:34:4e:f2:2c:40:84:0b:e1:32:b3:
a6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:FA:EE:B8:B7:31:A2:40:24:9F:17:BE:47:45:A6:5D:E8:43:23:F7
X509v3 Authority Key Identifier:
keyid:3B:C7:84:58:FA:04:AC:C0:CE:28:E1:2F:EE:96:61:5D:F6:56:53:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/O8eEWPoErMDOKOEv7pZhXfZWU18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/85c1ab-4321-4e67-8d6f-74b2ec0d406b/1/HvruuLcxokAknxe-R0WmXehDI_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/85c1ab-4321-4e67-8d6f-74b2ec0d406b/1/O8eEWPoErMDOKOEv7pZhXfZWU18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.156.0/24
Signature Algorithm: sha256WithRSAEncryption
c5:ef:83:9a:76:41:15:71:22:fb:80:94:dc:56:d2:26:bd:f7:
94:7d:a8:78:66:e1:f5:ee:3a:bf:7f:44:6b:79:93:a2:1b:c7:
a4:83:e6:7a:be:31:a5:f7:0f:fa:0f:80:55:9d:f3:d4:57:73:
63:83:76:2e:ce:83:5b:00:1c:dd:8d:d5:9f:21:84:c1:fd:bd:
24:da:0f:8f:1b:ea:87:20:9a:27:59:9a:57:d6:62:4c:9c:f5:
9b:69:e1:ee:dd:49:7f:5d:1b:52:e2:39:cb:96:6a:f7:0c:9a:
91:7d:93:64:e1:03:d8:41:cd:a4:d4:46:12:b9:32:1c:7a:64:
32:06:e2:c5:cc:1f:48:91:a5:29:86:9f:0a:72:df:ea:47:d2:
f9:b4:34:3e:e1:1b:48:84:8a:06:9f:d8:52:b1:e0:93:02:61:
6d:7a:fc:81:e6:ae:9f:0a:8e:94:9b:05:2e:1f:ea:a7:cc:f2:
61:0f:ba:a7:69:06:77:ca:ea:70:73:c3:cb:ba:95:51:73:ac:
b8:e3:ae:09:a7:2a:01:cb:09:69:be:56:90:65:07:44:75:b7:
01:c3:f3:36:43:cb:48:8c:77:1a:ce:ba:6c:bb:47:c7:7a:9f:
6a:86:b8:3e:60:16:83:54:dc:cb:14:55:61:7b:e7:31:59:ee:
ec:10:79:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 31 15:52:34 2023 by rpki-client on console-ams.rpki-client.org