Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/6NjFlj4jvX3ROfsVg9IkkmlogiU.roa
File: 6NjFlj4jvX3ROfsVg9IkkmlogiU.roa (raw, json)
Hash identifier: txsH89uAaYPfC+Fc4e40lbUMDTs29EkCoFPnwQ1jRq0=
Subject key identifier: E8:D8:C5:96:3E:23:BD:7D:D1:39:FB:15:83:D2:24:92:69:68:82:25
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 019073A84D83BEF4B06C05BD61128F9A5DC6
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/6NjFlj4jvX3ROfsVg9IkkmlogiU.roa
Signing time: Tue 02 Jul 2024 13:35:28 +0000
ROA not before: Tue 02 Jul 2024 13:35:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 48266
IP address blocks: 109.111.40.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:73:a8:4d:83:be:f4:b0:6c:05:bd:61:12:8f:9a:5d:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Jul 2 13:35:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8d8c5963e23bd7dd139fb1583d2249269688225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fa:a6:98:b5:f3:9d:0a:d4:a2:02:86:72:ad:
fb:6a:0b:e7:22:57:96:46:3c:da:6d:05:ad:4d:dd:
46:0f:f6:19:00:f7:2d:a4:6c:78:cf:e2:e9:2d:97:
03:3b:28:d8:41:54:be:62:e0:25:6e:83:92:56:6f:
9c:f7:f2:4a:14:1e:59:51:df:f8:ca:57:75:15:3b:
ec:2d:e4:ad:6c:69:4a:62:d6:60:9b:a2:8d:69:7d:
bf:03:44:62:9e:b4:86:7c:1b:64:14:cb:26:e3:76:
2e:dd:b9:e3:d2:47:fb:17:73:0d:cd:0e:3a:73:d0:
98:58:76:1a:42:c6:d0:74:db:c1:db:50:29:e5:b2:
1d:28:82:13:76:b7:08:68:af:3a:37:99:b9:3d:0c:
1e:b4:11:23:ba:59:82:c4:6f:38:08:e8:4d:d8:d0:
80:de:9c:d3:e8:39:d9:6a:d9:fe:7c:21:d2:0f:7c:
1e:74:2e:d5:99:3a:fe:e4:28:ce:52:00:63:71:7c:
82:97:df:7d:e2:a4:a2:1f:fa:87:b6:86:05:b9:bd:
60:39:76:0a:13:3c:31:d5:d4:c5:41:a9:7c:97:b9:
b8:de:82:c1:63:d0:43:55:4d:bc:b8:f4:82:aa:28:
9a:28:03:e6:a4:bb:94:43:8c:63:9a:24:54:dc:c2:
7c:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D8:C5:96:3E:23:BD:7D:D1:39:FB:15:83:D2:24:92:69:68:82:25
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/6NjFlj4jvX3ROfsVg9IkkmlogiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.111.40.0/23
Signature Algorithm: sha256WithRSAEncryption
52:27:0b:bf:b3:c7:33:04:d5:e1:41:bb:ac:2b:41:a6:85:5a:
ca:17:17:43:2c:ea:ca:72:be:29:df:4e:9e:30:8d:16:e4:9e:
cb:6d:89:58:d6:ff:ea:5a:70:53:29:a1:da:e6:a2:42:35:fe:
e0:e6:c8:13:0a:9e:70:29:dc:11:a8:1f:95:cd:0a:7c:89:ea:
28:8b:55:fd:88:8d:a6:85:df:df:bf:2e:cf:0f:ee:73:64:db:
ed:d2:d2:f6:9b:6c:b6:fd:68:39:a7:62:6e:66:04:4f:26:c7:
85:71:d5:41:92:ad:62:9a:42:9d:99:77:cc:de:19:36:f3:4d:
26:47:b2:a6:70:1b:88:e5:a9:aa:c2:12:25:6c:65:fd:a8:7b:
6a:7b:72:2f:ef:01:20:d1:ad:8d:55:69:a8:7a:57:6a:b9:65:
62:a5:55:15:72:35:35:dc:6f:08:af:0b:82:5e:f7:6b:4c:a1:
c7:ef:cc:b3:5e:0b:30:4c:02:fb:3e:28:18:16:10:ce:45:fb:
e0:96:b2:77:bc:55:07:cc:2a:3f:71:07:08:67:53:48:c7:da:
0f:fe:fc:12:99:85:12:d3:b3:6a:40:03:65:a1:fe:cf:0d:36:
60:53:c9:f7:4e:79:59:bd:65:65:79:06:c5:74:db:c9:41:a5:
3b:b6:da:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:08 2025 by rpki-client