Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/67d028-67f5-444a-8afd-f0a660657e83/1/02PkLnXnqmWRuTOBbQmR9WRt_3k.roa
File: 02PkLnXnqmWRuTOBbQmR9WRt_3k.roa (raw, json)
Hash identifier: XI9nXGYBxAN8h0/JYtcpHKSS/RSH9ju2906jdZgUhwY=
Subject key identifier: D3:63:E4:2E:75:E7:AA:65:91:B9:33:81:6D:09:91:F5:64:6D:FF:79
Certificate issuer: /CN=871ba47d7bb1246d5b70078372569f94f358fb06
Certificate serial: 01856AF7E15ACA5192723627E6ADB0F28204
Authority key identifier: 87:1B:A4:7D:7B:B1:24:6D:5B:70:07:83:72:56:9F:94:F3:58:FB:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hxukfXuxJG1bcAeDclaflPNY-wY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/67d028-67f5-444a-8afd-f0a660657e83/1/02PkLnXnqmWRuTOBbQmR9WRt_3k.roa
Signing time: Sun 01 Jan 2023 01:35:08 +0000
ROA not before: Sun 01 Jan 2023 01:35:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 58061
IP address blocks: 217.119.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6a:f7:e1:5a:ca:51:92:72:36:27:e6:ad:b0:f2:82:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=871ba47d7bb1246d5b70078372569f94f358fb06
Validity
Not Before: Jan 1 01:35:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d363e42e75e7aa6591b933816d0991f5646dff79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:fa:12:10:ad:78:18:cf:b8:b9:f6:16:f6:92:
e4:3c:03:a6:be:e2:66:eb:a4:e1:90:57:37:66:fa:
a8:6e:1a:7b:d1:33:75:25:47:01:c5:d7:f3:de:84:
a8:1d:8f:74:8f:39:76:8d:b3:4e:cd:a1:cf:0f:8a:
b6:f6:70:74:39:51:33:ac:0f:e2:c5:04:74:f3:11:
a4:fc:88:a9:07:f9:05:2f:27:f4:dd:3a:cb:df:68:
c3:62:70:e8:26:b0:c3:40:02:e3:6a:e2:5a:12:f3:
3e:63:c9:3c:7e:6f:af:5c:5f:32:ad:d1:8e:80:7b:
a8:e3:a0:b3:27:2e:0f:03:0d:52:b0:b6:78:c4:be:
7f:6e:32:45:1f:b2:77:53:8c:57:41:ba:d6:90:0e:
a8:52:ee:d5:e3:b0:85:71:92:31:50:69:46:cb:22:
94:40:20:ab:07:d5:73:0e:9e:ce:8c:84:9d:ff:47:
81:ea:f4:dd:9f:c9:29:3e:3d:12:73:4c:29:a8:42:
b2:57:c4:81:b1:31:70:a1:c6:50:b5:28:e1:99:9e:
d3:e7:f2:e8:ce:84:4e:4e:d8:13:42:b3:da:2b:d8:
ef:1b:a6:fd:e6:8f:ae:e5:46:b9:0e:66:00:55:0c:
ca:ed:43:e2:0c:48:72:2a:de:4e:66:41:54:ed:9a:
50:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:63:E4:2E:75:E7:AA:65:91:B9:33:81:6D:09:91:F5:64:6D:FF:79
X509v3 Authority Key Identifier:
keyid:87:1B:A4:7D:7B:B1:24:6D:5B:70:07:83:72:56:9F:94:F3:58:FB:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hxukfXuxJG1bcAeDclaflPNY-wY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/67d028-67f5-444a-8afd-f0a660657e83/1/02PkLnXnqmWRuTOBbQmR9WRt_3k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/67d028-67f5-444a-8afd-f0a660657e83/1/hxukfXuxJG1bcAeDclaflPNY-wY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.119.130.0/24
Signature Algorithm: sha256WithRSAEncryption
99:68:16:f1:7e:6b:53:5f:4d:9c:53:55:6e:c0:7a:cf:e5:94:
c0:0e:55:e6:f1:d5:07:59:ca:9f:62:1d:ab:5b:bb:d2:da:97:
25:8e:5f:af:6d:32:55:b6:fd:78:89:41:4c:d2:9c:1b:a4:d7:
9b:30:1b:58:eb:9e:14:86:ed:0e:db:6c:59:33:e5:21:83:59:
6d:d1:03:cc:d2:e4:9e:e4:a5:e0:fd:20:a3:1f:a0:a7:60:a9:
4e:f4:4f:81:65:d2:46:75:7f:3c:64:35:e2:3a:ef:8d:eb:2f:
db:16:40:11:a7:0b:da:51:e4:5e:98:98:33:bd:bf:36:a0:f6:
6b:7f:ad:1b:ec:d9:b0:b5:6e:8d:28:bc:88:70:61:f5:18:af:
da:5c:74:c5:d6:4e:1f:e8:58:e4:c0:b4:e6:00:e5:0d:f4:51:
4d:61:b9:b0:79:4c:9f:a1:e5:94:46:83:d4:b3:d3:75:6a:fb:
3d:ac:50:5a:85:65:9c:25:b6:4d:93:1a:2b:6d:9b:2e:26:b1:
a5:14:fb:3d:fd:ca:b3:da:56:9c:3b:0f:a5:20:e7:2c:f9:32:
73:fa:b6:48:8a:f6:90:06:e5:fa:6a:5c:0d:04:ae:f8:83:e1:
a3:19:dd:3d:84:56:1f:e4:cd:a2:61:3f:26:9b:87:99:b8:14:
49:e6:86:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Oct 6 12:30:19 2023 by rpki-client on console-fra.rpki-client.org