Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/ecc9bd-89ab-49e2-ab9b-0a47e0aaa895/1/KThXmhK9yHEkTd3eZeMMZV2rKHM.roa
File: KThXmhK9yHEkTd3eZeMMZV2rKHM.roa (raw, json)
Hash identifier: GadxPrgQkMFG+OWf0NF5XlQ7RJfBx5pvL6tslJOA+Ec=
Subject key identifier: 29:38:57:9A:12:BD:C8:71:24:4D:DD:DE:65:E3:0C:65:5D:AB:28:73
Certificate issuer: /CN=0797c6ad41e69667fb8fabd223c8baa88dfc5090
Certificate serial: 014CB0AC
Authority key identifier: 07:97:C6:AD:41:E6:96:67:FB:8F:AB:D2:23:C8:BA:A8:8D:FC:50:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B5fGrUHmlmf7j6vSI8i6qI38UJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/ecc9bd-89ab-49e2-ab9b-0a47e0aaa895/1/KThXmhK9yHEkTd3eZeMMZV2rKHM.roa
Signing time: Fri 25 Feb 2022 17:34:50 +0000
ROA not before: Fri 25 Feb 2022 17:34:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20609
IP address blocks: 213.5.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21803180 (0x14cb0ac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0797c6ad41e69667fb8fabd223c8baa88dfc5090
Validity
Not Before: Feb 25 17:34:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2938579a12bdc871244dddde65e30c655dab2873
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b5:fc:84:40:ef:7c:4e:84:67:5e:a3:6f:c9:
cf:d3:e7:f8:12:8b:f7:ab:6c:4b:a4:48:56:85:a7:
4c:52:27:ad:11:d5:49:e3:1c:b2:9c:8e:db:9b:13:
7e:51:48:17:57:72:15:10:69:11:7c:fd:ec:74:77:
b7:d5:90:10:11:37:8d:35:e7:04:5a:c1:f1:c4:9e:
6d:64:9a:c4:70:b3:cc:1f:fd:31:f2:5b:2f:80:36:
60:52:62:6d:b3:0d:ce:33:7e:5c:04:95:a3:00:aa:
c2:65:f4:ef:eb:84:72:87:a0:7d:af:83:82:4b:0e:
53:59:34:60:0c:16:fb:96:d5:e7:62:9b:20:fe:88:
b7:a5:24:b8:68:dd:b9:b5:45:37:43:02:f8:46:b3:
52:60:87:c5:23:94:fb:e1:5c:e3:82:66:74:6b:80:
d4:c6:7e:ea:36:2d:06:e9:ed:dd:6a:24:57:3b:0b:
a6:da:0a:cd:5f:8a:0a:20:58:40:58:c7:d3:08:55:
f4:d0:80:32:2b:75:fa:d1:6f:82:51:70:36:2f:60:
7a:fb:db:e6:79:f7:68:2f:b4:bc:45:ab:6f:5b:8d:
55:36:77:3e:fe:46:b9:86:4e:2d:47:86:7d:ca:7c:
b2:28:56:c2:ab:1a:59:39:59:f0:0c:54:80:ae:33:
ce:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:38:57:9A:12:BD:C8:71:24:4D:DD:DE:65:E3:0C:65:5D:AB:28:73
X509v3 Authority Key Identifier:
keyid:07:97:C6:AD:41:E6:96:67:FB:8F:AB:D2:23:C8:BA:A8:8D:FC:50:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B5fGrUHmlmf7j6vSI8i6qI38UJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/ecc9bd-89ab-49e2-ab9b-0a47e0aaa895/1/KThXmhK9yHEkTd3eZeMMZV2rKHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/ecc9bd-89ab-49e2-ab9b-0a47e0aaa895/1/B5fGrUHmlmf7j6vSI8i6qI38UJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.5.129.0/24
Signature Algorithm: sha256WithRSAEncryption
43:6c:39:2e:56:ec:54:4d:cc:0e:72:20:66:9c:03:45:46:26:
10:11:d1:54:3b:ce:9b:1a:bc:22:7c:4e:9e:b9:f2:dc:a5:a7:
dd:df:f4:73:5d:35:c1:aa:c2:64:bf:8b:b2:60:a7:9e:b2:80:
f2:8b:e3:8c:75:c1:1d:5c:34:dd:45:e1:5d:88:e0:f8:20:2b:
a8:42:57:81:e9:a8:5d:37:d1:3d:d6:4a:da:74:5b:61:3b:f1:
56:d2:b7:a5:6b:2f:4b:80:23:47:8a:dd:86:f5:17:33:d3:63:
ae:a2:45:8a:8a:e8:ea:7f:0f:98:49:dc:fb:59:b0:a4:ab:35:
0a:bc:f5:0e:99:2e:6c:f1:54:28:55:75:ba:08:a1:2a:46:10:
2f:a9:c3:63:27:f1:53:ea:70:83:e8:05:05:20:da:94:e3:0a:
fe:1b:18:70:11:83:7e:79:35:3d:4c:83:c5:cb:82:73:3e:e6:
91:85:56:69:0a:fb:47:8f:82:db:5f:4a:fc:77:16:fa:12:99:
9b:fe:eb:af:43:65:ad:73:77:22:56:3b:87:04:c3:a3:bc:0c:
d4:73:92:5f:20:2a:c4:c0:f5:66:a9:68:cc:53:9c:44:1e:ba:
88:eb:87:7a:9b:c2:d5:7b:2e:43:9a:b9:7c:7e:3e:c4:ae:d8:
fc:33:1c:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:27 2024 by rpki-client on console-fra.rpki-client.org