Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/f7f8e9-a9ef-406d-a593-9cc4805e6777/1/HrTokBRUCdTK4rFpBCmwTNweB8E.roa
File: HrTokBRUCdTK4rFpBCmwTNweB8E.roa (raw, json)
Hash identifier: AsYE7Lm7AskJVUHLOMj3akqE+IxeKJlrKH35fKYonPY=
Subject key identifier: 1E:B4:E8:90:14:54:09:D4:CA:E2:B1:69:04:29:B0:4C:DC:1E:07:C1
Certificate issuer: /CN=cd5aca299d355aadfe1ef939546280e588d249a3
Certificate serial: 01866F19A5BC56DE554ED763609AF2D83340
Authority key identifier: CD:5A:CA:29:9D:35:5A:AD:FE:1E:F9:39:54:62:80:E5:88:D2:49:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zVrKKZ01Wq3-Hvk5VGKA5YjSSaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/f7f8e9-a9ef-406d-a593-9cc4805e6777/1/HrTokBRUCdTK4rFpBCmwTNweB8E.roa
Signing time: Mon 20 Feb 2023 13:53:17 +0000
ROA not before: Mon 20 Feb 2023 13:53:17 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207279
IP address blocks: 5.172.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:6f:19:a5:bc:56:de:55:4e:d7:63:60:9a:f2:d8:33:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5aca299d355aadfe1ef939546280e588d249a3
Validity
Not Before: Feb 20 13:53:17 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1eb4e890145409d4cae2b1690429b04cdc1e07c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:60:ba:37:62:a5:02:b2:35:0c:8f:ef:3d:91:
5c:7d:26:3e:0a:6a:1e:91:97:06:5e:41:5b:58:57:
5a:c1:9b:8f:82:ad:70:82:3d:57:07:d1:60:79:14:
01:86:f8:35:20:e6:25:f9:5d:eb:40:12:49:80:0c:
2b:80:23:f1:97:ed:29:71:5f:80:c8:d7:a3:cf:a9:
f0:a0:2a:60:c1:0a:39:dc:b6:b4:49:c0:19:db:d0:
04:a9:30:c6:9d:67:c6:5b:1a:37:cd:0a:95:c4:8e:
16:5c:60:13:f5:77:5c:64:d1:22:3b:6a:97:80:f6:
32:95:c8:97:10:db:06:c9:1d:66:ff:ce:2a:23:28:
03:b2:fc:03:27:53:0e:84:5b:78:a3:83:2e:ab:5c:
4a:f2:ee:7c:5c:0a:a4:84:3b:e8:58:0e:8a:27:e0:
67:e5:56:56:0d:54:36:31:ea:9f:13:22:9c:95:4e:
92:3d:bf:d4:1d:c1:f1:61:71:04:f5:1e:ee:03:7b:
4a:d0:e8:16:d1:26:fa:8f:f9:92:32:0e:8f:19:a5:
ad:32:12:cc:99:55:01:36:6f:90:90:22:2d:48:bc:
39:4d:0b:b3:ba:cd:e1:08:d9:91:5f:9c:ec:cc:2d:
9b:c5:f9:6e:e7:d8:5d:57:8d:d2:bf:80:f6:97:b2:
16:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:B4:E8:90:14:54:09:D4:CA:E2:B1:69:04:29:B0:4C:DC:1E:07:C1
X509v3 Authority Key Identifier:
keyid:CD:5A:CA:29:9D:35:5A:AD:FE:1E:F9:39:54:62:80:E5:88:D2:49:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zVrKKZ01Wq3-Hvk5VGKA5YjSSaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/f7f8e9-a9ef-406d-a593-9cc4805e6777/1/HrTokBRUCdTK4rFpBCmwTNweB8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/f7f8e9-a9ef-406d-a593-9cc4805e6777/1/zVrKKZ01Wq3-Hvk5VGKA5YjSSaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.172.176.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:f8:d3:51:e6:83:d3:6c:4b:4d:f0:c6:0b:3e:3c:9d:c6:81:
ae:61:19:fb:fb:11:ad:25:c6:d6:45:42:76:35:af:a2:a9:c8:
6e:3f:01:09:20:be:cc:1e:23:09:48:19:3a:4c:1b:5c:d5:34:
c6:f6:50:26:5f:cb:9e:44:7a:25:37:ba:97:c5:f6:36:2d:54:
0a:2e:c9:bd:f7:68:c5:f3:66:62:6a:6f:65:0c:c7:e1:3b:1d:
9a:4d:6f:ab:8f:13:b9:a8:2f:f8:cc:bf:01:73:65:57:ac:f4:
55:f8:6e:f4:c1:a4:49:85:0b:e9:5d:a0:ee:97:68:66:b9:0f:
51:0f:2d:95:9e:ce:31:fe:6a:62:6c:62:7a:28:ed:df:6b:73:
ad:5e:6f:2d:6d:b2:83:e7:e2:e7:53:ea:7c:40:9a:17:d3:b9:
67:ed:b8:67:13:6d:0a:83:35:3f:ba:7a:bd:84:87:22:41:40:
84:dd:90:ed:9c:4e:e2:11:ec:31:93:6f:c0:52:ca:27:78:8c:
52:51:8a:3d:fb:d6:b7:5f:6e:d7:3c:0b:eb:16:a9:79:a2:fe:
27:e9:0c:06:bf:3a:3a:0d:9d:12:e5:fc:97:0f:80:4f:0b:1b:
08:cd:55:1b:15:10:ae:76:b9:08:b5:ca:11:28:d9:12:0b:04:
44:f5:bc:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:16 2024 by rpki-client on console-ams.rpki-client.org