Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/309858-25b0-4b04-a78a-a38c871b93b4/1/wvj66rsAXCpujPG_zQTqJ7tvq8Y.roa
File: wvj66rsAXCpujPG_zQTqJ7tvq8Y.roa (raw, json)
Hash identifier: jSUHJYcnecpjhPcgGI4FThT+HvlSQYnfWomzozrNYkg=
Subject key identifier: C2:F8:FA:EA:BB:00:5C:2A:6E:8C:F1:BF:CD:04:EA:27:BB:6F:AB:C6
Certificate issuer: /CN=bf72ff4c79c6f8175b4835ab656a1bcf1e457432
Certificate serial: 3BF9
Authority key identifier: BF:72:FF:4C:79:C6:F8:17:5B:48:35:AB:65:6A:1B:CF:1E:45:74:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v3L_THnG-BdbSDWrZWobzx5FdDI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/309858-25b0-4b04-a78a-a38c871b93b4/1/wvj66rsAXCpujPG_zQTqJ7tvq8Y.roa
Signing time: Wed 13 Apr 2022 13:18:19 +0000
ROA not before: Wed 13 Apr 2022 13:18:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50089
IP address blocks: 5.42.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15353 (0x3bf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf72ff4c79c6f8175b4835ab656a1bcf1e457432
Validity
Not Before: Apr 13 13:18:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2f8faeabb005c2a6e8cf1bfcd04ea27bb6fabc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:db:85:4e:91:71:ec:bb:0b:f6:82:fb:1d:d7:
07:fb:80:1d:8e:e0:f0:0f:9a:27:0b:99:66:53:c6:
a1:10:83:65:30:1c:0d:61:4e:06:31:8e:c0:6e:03:
3b:c1:b6:1d:ed:07:cc:5b:05:dd:c0:63:f8:40:14:
d4:a9:05:0d:72:65:a2:26:ce:82:ae:b2:34:cb:39:
f5:cc:99:66:38:d4:04:ce:c0:82:89:64:9a:c7:bc:
47:8e:49:d6:1b:a3:1b:f0:ad:54:ef:f7:f5:2c:58:
cc:65:41:9b:6a:03:ae:43:35:f7:92:87:2c:53:6f:
7c:f0:98:9d:df:ab:01:65:56:66:fe:fb:91:50:25:
e5:73:31:e6:0b:46:af:e2:9d:ce:c6:b3:84:ca:82:
40:b9:5b:81:86:9d:88:0b:11:a6:4e:25:09:37:63:
1e:5c:84:67:e4:4d:55:65:7c:7f:10:cf:03:74:21:
ee:8d:24:28:2b:0f:6b:de:6b:42:b4:7f:d2:7b:8b:
6a:ea:b6:1d:f9:23:e4:84:dd:7e:34:23:1b:1b:fa:
9a:76:c6:18:f4:e8:72:26:b1:3f:c8:67:6c:da:33:
51:89:ad:41:63:a9:86:3e:c2:d6:81:64:10:ab:89:
3f:99:5f:53:46:fb:7c:6a:3c:9f:6f:ec:3c:8e:84:
85:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F8:FA:EA:BB:00:5C:2A:6E:8C:F1:BF:CD:04:EA:27:BB:6F:AB:C6
X509v3 Authority Key Identifier:
keyid:BF:72:FF:4C:79:C6:F8:17:5B:48:35:AB:65:6A:1B:CF:1E:45:74:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v3L_THnG-BdbSDWrZWobzx5FdDI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/309858-25b0-4b04-a78a-a38c871b93b4/1/wvj66rsAXCpujPG_zQTqJ7tvq8Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/309858-25b0-4b04-a78a-a38c871b93b4/1/v3L_THnG-BdbSDWrZWobzx5FdDI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.220.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:48:fb:d2:a3:43:68:dc:dc:83:2f:57:a9:41:38:60:97:e0:
8d:b9:8c:93:b2:11:ec:6e:8b:26:4b:d9:6a:65:b3:06:18:79:
23:df:93:6e:62:d2:82:2b:c1:dc:44:3f:7e:75:33:14:57:8b:
d9:29:46:cd:2c:8c:33:da:1c:7d:7d:bf:74:91:d0:07:99:7a:
85:cc:e9:51:54:64:b7:d5:6a:38:b8:85:d3:33:0b:13:b6:81:
47:e1:50:ad:41:73:11:68:37:75:c1:8c:3c:9e:19:ce:74:05:
64:31:86:16:05:70:e0:3f:32:09:2a:3f:65:bf:3f:81:1c:ac:
be:a6:29:62:4b:13:bb:45:68:1a:87:63:d7:cc:98:95:a8:9a:
58:fa:6e:83:7c:e4:b8:15:14:96:86:1a:bf:24:20:71:10:a5:
30:74:7e:1d:9d:0a:3d:b4:a6:57:17:b8:75:7e:8a:21:ec:7b:
18:f4:ea:5e:36:7c:c4:79:73:b7:e6:24:cd:26:bf:b5:cb:09:
2f:7f:4a:85:f1:e8:c1:ae:e5:ce:61:6a:fe:cc:3e:d8:e2:3d:
ab:79:48:d7:d7:0d:93:06:b9:ad:8f:4d:30:61:d7:5d:da:89:
71:eb:96:be:d9:83:3e:9d:4b:93:b5:43:bb:26:49:2d:43:05:
1e:e3:5e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:17:15 2024 by rpki-client on console-ams.rpki-client.org