Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/6HxT_T5zAP6O1x0ZM_RlVVt6sqE.roa
File: 6HxT_T5zAP6O1x0ZM_RlVVt6sqE.roa (raw, json)
Hash identifier: 55RyFpV7pY1HegC7ur2DUQIONcQMXmcw+fk99lS5GhY=
Subject key identifier: E8:7C:53:FD:3E:73:00:FE:8E:D7:1D:19:33:F4:65:55:5B:7A:B2:A1
Certificate issuer: /CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Certificate serial: 01856ED4C60F31DAE4FAA1B7CA9DA5BB047A
Authority key identifier: 3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/6HxT_T5zAP6O1x0ZM_RlVVt6sqE.roa
Signing time: Sun 01 Jan 2023 19:35:16 +0000
ROA not before: Sun 01 Jan 2023 19:35:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210122
IP address blocks: 152.89.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:d4:c6:0f:31:da:e4:fa:a1:b7:ca:9d:a5:bb:04:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3cdcc8bcdb6c744acdf43dd72d68d20451a179f6
Validity
Not Before: Jan 1 19:35:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e87c53fd3e7300fe8ed71d1933f465555b7ab2a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:72:a6:00:93:18:16:62:d3:73:f0:44:c1:47:
fa:a3:18:d5:1b:c0:d0:3f:ec:5d:57:ca:99:38:ff:
62:ac:fd:36:a2:37:f8:70:0f:a5:e2:4a:29:77:9c:
5f:ac:95:e3:38:5b:25:c5:8c:54:07:4c:64:ac:6a:
41:d4:67:48:72:99:7f:84:48:14:02:af:62:a2:61:
75:e3:fa:4b:7e:a4:48:54:ef:8c:58:dd:a7:2d:ff:
08:18:35:6a:bc:aa:3c:c1:42:76:5c:d2:73:28:e9:
3f:79:3d:85:4a:a5:e7:a3:e5:05:d5:22:38:0e:eb:
df:6a:35:fa:d9:08:47:c5:fc:af:b9:66:84:12:18:
41:6e:44:45:0b:15:83:7a:75:37:13:f1:4e:0e:42:
79:4c:0c:ba:6a:85:d8:8a:ad:01:6f:d8:75:14:a8:
4e:77:94:87:66:2b:ec:3e:15:29:9c:24:62:b0:a8:
0d:55:d2:56:1c:99:c9:27:5e:16:b3:7c:77:cb:58:
28:33:41:e7:56:22:20:08:4f:91:61:30:e7:13:38:
92:19:17:45:71:98:12:97:a2:8e:c1:9e:4c:fd:19:
bd:f8:69:20:6b:90:27:b2:fa:3c:1d:7d:74:db:ab:
1d:8a:2c:76:2a:3b:bc:b5:4b:d0:9b:18:e7:16:74:
e2:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:7C:53:FD:3E:73:00:FE:8E:D7:1D:19:33:F4:65:55:5B:7A:B2:A1
X509v3 Authority Key Identifier:
keyid:3C:DC:C8:BC:DB:6C:74:4A:CD:F4:3D:D7:2D:68:D2:04:51:A1:79:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PNzIvNtsdErN9D3XLWjSBFGhefY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/6HxT_T5zAP6O1x0ZM_RlVVt6sqE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/356826-fc10-4aa9-96a4-637b371da8e6/1/PNzIvNtsdErN9D3XLWjSBFGhefY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.195.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:ba:bc:5b:f0:45:38:f9:2a:d4:e2:33:08:5e:62:dd:64:e8:
1a:fc:82:41:e6:a1:2e:3d:dc:6e:96:19:3f:7b:1e:85:67:ea:
b4:9a:19:f1:a7:5a:54:9d:d0:00:d0:8a:0f:29:6c:43:55:c6:
a8:3c:72:36:e3:7d:a5:ed:f3:a3:65:35:3e:29:13:b6:2b:c7:
31:22:1a:a7:2c:3d:cf:14:f7:63:ca:bf:5b:cf:69:da:ac:b6:
d5:bc:72:7d:35:d8:62:de:2e:31:b1:1f:71:82:87:aa:b4:77:
0d:25:1a:03:b4:47:1a:c8:79:39:e3:e5:b3:ab:66:7e:6e:2a:
64:70:f2:da:ea:ae:02:30:d8:a6:2f:74:62:f6:40:d3:de:ad:
25:a8:40:1f:1b:9a:8e:46:15:53:96:66:c1:98:23:f7:c3:93:
30:79:44:ab:00:4d:12:63:cc:2a:51:4e:0a:e0:c6:db:14:f4:
50:55:d2:ce:99:f3:43:38:14:ca:37:52:f1:a3:d8:7e:b4:01:
7b:6b:84:2f:3d:e6:63:26:34:c6:dc:c0:ca:0f:a4:3c:02:6d:
60:ae:13:5b:2d:e0:6b:2a:87:1d:d0:f4:64:3e:ca:3c:4a:7b:
1a:b0:39:2a:1a:c5:e1:2b:27:64:94:dd:26:cb:f9:39:e2:bf:
94:2f:39:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 13:17:49 2023 by rpki-client on console-ams.rpki-client.org