Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/58OEAk9K4BjZF9TYc63vHvGGGQ4.roa
File: 58OEAk9K4BjZF9TYc63vHvGGGQ4.roa (raw, json)
Hash identifier: KZqQzPL71/eCPgBuzRRWPf97ALKCkcxJJhz8mfA0roA=
Subject key identifier: E7:C3:84:02:4F:4A:E0:18:D9:17:D4:D8:73:AD:EF:1E:F1:86:19:0E
Certificate issuer: /CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Certificate serial: 01C09133
Authority key identifier: 5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/58OEAk9K4BjZF9TYc63vHvGGGQ4.roa
Signing time: Thu 16 Jun 2022 08:23:44 +0000
ROA not before: Thu 16 Jun 2022 08:23:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 130.255.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 29397299 (0x1c09133)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ef104fc4b0b5c08272e3ae783b8cd777ba2aa90
Validity
Not Before: Jun 16 08:23:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e7c384024f4ae018d917d4d873adef1ef186190e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:cf:9c:3b:7d:95:13:e0:8a:fa:a8:f5:4c:b3:
12:6c:86:d9:7f:55:96:d0:6b:6e:4f:e1:97:57:c0:
b0:0d:a5:58:a7:5c:28:a5:0e:d0:4c:ca:2e:90:03:
4e:48:dd:44:af:35:f6:4e:e5:32:3c:21:dd:e1:06:
4a:79:09:a0:9e:bb:73:99:9a:46:8d:9b:41:78:f2:
18:fc:38:eb:e4:95:f5:33:c1:bb:16:3e:2b:6e:83:
f1:2e:ca:6c:c0:c1:c5:fa:2f:0e:fc:23:ca:cf:d3:
83:23:1d:84:c6:79:c2:d2:ea:03:ce:64:18:0b:51:
84:17:f2:c8:17:18:c0:e6:ac:83:3f:cd:33:b2:75:
32:29:be:78:c9:aa:e8:c5:75:f9:21:49:b9:b5:d4:
ef:ba:48:2f:90:a7:19:d9:28:e8:93:a8:33:00:42:
b3:f2:e9:8b:d0:1d:3e:2e:b3:2f:dd:fb:8a:2d:3d:
bd:54:75:fc:c6:59:e9:ce:30:8f:be:b7:c8:c4:25:
19:db:cf:62:ed:b7:cf:61:92:7f:58:45:59:90:9b:
53:3e:9c:98:d2:a7:b0:b5:54:64:34:31:2e:2a:c3:
ac:c0:e6:ab:00:9a:9f:9c:29:7a:7c:38:a5:4c:e2:
b9:da:55:50:67:eb:b3:b1:c9:e4:00:08:b3:f7:37:
93:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C3:84:02:4F:4A:E0:18:D9:17:D4:D8:73:AD:EF:1E:F1:86:19:0E
X509v3 Authority Key Identifier:
keyid:5E:F1:04:FC:4B:0B:5C:08:27:2E:3A:E7:83:B8:CD:77:7B:A2:AA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XvEE_EsLXAgnLjrng7jNd3uiqpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/58OEAk9K4BjZF9TYc63vHvGGGQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/353bfa-abdb-444a-8154-4fc54b0baa78/1/XvEE_EsLXAgnLjrng7jNd3uiqpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
130.255.174.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:f9:21:a5:ac:8f:32:fe:be:fc:2e:8d:f8:c9:8d:c0:74:bd:
06:cb:c5:2a:8a:4e:25:af:69:ee:97:61:7b:1b:44:71:dc:80:
73:24:11:99:ef:59:94:80:0b:e8:d5:f5:a8:09:88:01:b6:cd:
25:50:9a:23:fe:7f:c6:42:e6:4a:30:b9:b9:30:73:4a:c4:71:
16:c2:77:ea:e8:f9:f7:8b:c8:ff:99:3b:3b:9f:c1:77:df:c1:
4b:e4:d5:89:e8:a8:81:79:56:92:e1:8a:0e:e9:77:b5:f8:89:
dc:bd:46:6f:f2:72:44:63:fc:af:07:b9:77:8f:d2:69:7d:f5:
b0:e2:0a:db:08:66:51:9c:49:dd:35:67:8f:fd:74:79:ae:d5:
98:fc:16:93:5f:ce:e7:1f:c9:bb:a2:a5:e5:0d:a3:c2:f2:a1:
82:a0:b8:61:78:8b:65:56:5d:66:25:23:df:8e:56:12:21:ca:
e5:ec:47:1b:4e:f9:af:5b:dc:42:b0:cd:fe:9a:4b:00:cf:05:
11:84:ad:5d:3d:52:cc:31:95:53:54:6f:f1:74:63:8c:2f:e5:
90:9e:05:2f:f2:c3:68:a0:e6:fc:69:e9:3f:08:05:cf:31:dc:
64:8f:f7:b9:13:8e:89:54:d4:03:1d:85:0d:c6:3a:94:91:f2:
8d:37:4e:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:18:03 2024 by rpki-client on console-ams.rpki-client.org