Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/dc504f-473c-4e9f-a87a-5a08c5e97209/1/BaqtEySaP8xema2Oagkb4-e0__w.roa
File: BaqtEySaP8xema2Oagkb4-e0__w.roa (raw, json)
Hash identifier: +hi1Bb5P0zp+9gZu+NotNnX16hmQ0QobhUWG1HcUvKg=
Subject key identifier: 05:AA:AD:13:24:9A:3F:CC:5E:99:AD:8E:6A:09:1B:E3:E7:B4:FF:FC
Certificate issuer: /CN=2ce3894512e48705a5db0609d4fac675a750fc4f
Certificate serial: 01898694CF26FB6F4C5A597AF13321B4D4B4
Authority key identifier: 2C:E3:89:45:12:E4:87:05:A5:DB:06:09:D4:FA:C6:75:A7:50:FC:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LOOJRRLkhwWl2wYJ1PrGdadQ_E8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/dc504f-473c-4e9f-a87a-5a08c5e97209/1/BaqtEySaP8xema2Oagkb4-e0__w.roa
Signing time: Mon 24 Jul 2023 06:27:26 +0000
ROA not before: Mon 24 Jul 2023 06:27:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 109.234.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:86:94:cf:26:fb:6f:4c:5a:59:7a:f1:33:21:b4:d4:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ce3894512e48705a5db0609d4fac675a750fc4f
Validity
Not Before: Jul 24 06:27:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=05aaad13249a3fcc5e99ad8e6a091be3e7b4fffc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:4b:7a:c6:8a:a1:39:f0:5d:47:fc:2a:6c:3b:
28:d0:3e:d2:02:a9:7a:c7:51:60:b7:0e:a1:bc:8b:
7c:e5:b6:d9:ed:ee:5c:00:79:2a:d8:bc:01:ae:7e:
f8:94:3d:e8:4b:46:a2:39:ee:a8:64:a1:30:5b:c2:
6e:57:73:97:57:29:3b:81:68:6b:ca:17:84:24:8a:
c4:74:ba:31:f9:d8:ea:cc:e6:f8:1e:35:de:9a:e5:
9d:41:93:b6:a4:2a:df:09:4c:f3:bb:25:7c:e4:9c:
07:08:2a:f2:75:e2:0d:c7:df:75:24:7f:1e:b1:7c:
3d:01:90:ab:c9:c3:66:fc:68:b0:57:81:dd:96:71:
c7:8d:6b:30:12:f3:fc:04:43:5f:c6:01:4e:e9:c7:
72:6c:64:97:1c:06:06:78:ee:1f:e1:ec:e8:94:bd:
ac:64:2e:dc:64:46:06:bc:43:cb:f5:35:2a:4e:a2:
54:d8:76:f2:36:18:cd:f3:c7:f1:0e:7d:d3:a4:4e:
57:84:c7:88:59:93:87:97:1c:13:98:eb:b8:85:87:
1a:62:a1:f9:1c:99:da:fd:6a:1a:a2:c1:6c:1a:c8:
83:c2:94:0a:ba:f7:18:0a:1d:08:92:fc:3c:8f:a0:
e6:29:89:53:a2:3a:a8:3e:6c:89:41:50:e2:16:ba:
d0:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:AA:AD:13:24:9A:3F:CC:5E:99:AD:8E:6A:09:1B:E3:E7:B4:FF:FC
X509v3 Authority Key Identifier:
keyid:2C:E3:89:45:12:E4:87:05:A5:DB:06:09:D4:FA:C6:75:A7:50:FC:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LOOJRRLkhwWl2wYJ1PrGdadQ_E8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/dc504f-473c-4e9f-a87a-5a08c5e97209/1/BaqtEySaP8xema2Oagkb4-e0__w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/dc504f-473c-4e9f-a87a-5a08c5e97209/1/LOOJRRLkhwWl2wYJ1PrGdadQ_E8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.234.76.0/24
Signature Algorithm: sha256WithRSAEncryption
96:61:76:a0:a6:0e:d4:19:c4:e6:5e:88:e8:0f:c2:af:52:55:
cc:a1:45:bf:21:3c:1e:91:3f:49:63:8b:d0:a4:5d:8d:1f:a0:
ee:a9:7c:81:68:97:0e:bf:3e:b2:80:34:49:fd:04:61:6b:d2:
af:29:e4:8d:2f:b8:d5:9f:e3:03:2c:8b:e7:ac:95:c4:02:49:
23:22:84:1b:d5:fd:82:96:73:cb:70:49:7b:95:af:7d:66:7d:
c6:e3:67:80:25:c5:be:d8:2b:77:ef:c6:49:94:7e:4f:81:47:
b8:e7:6d:1e:0b:2e:b4:43:9b:38:a0:57:e9:ac:6e:a9:aa:11:
bd:cb:9e:b3:d5:ce:60:6a:ac:eb:d0:dd:0c:bd:b1:e3:27:de:
51:ed:31:3d:06:80:53:1a:84:dd:b7:08:da:99:63:97:1a:45:
1f:51:a4:67:92:8b:75:aa:62:30:eb:ac:67:b1:91:f2:ce:97:
f3:b0:42:c0:ed:46:de:9b:97:d0:db:e5:52:df:43:91:b1:33:
56:74:57:ae:7b:31:7f:e7:16:4b:38:f6:da:8c:60:82:47:0e:
0c:e3:08:6a:5a:a7:91:d8:a0:32:0d:09:da:d1:83:1e:33:c4:
c7:f9:84:ca:61:13:30:93:73:95:ef:96:40:70:52:df:59:f0:
fe:fa:e1:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Sep 5 13:11:04 2023 by rpki-client on console-ams.rpki-client.org