Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c9cb0c-9608-4280-a1b8-3b8fa2f522e6/1/7hovb1rzkQkcLQ21OMcBgZnqn8E.roa
File: 7hovb1rzkQkcLQ21OMcBgZnqn8E.roa (raw, json)
Hash identifier: +giB00b/R5kSc7kTDQMmxsJGnVam94PXPshiONr7moI=
Subject key identifier: EE:1A:2F:6F:5A:F3:91:09:1C:2D:0D:B5:38:C7:01:81:99:EA:9F:C1
Certificate issuer: /CN=84a3994c516cb85dee76e214045ef39b38f39cfc
Certificate serial: 01856F9DFE1AD4ECC392AF9574616048CF66
Authority key identifier: 84:A3:99:4C:51:6C:B8:5D:EE:76:E2:14:04:5E:F3:9B:38:F3:9C:FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hKOZTFFsuF3uduIUBF7zmzjznPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c9cb0c-9608-4280-a1b8-3b8fa2f522e6/1/7hovb1rzkQkcLQ21OMcBgZnqn8E.roa
Signing time: Sun 01 Jan 2023 23:15:03 +0000
ROA not before: Sun 01 Jan 2023 23:15:03 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57705
IP address blocks: 5.32.132.0/23 maxlen: 23
5.32.134.0/24 maxlen: 24
5.32.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:9d:fe:1a:d4:ec:c3:92:af:95:74:61:60:48:cf:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84a3994c516cb85dee76e214045ef39b38f39cfc
Validity
Not Before: Jan 1 23:15:03 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=ee1a2f6f5af391091c2d0db538c7018199ea9fc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:d7:5f:15:b1:b2:ba:62:b6:ea:3e:cd:10:be:
22:5c:13:92:c3:2d:9d:e5:7f:8c:c5:50:29:81:50:
1d:28:04:f4:d6:d0:49:0e:f3:9f:d5:cf:5f:82:e6:
0c:fc:f8:8c:40:d7:fd:94:d3:43:f1:25:50:a9:ca:
e5:42:55:92:a9:0e:87:26:3e:99:d4:c9:ac:a5:a2:
10:7f:32:ab:a4:42:25:24:fa:f8:55:f6:ed:20:75:
fd:6a:09:94:09:1e:21:0a:97:02:4c:35:53:0b:96:
9a:46:a8:33:42:d5:d5:c2:6e:75:a6:aa:d9:55:ef:
f2:d8:31:da:9e:4e:89:37:4e:4b:f1:34:db:c6:60:
70:b8:d0:db:d2:f6:fe:32:b8:7e:3e:b7:2f:ca:28:
33:77:33:e7:8b:1b:51:eb:18:d2:7b:d6:94:25:a6:
96:f8:68:73:55:c6:19:34:67:d5:09:cb:98:c9:dc:
88:7f:96:9a:73:4b:05:e8:43:0f:cd:08:6d:99:e6:
ba:01:dd:28:4e:00:76:ab:ef:31:b1:a7:94:3a:f1:
74:1c:98:47:a6:ad:16:1c:07:ac:79:6e:03:9c:e2:
dd:39:8a:7f:9f:92:6f:c2:4c:43:3d:e0:2c:06:7a:
82:36:46:9e:f3:63:90:13:9c:23:6f:7e:d0:73:da:
1c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:1A:2F:6F:5A:F3:91:09:1C:2D:0D:B5:38:C7:01:81:99:EA:9F:C1
X509v3 Authority Key Identifier:
keyid:84:A3:99:4C:51:6C:B8:5D:EE:76:E2:14:04:5E:F3:9B:38:F3:9C:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hKOZTFFsuF3uduIUBF7zmzjznPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c9cb0c-9608-4280-a1b8-3b8fa2f522e6/1/7hovb1rzkQkcLQ21OMcBgZnqn8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c9cb0c-9608-4280-a1b8-3b8fa2f522e6/1/hKOZTFFsuF3uduIUBF7zmzjznPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.32.132.0/22
Signature Algorithm: sha256WithRSAEncryption
34:b3:2b:a1:f5:d8:b2:6c:72:45:68:41:05:27:af:02:f5:d1:
c5:63:9e:5f:08:c5:74:8e:a8:67:8b:4b:99:db:5a:b0:fe:d8:
68:bc:29:f8:b3:a5:2c:00:9b:dc:ec:d3:27:92:90:cc:68:bf:
9e:1d:6b:c0:36:d5:f1:9a:22:a3:8c:fb:f7:4a:54:f7:b8:40:
d4:8d:06:a2:88:ed:11:9e:bb:2c:28:65:c3:3a:ad:15:07:d8:
d3:a4:f1:2a:ba:96:5b:64:2b:fe:6a:36:6c:a9:5d:cd:fe:87:
4a:5b:f6:05:52:cf:f8:09:8c:af:4b:ae:93:5e:86:af:0a:96:
e9:9a:e2:cc:5b:bb:0e:54:f8:43:9b:1a:8d:16:1f:1b:bb:27:
ce:d6:2e:33:26:ac:04:b4:70:f0:5a:70:d0:23:e9:a6:f7:6b:
1d:c8:71:4d:0b:8c:3b:25:27:2a:79:37:e5:f3:75:f0:48:9e:
27:2e:c0:66:8d:78:d1:03:ed:22:e1:30:1b:37:d5:fe:8a:f9:
ba:6a:0f:ee:3a:19:4a:32:91:e9:5e:69:d6:6b:fe:ca:16:c2:
f5:29:80:26:f0:10:6e:80:58:45:38:ea:71:19:95:c1:1a:c1:
51:cb:d5:d3:27:04:d3:37:6d:43:b9:93:54:18:e1:08:fd:ef:
cf:f5:f6:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:41 2025 by rpki-client