Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/eea21a-c9d3-4c6d-9a52-9b2c6b08a84a/1/jehtoVA2mZq3kR3rysZfjxrGE3o.roa
File: jehtoVA2mZq3kR3rysZfjxrGE3o.roa (raw, json)
Hash identifier: mMozOzyVnWLIJmoKXUztJBmV8Axxyfxowsx1nr0niBI=
Subject key identifier: 8D:E8:6D:A1:50:36:99:9A:B7:91:1D:EB:CA:C6:5F:8F:1A:C6:13:7A
Certificate issuer: /CN=40ef5849930cc9dd74211fb37e24118249a1fc40
Certificate serial: 018D66E2316AB4BD8FA9584D5DA06A99355E
Authority key identifier: 40:EF:58:49:93:0C:C9:DD:74:21:1F:B3:7E:24:11:82:49:A1:FC:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QO9YSZMMyd10IR-zfiQRgkmh_EA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/eea21a-c9d3-4c6d-9a52-9b2c6b08a84a/1/jehtoVA2mZq3kR3rysZfjxrGE3o.roa
Signing time: Thu 01 Feb 2024 22:55:16 +0000
ROA not before: Thu 01 Feb 2024 22:55:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 13768
IP address blocks: 5.44.28.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:66:e2:31:6a:b4:bd:8f:a9:58:4d:5d:a0:6a:99:35:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40ef5849930cc9dd74211fb37e24118249a1fc40
Validity
Not Before: Feb 1 22:55:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=8de86da15036999ab7911debcac65f8f1ac6137a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:aa:f7:d2:92:82:30:5e:25:d0:c8:a9:32:d7:
f4:d0:c4:77:b7:9e:b4:f4:e3:77:d6:e9:fb:ee:05:
77:e9:66:1a:a1:3b:1d:a0:71:3f:53:67:d2:86:4b:
6d:f6:7e:41:b3:5f:11:98:96:03:e7:75:48:f8:e3:
98:04:80:88:3d:ab:e7:50:1b:97:45:35:16:ee:c1:
d3:da:aa:41:19:30:54:09:a6:45:e1:44:8d:de:fd:
75:e5:d2:13:ce:71:98:49:83:3f:ae:9e:fe:66:8d:
ac:5e:d8:ad:00:7c:36:37:32:01:a3:81:6b:ec:f1:
c5:fb:c9:52:62:bf:75:2c:2c:40:d6:94:e3:de:78:
d7:b9:47:68:d1:56:5d:7d:b3:e1:77:4d:25:70:ea:
72:8a:a5:0f:93:a2:ab:80:3d:4f:9e:9b:1a:6d:65:
2b:d3:8c:5c:a4:8f:00:4c:b5:8a:92:3a:ee:06:63:
2d:c4:7e:a5:7c:34:48:48:18:e5:96:b2:86:67:35:
dd:45:ed:c2:2d:ca:a6:ef:cc:2e:2d:b3:a9:ba:bd:
5e:2d:22:ab:c5:8c:0b:cc:ee:da:4c:80:b3:d4:04:
e4:6e:27:32:f1:c4:08:70:e6:a5:df:83:d9:36:3c:
37:92:24:ef:85:45:c5:ed:6f:1e:77:cf:f0:9c:8c:
41:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:E8:6D:A1:50:36:99:9A:B7:91:1D:EB:CA:C6:5F:8F:1A:C6:13:7A
X509v3 Authority Key Identifier:
keyid:40:EF:58:49:93:0C:C9:DD:74:21:1F:B3:7E:24:11:82:49:A1:FC:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QO9YSZMMyd10IR-zfiQRgkmh_EA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/eea21a-c9d3-4c6d-9a52-9b2c6b08a84a/1/jehtoVA2mZq3kR3rysZfjxrGE3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/eea21a-c9d3-4c6d-9a52-9b2c6b08a84a/1/QO9YSZMMyd10IR-zfiQRgkmh_EA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.28.0/22
Signature Algorithm: sha256WithRSAEncryption
34:d7:4e:21:1d:1b:48:ce:6e:fb:4f:1d:4c:44:14:72:8a:c5:
e2:d4:82:38:95:a4:8d:49:7d:76:a0:9d:ef:a6:42:76:3b:0c:
fe:02:b3:69:f0:ea:98:fa:31:6d:9d:f5:f5:54:3d:fa:9a:80:
8c:f5:9b:e2:6b:ef:cb:cf:b4:c1:5e:ad:98:6a:ce:3f:63:44:
00:3d:77:83:4e:94:24:57:88:a1:92:15:02:ab:fb:0d:aa:14:
a4:79:73:21:02:7e:e4:6c:7b:f7:f5:64:89:e7:20:91:b5:d4:
73:5a:28:9e:36:5a:03:c6:f4:ca:0b:5d:a2:8c:36:9c:d0:72:
be:d1:37:8f:f6:73:62:c3:57:7c:3e:c9:c4:0d:06:4e:f0:91:
7e:1a:28:c3:56:b2:51:18:08:33:8d:86:e8:b6:8d:f0:bc:02:
b8:1c:7a:c0:9e:79:19:28:3a:ec:f1:4c:44:59:15:af:b1:a3:
70:6e:af:4b:65:32:56:f2:ee:66:dd:bb:bc:0d:a2:f6:9b:67:
19:a5:f9:c2:e0:5e:13:c9:ea:c6:af:cc:e6:0f:37:15:91:18:
66:bb:ff:f9:d5:4c:2d:2c:b4:64:c8:ff:8f:44:fb:86:fa:b3:
41:3c:d2:a8:74:5a:0b:62:e6:74:a8:d1:96:1d:b0:bf:84:62:
1f:77:67:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:34:45 2025 by rpki-client