Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/2JMXwsoJYrb0Q9kMnk-FxxeCF8E.roa
File: 2JMXwsoJYrb0Q9kMnk-FxxeCF8E.roa (raw, json)
Hash identifier: OCQ5NfIbEyKV183D8DIImolNUtHTXf7dtN3QR+hnfDQ=
Subject key identifier: D8:93:17:C2:CA:09:62:B6:F4:43:D9:0C:9E:4F:85:C7:17:82:17:C1
Certificate issuer: /CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Certificate serial: 018D842F19FC4F76A89EC40C6C307755947F
Authority key identifier: 33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/2JMXwsoJYrb0Q9kMnk-FxxeCF8E.roa
Signing time: Wed 07 Feb 2024 15:28:15 +0000
ROA not before: Wed 07 Feb 2024 15:28:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49505
IP address blocks: 94.124.77.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:2f:19:fc:4f:76:a8:9e:c4:0c:6c:30:77:55:94:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Validity
Not Before: Feb 7 15:28:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d89317c2ca0962b6f443d90c9e4f85c7178217c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4f:7c:55:05:37:ef:c2:f5:84:4f:7d:f1:44:
80:59:e5:9f:bf:e0:93:a4:bf:39:82:72:0a:e0:3f:
5f:e1:59:15:f7:0e:18:ea:8a:85:e9:78:2a:f6:d5:
82:2a:25:50:38:6d:9c:de:fb:49:5f:a1:4c:cb:66:
c5:f9:26:a7:8a:81:43:e7:a6:0b:1e:29:63:a5:f8:
89:c2:4d:4b:81:3b:ca:af:ce:16:b6:b2:35:61:c7:
4c:99:ad:6b:38:ee:74:44:dd:56:a9:e1:3f:96:01:
3b:01:64:0b:ca:22:56:ef:46:61:66:c0:03:83:52:
40:cf:5c:fc:e5:cc:ae:e6:e6:a8:f4:2f:96:74:b1:
24:29:72:de:8e:85:c0:f5:a5:5f:f6:db:a8:d8:c3:
4f:dc:f9:ae:8a:6e:19:fb:ee:95:26:60:68:3f:34:
55:d8:d2:74:21:a7:97:c9:eb:cf:38:d5:bc:e4:2c:
fb:1c:26:e5:ac:d3:f6:0a:46:01:66:2c:07:01:08:
b4:e9:49:6a:3b:8c:7f:2c:94:fc:2b:33:bd:a8:a0:
f2:ee:89:71:d0:08:40:32:55:d0:84:47:b3:39:7c:
5e:9e:ec:0a:13:33:3b:ef:fa:7a:50:24:ec:40:d5:
b7:a0:f4:db:e1:8b:e8:d3:f7:5b:50:47:99:11:dd:
61:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:93:17:C2:CA:09:62:B6:F4:43:D9:0C:9E:4F:85:C7:17:82:17:C1
X509v3 Authority Key Identifier:
keyid:33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/2JMXwsoJYrb0Q9kMnk-FxxeCF8E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/M_XOH8N5J8taTmexdsemOzL_bok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.124.77.0/24
Signature Algorithm: sha256WithRSAEncryption
96:2a:99:fb:7d:c2:9d:25:0e:30:2f:45:29:3d:93:d4:47:fc:
f1:82:26:b3:e4:c2:2d:c5:71:c0:f1:91:d0:c9:20:7f:d3:49:
45:53:43:1a:ab:91:26:b4:ae:53:2b:a3:ab:42:e9:a4:23:87:
c6:57:83:40:68:aa:63:3a:78:23:fa:d2:4b:38:2e:f0:fe:b2:
c7:42:a6:a8:3c:fb:f4:7b:25:c0:dd:18:26:75:f3:a6:43:b1:
60:b2:7e:74:5b:d1:83:4d:2f:8a:28:56:c2:c4:43:7b:3c:e6:
4a:4c:bc:a8:e8:32:6c:ab:a7:0b:cc:9f:57:ce:6d:8f:4b:16:
4f:d0:ba:cf:73:7c:cd:da:e3:76:ba:2e:c1:32:76:94:a7:09:
67:78:3d:b1:eb:4b:76:8e:b9:fd:1f:54:fe:5b:a0:db:94:eb:
18:08:11:10:57:cf:8f:8e:e2:6c:99:97:29:ef:27:d3:f9:0a:
6e:16:4a:f2:cf:6b:ee:90:e7:88:c6:04:aa:dc:4b:e5:22:04:
9a:09:59:3c:d6:ed:cd:2c:3d:12:8c:9a:dc:b5:8f:dd:39:aa:
bf:cb:9f:ea:1a:cc:34:7a:70:48:1f:4f:14:aa:85:17:a6:24:
21:44:d9:0e:b0:11:72:b9:f4:e0:bf:cd:aa:b4:48:d1:38:68:
34:51:03:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:09 2024 by rpki-client on console-ams.rpki-client.org