Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/ONtHC74OPZMc4B5Lq7MQgwAjlLw.roa
File: ONtHC74OPZMc4B5Lq7MQgwAjlLw.roa (raw, json)
Hash identifier: c5Sg8lM8WKG/3WDYwpyBENIbZu+yC1xb3TchagYCWXs=
Subject key identifier: 38:DB:47:0B:BE:0E:3D:93:1C:E0:1E:4B:AB:B3:10:83:00:23:94:BC
Certificate issuer: /CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Certificate serial: 018D842F185A317EF8B6FEAC760E71C99864
Authority key identifier: 33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/ONtHC74OPZMc4B5Lq7MQgwAjlLw.roa
Signing time: Wed 07 Feb 2024 15:28:15 +0000
ROA not before: Wed 07 Feb 2024 15:28:15 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 42240
IP address blocks: 185.161.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:84:2f:18:5a:31:7e:f8:b6:fe:ac:76:0e:71:c9:98:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33f5ce1fc37927cb5a4e67b176c7a63b32ff6e89
Validity
Not Before: Feb 7 15:28:15 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=38db470bbe0e3d931ce01e4babb31083002394bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:2d:39:55:37:95:7a:21:86:86:21:c0:23:ec:
bd:8c:28:9f:09:51:45:29:cb:79:6f:9e:fe:a9:2f:
6f:8c:c0:3b:34:03:2b:22:b6:a9:44:77:d8:ff:d0:
64:20:af:6e:70:74:94:91:05:31:0e:0c:5d:f4:f2:
61:02:eb:f0:0c:02:d0:7d:b1:61:42:cc:92:bb:63:
64:c9:2a:9c:88:65:cf:91:ee:12:84:e8:a6:8c:47:
43:dc:60:68:58:f3:3b:a1:f6:71:21:cf:d8:df:0a:
15:55:9d:ff:1c:90:ef:f9:f5:c8:ac:4e:f2:2b:8e:
fe:eb:c9:28:db:3e:61:0e:12:14:10:31:4d:17:b5:
ea:57:e6:69:58:e3:34:4d:ce:67:35:0d:9d:c6:56:
92:25:13:92:4d:f6:86:31:58:58:e8:11:9b:2d:d7:
f7:c7:34:cf:8d:af:e6:c5:33:0e:82:0e:85:88:94:
ab:09:7c:d1:e7:ad:41:68:a9:fa:bc:d8:b6:99:a4:
79:c7:68:cb:b2:b0:8e:4c:85:ce:58:5b:8f:be:2e:
1e:6a:b6:d4:9e:e6:be:7f:12:f9:80:b6:4f:d6:59:
54:a6:66:6c:c2:48:2e:03:61:78:5c:13:78:c4:9b:
11:c0:f2:01:10:8a:d4:7a:75:45:d2:4a:1b:ea:99:
53:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:DB:47:0B:BE:0E:3D:93:1C:E0:1E:4B:AB:B3:10:83:00:23:94:BC
X509v3 Authority Key Identifier:
keyid:33:F5:CE:1F:C3:79:27:CB:5A:4E:67:B1:76:C7:A6:3B:32:FF:6E:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M_XOH8N5J8taTmexdsemOzL_bok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/ONtHC74OPZMc4B5Lq7MQgwAjlLw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/3bb9d8-bf54-4e8f-83e5-3ffc01fcbfb6/1/M_XOH8N5J8taTmexdsemOzL_bok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.161.79.0/24
Signature Algorithm: sha256WithRSAEncryption
24:df:32:af:84:67:2a:0c:03:13:b4:70:6d:5f:e5:aa:fb:d3:
8d:98:29:b0:be:e2:6a:c8:8c:56:78:b8:6a:9d:d8:93:99:1f:
1e:f8:54:92:0f:6a:94:98:76:f9:b0:e8:bb:7f:c2:5b:ad:e3:
6a:50:33:9c:6c:d3:6f:46:fc:4c:b6:88:52:47:5d:8e:02:ce:
f6:06:58:63:34:e0:b0:3f:2f:ca:ba:cc:ab:6f:3c:37:e9:a8:
d4:71:86:1b:9f:5f:b6:67:e6:7a:2b:5b:2f:8e:0a:57:ac:05:
36:75:cc:6e:79:19:d7:dc:c3:50:c8:b2:77:7e:5f:1c:83:33:
61:f2:83:fa:70:6e:47:bf:da:25:d3:6c:8d:b0:5d:7d:e8:bb:
e6:a8:87:84:b8:a8:6c:17:2a:15:02:fe:0c:58:87:44:58:3d:
94:23:be:ac:71:4e:38:1e:93:42:59:9f:98:58:51:51:c7:23:
38:fb:65:25:c0:af:99:5b:4e:52:e4:b3:b2:9d:66:4d:74:a1:
af:43:11:76:e1:ed:08:39:47:fc:6e:2a:9c:7d:19:10:32:92:
dc:30:62:ee:fa:24:08:f2:ee:bb:74:9e:10:9c:ac:28:87:35:
10:1f:7a:b7:93:79:53:3b:eb:5d:26:6c:66:49:3f:ec:33:69:
f4:28:69:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:09 2024 by rpki-client on console-ams.rpki-client.org