Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f6f4dc-4447-4702-a24f-e4527fea7a32/1/XCjL1zlppw9TUYP3woXi5sDO8bc.roa
File: XCjL1zlppw9TUYP3woXi5sDO8bc.roa (raw, json)
Hash identifier: JEk5csKcamVtqw1bwwZfik7NMTXEiVaJ25aQZLEvjI8=
Subject key identifier: 5C:28:CB:D7:39:69:A7:0F:53:51:83:F7:C2:85:E2:E6:C0:CE:F1:B7
Certificate issuer: /CN=e5e6702b56f022e44b9c903f90ed7023aa2a6f53
Certificate serial: 139A07
Authority key identifier: E5:E6:70:2B:56:F0:22:E4:4B:9C:90:3F:90:ED:70:23:AA:2A:6F:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5eZwK1bwIuRLnJA_kO1wI6oqb1M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f6f4dc-4447-4702-a24f-e4527fea7a32/1/XCjL1zlppw9TUYP3woXi5sDO8bc.roa
Signing time: Wed 11 May 2022 12:11:28 +0000
ROA not before: Wed 11 May 2022 12:11:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 185.38.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1284615 (0x139a07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5e6702b56f022e44b9c903f90ed7023aa2a6f53
Validity
Not Before: May 11 12:11:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c28cbd73969a70f535183f7c285e2e6c0cef1b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:33:d6:bb:e0:87:46:ca:f7:90:cf:21:12:1c:
9c:d9:56:f9:5d:92:20:01:bb:63:c4:9d:6c:7e:2b:
bd:47:79:ea:93:0b:64:2e:f4:a2:67:0f:89:c5:41:
91:d1:a3:c9:d0:30:03:f8:86:26:53:40:19:13:b6:
30:88:c2:1c:20:62:29:7a:df:23:97:ed:3b:ef:0d:
cc:75:97:a5:3a:3d:57:49:73:05:62:cb:fb:32:59:
81:7b:e2:09:14:6d:2f:e4:eb:52:a0:1c:c6:d2:1f:
85:9c:d5:8e:59:35:1e:42:d2:ca:f8:4a:3a:ea:1d:
45:15:85:b1:a4:1e:cf:c4:5d:71:b3:fd:18:32:85:
d9:e8:df:0a:63:f2:72:a3:36:15:21:d9:27:91:ba:
00:91:00:ea:e9:9b:da:24:eb:6b:37:ed:16:ce:c3:
24:b8:e0:15:b8:32:de:41:a9:48:f7:3c:97:47:0e:
1a:53:c8:64:91:0f:33:8a:97:f1:51:6c:9f:7f:ba:
d9:b2:27:d1:93:68:bb:de:02:c8:38:6e:9e:07:e0:
e1:b3:bb:1d:f4:22:8e:ae:16:6a:b4:3d:a4:f3:0c:
5c:d9:82:7e:e2:1d:fa:ac:53:09:ad:9d:1f:78:48:
22:1d:9c:b9:d6:de:e2:e2:af:8c:8d:6d:d4:c7:16:
97:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:28:CB:D7:39:69:A7:0F:53:51:83:F7:C2:85:E2:E6:C0:CE:F1:B7
X509v3 Authority Key Identifier:
keyid:E5:E6:70:2B:56:F0:22:E4:4B:9C:90:3F:90:ED:70:23:AA:2A:6F:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5eZwK1bwIuRLnJA_kO1wI6oqb1M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f6f4dc-4447-4702-a24f-e4527fea7a32/1/XCjL1zlppw9TUYP3woXi5sDO8bc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f6f4dc-4447-4702-a24f-e4527fea7a32/1/5eZwK1bwIuRLnJA_kO1wI6oqb1M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.38.134.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:17:ea:76:14:a4:35:74:5c:08:d7:e8:3a:fe:04:b8:d1:ca:
86:7c:5e:8b:8b:f6:22:7f:fd:bc:43:9e:ef:d3:92:b0:37:46:
ed:17:a3:25:7f:6b:53:b0:11:fb:07:e2:25:20:e9:93:b0:58:
75:8c:a2:98:21:33:90:9a:1a:1d:78:e7:20:a2:83:e4:10:5a:
03:c4:40:04:27:ef:90:3d:8e:fc:e1:0e:c7:16:4a:10:2d:cb:
e6:ea:a0:cd:01:39:5f:c0:64:dc:df:9e:e4:9e:da:46:b0:c2:
3b:f3:57:36:bc:21:9e:d3:38:0c:17:3e:aa:a2:03:09:bd:e1:
55:fd:e3:b3:03:20:e5:d8:15:2c:12:37:60:9b:34:0c:9e:1c:
e7:ec:86:8e:ed:f3:34:70:68:8c:65:fd:db:fe:68:02:e5:f6:
7f:fb:c2:ac:16:d7:ec:be:19:9a:d6:4f:37:9a:91:24:14:ca:
f5:b5:3d:fc:94:be:5f:34:2d:5f:59:76:b5:d3:f4:43:21:05:
8e:36:97:da:6c:8a:5d:72:33:88:bd:a4:f8:ef:46:fb:a8:27:
51:b6:a3:cf:ab:28:14:0f:2d:66:1f:f7:e3:25:4d:8c:f0:b3:
ab:69:2f:ed:49:71:a4:bc:4e:ed:6e:fe:32:3e:97:94:9f:d8:
7a:20:37:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:05 2023 by rpki-client on console-ams.rpki-client.org