Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/09d340-f3ea-4aef-b7d2-b1276e45c788/1/NMiMFjicC1uFUHAE44WLIVYmN7E.roa
File: NMiMFjicC1uFUHAE44WLIVYmN7E.roa (raw, json)
Hash identifier: x/ZBuq17rsoYgbBD6C0XvqSH6tCLX5fF4ahzee25GMU=
Subject key identifier: 34:C8:8C:16:38:9C:0B:5B:85:50:70:04:E3:85:8B:21:56:26:37:B1
Certificate issuer: /CN=29337fd8db864bf3ebfcbe799d8af9a230449b1a
Certificate serial: 01856DC1BADF0468B4A8C8A4E14BD97703DD
Authority key identifier: 29:33:7F:D8:DB:86:4B:F3:EB:FC:BE:79:9D:8A:F9:A2:30:44:9B:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KTN_2NuGS_Pr_L55nYr5ojBEmxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/09d340-f3ea-4aef-b7d2-b1276e45c788/1/NMiMFjicC1uFUHAE44WLIVYmN7E.roa
Signing time: Sun 01 Jan 2023 14:34:50 +0000
ROA not before: Sun 01 Jan 2023 14:34:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 210697
IP address blocks: 213.5.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:c1:ba:df:04:68:b4:a8:c8:a4:e1:4b:d9:77:03:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29337fd8db864bf3ebfcbe799d8af9a230449b1a
Validity
Not Before: Jan 1 14:34:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34c88c16389c0b5b85507004e3858b21562637b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:14:06:2d:98:4e:f2:84:31:30:9c:f1:12:e5:
16:e5:e6:c9:09:65:7c:cf:18:4e:c7:9d:fa:13:93:
74:9e:de:91:ee:2a:d2:8b:b7:52:03:88:d4:81:ef:
89:c5:8d:70:76:2f:48:2f:40:c2:65:13:b3:38:a3:
4a:6f:d1:b4:d7:2d:3e:47:74:70:21:b7:76:1d:05:
cd:e9:2b:48:85:15:9f:00:9b:20:a8:cb:f4:bb:51:
ec:01:89:38:56:87:b7:b3:fa:e4:b0:b6:b9:e3:30:
dc:10:98:b4:e0:fd:34:89:20:00:bd:a2:c0:5f:50:
84:fe:3b:3f:58:91:4d:09:49:cc:5d:5d:53:0a:e3:
93:42:45:64:17:12:37:6d:26:3c:af:a1:b4:87:39:
56:e7:d7:fb:d0:c6:19:a2:17:8f:5f:26:f2:74:4b:
70:2a:77:75:ad:4f:0c:13:b0:15:52:c7:94:9e:52:
9e:fd:59:24:68:ac:83:04:fe:0b:cc:48:3a:9b:82:
f8:86:18:79:38:81:ed:ed:aa:8c:c1:71:0b:25:92:
c5:e3:64:a8:0c:e1:aa:d2:b2:14:cb:78:94:e2:d7:
6f:b8:ea:e7:de:02:d1:d6:63:c4:07:75:fe:66:b9:
3e:c5:62:a0:a9:e1:3e:94:11:9c:8a:40:93:7b:0b:
84:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:C8:8C:16:38:9C:0B:5B:85:50:70:04:E3:85:8B:21:56:26:37:B1
X509v3 Authority Key Identifier:
keyid:29:33:7F:D8:DB:86:4B:F3:EB:FC:BE:79:9D:8A:F9:A2:30:44:9B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTN_2NuGS_Pr_L55nYr5ojBEmxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/09d340-f3ea-4aef-b7d2-b1276e45c788/1/NMiMFjicC1uFUHAE44WLIVYmN7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/09d340-f3ea-4aef-b7d2-b1276e45c788/1/KTN_2NuGS_Pr_L55nYr5ojBEmxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.5.128.0/24
Signature Algorithm: sha256WithRSAEncryption
08:d8:79:64:59:ba:dd:7b:f2:fd:4e:03:13:82:c8:71:54:c0:
82:e4:d5:af:d6:0f:a8:dc:bd:e9:28:f5:bf:3f:14:e4:f2:56:
48:0c:d6:e7:6e:7c:5e:b6:a4:b9:64:21:dc:89:3f:c4:bf:23:
d4:84:ac:65:6e:95:83:67:3c:ca:a5:d1:94:58:f2:44:82:b3:
82:ba:17:56:5d:cc:04:87:c3:74:bf:7f:95:5f:a1:bb:19:57:
75:6f:eb:f3:73:36:bb:2b:c3:71:65:00:cb:ef:b9:21:f2:1b:
44:e7:ef:f5:8d:9d:b4:bc:4c:ff:76:fc:6a:d2:ac:19:d5:12:
3c:b3:77:37:d0:c6:ba:e9:23:db:fe:4b:10:c8:9f:3b:a6:3e:
6f:75:92:2b:9c:79:ef:83:dc:57:68:a1:34:ce:73:dc:d4:66:
24:00:bc:f1:11:f1:59:d9:f1:e9:56:de:85:56:40:97:c6:b4:
b3:49:5d:62:65:db:62:25:be:15:b8:6f:5f:3c:13:12:45:36:
09:d6:75:de:0d:dd:72:b4:c4:7d:87:be:89:57:77:a6:99:33:
90:d2:fd:ad:bf:b8:6f:cf:cb:cb:f6:0a:b8:78:dd:84:2f:1d:
9a:fd:08:52:9e:5b:cf:31:1f:47:93:71:92:16:f2:ac:83:52:
0c:fb:15:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:06 2025 by rpki-client