Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/be3414-817a-4667-9b5b-95f2071bfcad/1/Xm7V0a0FrsLiginmIC7gIQxwsXo.roa
File: Xm7V0a0FrsLiginmIC7gIQxwsXo.roa (raw, json)
Hash identifier: PuQx/E6ycxMoqvbaBEVmhek4yzIwTpcVKC/rCqAT1/o=
Subject key identifier: 5E:6E:D5:D1:AD:05:AE:C2:E2:82:29:E6:20:2E:E0:21:0C:70:B1:7A
Certificate issuer: /CN=e378bdb7682f28fba3a7029b1c98431d664a840c
Certificate serial: 08D3EF26
Authority key identifier: E3:78:BD:B7:68:2F:28:FB:A3:A7:02:9B:1C:98:43:1D:66:4A:84:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/43i9t2gvKPujpwKbHJhDHWZKhAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/be3414-817a-4667-9b5b-95f2071bfcad/1/Xm7V0a0FrsLiginmIC7gIQxwsXo.roa
Signing time: Sat 01 Jan 2022 12:56:50 +0000
ROA not before: Sat 01 Jan 2022 12:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34243
IP address blocks: 109.68.240.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148107046 (0x8d3ef26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e378bdb7682f28fba3a7029b1c98431d664a840c
Validity
Not Before: Jan 1 12:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e6ed5d1ad05aec2e28229e6202ee0210c70b17a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:ae:bb:89:4b:f5:84:c7:a3:79:e9:8e:60:ee:
1a:d8:7b:5c:c9:3e:8e:e4:fc:8f:e6:24:40:e3:21:
b2:e5:a8:01:01:70:fc:77:e0:0f:6a:92:6c:f7:d6:
38:d8:2c:e0:25:53:8b:5f:52:15:f2:1e:16:81:49:
97:2c:45:bc:c0:ff:11:db:02:2d:76:9c:27:c3:c6:
f2:f9:51:f7:25:0a:69:ad:d2:0c:e0:04:a2:55:d3:
99:96:cb:1e:36:88:04:06:8a:1d:3b:11:d6:be:56:
31:aa:e7:85:e9:ce:1b:c6:8c:5e:a9:48:fd:13:51:
d1:45:8a:30:b2:fe:ee:59:64:a3:3a:43:5e:15:77:
6b:3b:28:a9:0d:0a:ea:c0:3a:ff:97:ce:89:c8:eb:
b7:0f:5d:90:53:5b:7e:33:16:e0:25:07:38:c9:a6:
db:07:a1:bc:e5:21:b6:22:73:b9:61:aa:a2:06:bb:
6e:35:9d:8f:04:b5:49:42:d2:69:dd:a6:83:73:52:
7c:83:7c:96:d0:b7:4d:56:d5:3d:c3:3d:ea:56:f1:
ab:98:b4:61:ef:4a:7f:55:d7:9f:31:29:88:9b:2e:
c6:7b:a7:43:86:7c:77:d9:81:ac:4a:12:cc:f7:24:
96:1f:c4:b1:9c:53:4d:a4:e8:19:eb:cd:de:93:16:
f1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:6E:D5:D1:AD:05:AE:C2:E2:82:29:E6:20:2E:E0:21:0C:70:B1:7A
X509v3 Authority Key Identifier:
keyid:E3:78:BD:B7:68:2F:28:FB:A3:A7:02:9B:1C:98:43:1D:66:4A:84:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/43i9t2gvKPujpwKbHJhDHWZKhAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/be3414-817a-4667-9b5b-95f2071bfcad/1/Xm7V0a0FrsLiginmIC7gIQxwsXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/be3414-817a-4667-9b5b-95f2071bfcad/1/43i9t2gvKPujpwKbHJhDHWZKhAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.68.240.0/21
Signature Algorithm: sha256WithRSAEncryption
c3:4c:0e:dd:19:14:1c:c7:cc:6a:04:fb:94:40:f1:03:cd:3c:
ce:76:3c:3a:61:05:01:bc:3e:1b:7e:ee:d7:c3:a8:da:13:e3:
38:3e:35:3c:e2:6a:a4:d7:1d:3a:fb:cc:00:a5:1f:3f:77:b3:
7c:d8:09:19:1d:c6:9b:9f:92:66:b6:45:75:13:33:bc:53:79:
33:a1:9e:c2:4e:6c:78:33:68:66:f1:9d:c6:66:b5:57:77:f5:
98:97:f0:d0:5f:c6:d3:48:0c:5a:4a:3d:24:6f:b3:8b:34:dd:
1c:79:e1:70:56:ad:87:34:86:b2:62:34:9f:4c:fd:e7:c0:b8:
cc:96:3f:56:15:78:b7:db:46:1d:cc:99:db:f0:bb:90:f2:4d:
a6:9f:93:41:6b:39:c2:f4:85:3f:95:03:8d:8f:21:2d:ab:fb:
1d:c4:b3:bc:d6:cb:a1:6b:58:de:17:3f:c1:6c:ed:d0:37:cd:
af:39:3d:00:4f:37:68:f3:ac:7a:73:b7:f1:fb:e2:72:77:5a:
f0:28:88:5e:6d:8f:8c:83:c0:d3:32:9e:1a:23:31:f4:0c:f5:
a8:f1:65:8a:06:c5:14:83:9f:64:0a:74:a7:7c:de:c3:c3:48:
9c:c8:e5:55:ff:70:39:e7:3c:81:96:b8:d4:10:b9:9f:c5:50:
b2:82:83:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:41 2024 by rpki-client on console-ams.rpki-client.org