Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/kvl5oml-JqkAVr400-qoiZ5nZ-w.roa
File: kvl5oml-JqkAVr400-qoiZ5nZ-w.roa (raw, json)
Hash identifier: lY0K85l3q/+DAm4QNj7782BU4/PFVtlJa4u7ySK10oM=
Subject key identifier: 92:F9:79:A2:69:7E:26:A9:00:56:BE:34:D3:EA:A8:89:9E:67:67:EC
Certificate issuer: /CN=f6137c597d1e30cb75618e51f42b7f79ed5ffc88
Certificate serial: 019007935551CAE844286ED615CEE82696DB
Authority key identifier: F6:13:7C:59:7D:1E:30:CB:75:61:8E:51:F4:2B:7F:79:ED:5F:FC:88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9hN8WX0eMMt1YY5R9Ct_ee1f_Ig.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/kvl5oml-JqkAVr400-qoiZ5nZ-w.roa
Signing time: Tue 11 Jun 2024 13:53:34 +0000
ROA not before: Tue 11 Jun 2024 13:53:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 62300
IP address blocks: 192.144.28.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:07:93:55:51:ca:e8:44:28:6e:d6:15:ce:e8:26:96:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f6137c597d1e30cb75618e51f42b7f79ed5ffc88
Validity
Not Before: Jun 11 13:53:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=92f979a2697e26a90056be34d3eaa8899e6767ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ae:e8:2a:b4:ec:a3:ca:84:7f:85:8c:6c:a9:
14:6a:ba:fb:84:7e:af:c5:23:14:9b:69:dd:87:eb:
bc:59:ca:c4:6c:08:55:52:32:30:f4:d9:86:7f:55:
e0:4b:df:55:bb:ed:6f:a2:79:74:ca:6d:26:0f:76:
b1:4e:12:42:b2:60:65:c4:9e:ff:44:65:e9:0f:fe:
5b:34:50:fb:ee:ce:28:4e:45:56:90:74:cd:04:9e:
9c:b8:6e:4d:09:46:0c:de:0a:7a:29:68:23:25:99:
f4:cf:d5:3e:48:e0:a4:f3:f2:9b:59:7e:e5:47:b9:
b7:ea:11:ef:b1:69:df:4a:73:61:17:c0:7a:85:0d:
b5:29:de:e3:c4:b8:45:35:36:74:93:51:e0:e8:7b:
bf:15:6b:c3:18:42:3c:34:ea:f2:cd:ff:8b:17:47:
e5:ed:d3:27:89:2f:8d:dc:ac:86:23:e1:bb:15:41:
0a:ed:35:06:24:08:84:21:1a:e6:9e:0d:30:f4:3b:
0e:ab:df:67:7a:64:ee:7a:63:39:c2:cb:cf:5a:7a:
0e:2c:c5:48:39:0f:eb:45:6a:3c:bf:2d:3b:7f:36:
e6:de:87:50:c0:bd:58:3b:08:ef:fd:a9:3c:31:5b:
e4:da:60:c6:eb:2e:88:74:a3:a6:32:c3:d7:b3:8e:
fd:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:F9:79:A2:69:7E:26:A9:00:56:BE:34:D3:EA:A8:89:9E:67:67:EC
X509v3 Authority Key Identifier:
keyid:F6:13:7C:59:7D:1E:30:CB:75:61:8E:51:F4:2B:7F:79:ED:5F:FC:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9hN8WX0eMMt1YY5R9Ct_ee1f_Ig.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/kvl5oml-JqkAVr400-qoiZ5nZ-w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/0f1f9f-5a51-4bd6-bf30-39a24388a5e8/1/9hN8WX0eMMt1YY5R9Ct_ee1f_Ig.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.144.28.0/24
Signature Algorithm: sha256WithRSAEncryption
73:5b:fb:aa:c2:3e:27:8e:83:e9:71:85:56:d4:47:00:6c:26:
15:af:72:fd:03:be:4a:c3:44:f6:55:d8:10:82:d3:2f:e3:9e:
26:cf:f3:e8:1c:82:48:91:6f:99:2a:a9:54:8c:31:65:27:c4:
b8:de:5e:5a:cd:ae:d1:c7:68:68:81:72:a3:75:b2:97:03:91:
90:c6:23:9c:bb:51:da:df:6c:38:51:ab:b5:a1:ec:4d:96:c5:
e8:13:3e:c5:ce:0f:6f:e5:84:0a:23:7e:31:4d:47:68:ee:6b:
16:34:f5:6a:e5:76:2e:b3:c1:c1:f4:7f:98:51:b9:1a:b2:5f:
8b:95:e4:a0:fd:86:e9:61:5c:9e:f6:f6:7d:64:38:7a:b1:29:
83:70:ad:68:e8:04:d8:15:ed:36:e8:ca:b7:0e:df:a8:31:ee:
2e:ce:62:ba:f7:2a:75:ff:e0:67:58:00:ce:d4:88:e5:3a:e1:
18:78:6e:1c:11:8e:a0:58:e7:d0:af:78:84:d0:0c:fe:53:2b:
f3:c1:63:2f:93:1c:c4:61:94:b3:d0:41:18:f0:7d:cb:dc:8a:
53:e3:21:92:69:73:f1:f9:88:89:42:f2:93:a9:5d:e1:cf:c9:
58:91:7a:ea:33:61:a8:ee:05:d0:80:43:26:7f:71:d5:ce:9f:
7a:09:39:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:00:33 2025 by rpki-client