Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/TSYwiwheLbo_zEXF-E5v-1cmKiQ.roa
File: TSYwiwheLbo_zEXF-E5v-1cmKiQ.roa (raw, json)
Hash identifier: ltskb0dTbn2IU87Hc3nObrmng+EAM+uODX8J1Vl05XM=
Subject key identifier: 4D:26:30:8B:08:5E:2D:BA:3F:CC:45:C5:F8:4E:6F:FB:57:26:2A:24
Certificate issuer: /CN=b53e5447ca064e98ae083556c721d14f2d9a6a52
Certificate serial: 038C58BF
Authority key identifier: B5:3E:54:47:CA:06:4E:98:AE:08:35:56:C7:21:D1:4F:2D:9A:6A:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tT5UR8oGTpiuCDVWxyHRTy2aalI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/TSYwiwheLbo_zEXF-E5v-1cmKiQ.roa
Signing time: Sat 01 Jan 2022 05:04:29 +0000
ROA not before: Sat 01 Jan 2022 05:04:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51559
IP address blocks: 2.58.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59529407 (0x38c58bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53e5447ca064e98ae083556c721d14f2d9a6a52
Validity
Not Before: Jan 1 05:04:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d26308b085e2dba3fcc45c5f84e6ffb57262a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:51:25:9b:71:c3:98:88:c2:4d:da:4c:1e:e8:
81:a2:60:02:8e:53:36:bc:9e:29:f2:f3:24:2a:c2:
9f:8b:65:fa:da:bb:46:74:19:54:e3:64:f7:9a:64:
d8:e6:c3:98:dd:0c:b0:89:e0:3b:eb:db:d6:da:dd:
1b:d4:df:70:e3:24:db:7a:b5:37:5a:73:b2:bf:5d:
4d:e7:66:7f:f0:36:94:71:05:b6:47:57:4c:80:81:
40:da:e8:a0:2d:b0:77:eb:c5:c5:9a:22:a7:62:85:
14:d0:1b:bf:a4:88:33:4a:3d:7e:16:12:c7:df:85:
d4:6b:24:22:8a:22:2b:b2:c2:2c:6d:d9:14:14:95:
1a:96:a9:8e:67:39:70:a9:47:70:05:1a:ea:a6:e1:
6c:d4:6f:5b:f6:75:7f:01:31:9c:76:11:54:41:cf:
37:12:7d:c0:df:7e:90:03:d6:8b:51:11:e5:03:48:
de:29:68:3c:82:7d:bf:58:de:d1:0e:1c:e8:62:58:
84:dc:df:75:6f:3d:90:9a:f2:ef:ff:3d:79:ca:42:
1b:fe:d6:ed:8e:49:c8:a0:95:0e:2f:e8:76:66:16:
b5:50:24:60:c0:3d:43:4e:c4:4b:fa:6e:59:40:8b:
9f:7b:c9:e9:62:4b:c6:e5:b6:63:f5:09:e8:5d:9c:
95:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:26:30:8B:08:5E:2D:BA:3F:CC:45:C5:F8:4E:6F:FB:57:26:2A:24
X509v3 Authority Key Identifier:
keyid:B5:3E:54:47:CA:06:4E:98:AE:08:35:56:C7:21:D1:4F:2D:9A:6A:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tT5UR8oGTpiuCDVWxyHRTy2aalI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/TSYwiwheLbo_zEXF-E5v-1cmKiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/tT5UR8oGTpiuCDVWxyHRTy2aalI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.94.0/24
Signature Algorithm: sha256WithRSAEncryption
10:6e:2c:6d:6d:61:bd:df:cf:01:2a:6f:f1:c4:30:7e:af:5d:
01:b3:80:7f:45:6e:06:af:f8:16:66:45:78:bb:72:bf:c4:7a:
b6:ca:30:53:0f:20:b1:1e:7a:3d:94:41:32:0a:eb:83:ac:f7:
d8:fa:a6:3c:fd:07:8a:ea:48:a1:ba:2e:99:3f:a4:ad:e4:67:
ab:22:1b:13:9f:c2:45:c7:39:af:38:9c:6a:2c:60:fd:a4:8b:
92:1d:84:a2:92:69:a2:bc:09:4b:52:22:8d:d3:18:ad:cf:a0:
b5:8f:5a:3a:9f:3c:74:64:a1:81:f3:74:cd:99:d9:9b:38:70:
6d:ac:45:e0:2a:27:ba:7a:ba:4b:d3:94:0e:44:12:5d:64:c0:
38:a1:67:75:b6:ab:00:c6:a3:1f:0e:1b:9d:43:d6:18:cd:f6:
20:95:30:d1:8e:7c:5f:7d:5c:10:c7:92:29:14:72:82:62:13:
5e:ee:fd:ff:86:2f:5d:8e:3e:dc:5e:ac:d5:03:4d:b2:14:b0:
51:56:f1:1b:83:21:c0:14:cf:a6:69:f1:a6:bf:a3:e4:73:65:
60:89:b9:28:16:85:80:50:99:5a:99:76:c9:0b:fb:ec:1e:a1:
ed:cf:9c:2f:93:a7:e6:49:d7:9c:3d:0d:2d:a6:40:2a:94:91:
62:1f:d5:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:27 2023 by rpki-client on console-fra.rpki-client.org