Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/XtOU38O-akJg5zKOLDMCGkrC6Hk.roa
File: XtOU38O-akJg5zKOLDMCGkrC6Hk.roa (raw, json)
Hash identifier: EdYtxkSZuRkRBOjNzg11ww3vg6rPUT0TI0s5sFoLstA=
Subject key identifier: 5E:D3:94:DF:C3:BE:6A:42:60:E7:32:8E:2C:33:02:1A:4A:C2:E8:79
Certificate issuer: /CN=b53e5447ca064e98ae083556c721d14f2d9a6a52
Certificate serial: 047D5BA1
Authority key identifier: B5:3E:54:47:CA:06:4E:98:AE:08:35:56:C7:21:D1:4F:2D:9A:6A:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tT5UR8oGTpiuCDVWxyHRTy2aalI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/XtOU38O-akJg5zKOLDMCGkrC6Hk.roa
Signing time: Thu 14 Apr 2022 06:18:57 +0000
ROA not before: Thu 14 Apr 2022 06:18:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 2.58.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75324321 (0x47d5ba1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53e5447ca064e98ae083556c721d14f2d9a6a52
Validity
Not Before: Apr 14 06:18:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ed394dfc3be6a4260e7328e2c33021a4ac2e879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cc:fe:3f:3e:61:86:4d:1e:8e:6e:ad:4a:a1:
b4:e2:79:f8:7d:ca:cc:ed:d6:45:9b:b0:c2:2c:af:
7c:aa:26:50:e0:cc:81:a9:c0:ad:03:cb:5e:34:65:
3a:c5:b6:66:77:6a:91:5b:cc:14:93:8d:2d:48:4a:
67:0b:ef:24:03:82:b6:ec:6e:77:d9:25:fc:3b:5d:
1c:f2:12:f6:83:6c:49:12:6a:d7:b7:68:6d:c1:91:
f8:5d:af:2a:52:e0:a9:96:d4:d3:65:1b:e4:b7:a6:
29:ca:36:92:84:c2:c4:cd:f8:b2:01:e0:64:34:ea:
00:54:bb:de:5b:d4:91:92:c7:35:a2:9d:93:09:de:
51:05:4f:62:cc:b6:66:8d:6c:b1:44:69:9e:4e:b4:
7d:b7:c9:69:68:06:5b:0e:60:88:53:31:67:07:16:
01:7c:db:1e:16:c5:44:ea:9c:cd:5b:90:99:6f:75:
90:f0:8e:0c:c5:df:87:3b:f1:84:ef:5e:60:81:19:
cd:c4:fb:c0:02:a7:d7:15:41:6e:1c:cd:ea:91:12:
4a:a9:83:8a:f8:6d:4b:2b:b6:fa:63:6e:c3:48:48:
60:66:28:d0:73:68:e8:cd:57:6c:49:55:66:1e:03:
ed:bc:9f:36:bb:ec:14:53:b0:8b:ff:70:c5:9b:36:
e8:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:D3:94:DF:C3:BE:6A:42:60:E7:32:8E:2C:33:02:1A:4A:C2:E8:79
X509v3 Authority Key Identifier:
keyid:B5:3E:54:47:CA:06:4E:98:AE:08:35:56:C7:21:D1:4F:2D:9A:6A:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tT5UR8oGTpiuCDVWxyHRTy2aalI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/XtOU38O-akJg5zKOLDMCGkrC6Hk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/tT5UR8oGTpiuCDVWxyHRTy2aalI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.93.0/24
Signature Algorithm: sha256WithRSAEncryption
74:05:5a:63:1e:c8:6e:f1:86:b2:9e:ee:91:08:a8:87:de:86:
21:75:2c:44:19:38:fa:7d:69:5a:14:e0:c2:49:aa:a9:b1:ca:
86:65:96:a5:81:87:18:8c:3b:b9:1a:49:03:fc:b5:d7:3f:5f:
2e:44:ea:5f:8d:2d:2d:fa:48:c0:65:36:e1:61:79:3a:f6:bb:
18:64:af:df:3a:8f:a7:41:b3:7b:97:3e:8d:47:1c:c1:6c:da:
3a:32:f4:99:24:f3:6c:00:f9:b3:d5:03:e9:8a:d0:d8:4c:59:
d7:82:5a:a4:80:01:0b:67:41:0e:a8:0f:10:61:98:a5:d4:6a:
e7:16:c6:98:dd:b0:51:6e:2e:5c:35:df:c1:b4:59:2e:e9:ea:
8c:94:00:25:61:f5:c4:13:d9:a3:ac:2d:b7:e7:19:b6:90:f8:
f8:40:0b:f9:a2:d6:c6:ee:27:f3:06:e4:76:1f:1d:0e:3c:9a:
da:11:2d:27:e1:11:2e:b9:30:e3:47:3d:68:89:37:96:fe:86:
bd:ac:8f:16:87:73:8d:a7:3c:c4:6b:8b:80:d3:9d:bf:2a:0f:
47:43:02:43:08:8e:8d:ac:89:a4:d9:cb:79:06:8c:cf:a3:6c:
b4:99:e9:dd:61:20:e7:b9:5c:0d:c6:d4:f3:5f:a5:ac:7d:c2:
c3:a6:b2:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:27 2023 by rpki-client on console-fra.rpki-client.org