Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/eKT6MhEeLs8sRgwOYIGWuR5NOl0.roa
File: eKT6MhEeLs8sRgwOYIGWuR5NOl0.roa (raw, json)
Hash identifier: kF0wy+dYOJ9kVKGhQEK6ZOjvXB2hhRXLWrWeDLHXDA4=
Subject key identifier: 78:A4:FA:32:11:1E:2E:CF:2C:46:0C:0E:60:81:96:B9:1E:4D:3A:5D
Certificate issuer: /CN=b53e5447ca064e98ae083556c721d14f2d9a6a52
Certificate serial: 04A373D4
Authority key identifier: B5:3E:54:47:CA:06:4E:98:AE:08:35:56:C7:21:D1:4F:2D:9A:6A:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tT5UR8oGTpiuCDVWxyHRTy2aalI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/eKT6MhEeLs8sRgwOYIGWuR5NOl0.roa
Signing time: Fri 29 Apr 2022 13:46:49 +0000
ROA not before: Fri 29 Apr 2022 13:46:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 2.58.93.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77820884 (0x4a373d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b53e5447ca064e98ae083556c721d14f2d9a6a52
Validity
Not Before: Apr 29 13:46:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=78a4fa32111e2ecf2c460c0e608196b91e4d3a5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b1:99:df:87:5c:38:75:0a:b4:42:f3:76:4b:
75:a6:8f:25:75:d2:4b:8c:87:5c:53:3d:ea:74:9a:
c5:3d:c0:0a:41:70:c9:02:be:37:25:e5:11:9a:77:
11:e8:7c:3e:d0:f3:81:c0:c7:9b:bc:1e:e1:2c:ec:
3c:6a:bf:dc:90:1c:03:e3:39:82:4b:bb:18:54:ea:
26:46:8e:6a:64:21:e5:3e:0f:20:93:2c:6e:fd:24:
ff:9a:b4:ef:6a:92:9c:bc:06:5b:81:82:be:d1:0f:
fb:27:21:9b:69:3e:e0:03:e2:a5:6a:87:7e:56:db:
62:3a:bf:e3:22:6d:82:24:52:dc:cb:0f:7f:ac:a0:
69:cc:ac:52:df:f2:db:b1:32:35:cf:51:4c:24:9f:
30:b6:5c:98:2a:9f:ac:9c:d5:0c:3f:eb:14:02:dd:
5a:4e:c6:b1:00:d4:d1:c3:c7:6e:bf:93:26:4e:7e:
d7:c7:37:b3:da:a2:46:b5:02:9e:4f:6a:d1:e4:e6:
d9:aa:2d:68:23:6a:10:89:83:f4:12:43:69:e2:73:
40:fa:07:a5:66:b3:27:9c:34:40:29:da:af:49:58:
7d:3e:8d:07:6d:ef:14:c9:36:d6:c1:a8:70:ff:dc:
e1:30:5f:e2:0b:d3:36:2d:30:e0:fd:c5:20:8e:c4:
0b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:A4:FA:32:11:1E:2E:CF:2C:46:0C:0E:60:81:96:B9:1E:4D:3A:5D
X509v3 Authority Key Identifier:
keyid:B5:3E:54:47:CA:06:4E:98:AE:08:35:56:C7:21:D1:4F:2D:9A:6A:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tT5UR8oGTpiuCDVWxyHRTy2aalI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/eKT6MhEeLs8sRgwOYIGWuR5NOl0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/cf6c24-ed3d-41ea-98f7-173f2e7a36f1/1/tT5UR8oGTpiuCDVWxyHRTy2aalI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.93.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:e9:8a:12:52:1c:42:24:25:1a:20:83:55:b0:f6:eb:c0:52:
5b:74:b4:f4:37:17:a2:b6:be:ff:d4:bd:b6:44:08:68:5d:48:
4a:55:45:f8:e3:f3:b8:85:c2:d9:63:97:16:7a:96:73:a7:d3:
fc:29:b9:6f:4d:98:b3:ca:48:42:f8:21:79:ad:dd:be:b3:76:
58:ed:b9:a0:14:25:79:80:68:24:c0:b1:4f:02:6f:57:43:6b:
cc:11:72:e1:76:c9:5c:0c:9e:8d:e3:ed:f2:45:e0:30:7f:06:
ac:3c:2b:da:71:e2:75:23:2e:d5:0d:8e:be:e4:db:73:07:da:
37:32:76:29:69:c5:bb:7f:7d:34:c9:14:a4:5d:b1:00:cb:7d:
72:93:0f:ec:0f:2c:15:4d:b3:71:f3:03:d2:bb:4d:a1:37:13:
43:7c:ff:7c:ad:38:3e:df:04:d9:24:b8:e4:fa:d1:ec:5f:38:
41:9f:6e:f9:50:65:85:bd:0c:43:cb:77:9d:29:86:8d:cc:f6:
34:d6:21:61:93:70:6e:5b:8f:29:bc:69:43:a6:3e:a0:1e:48:
55:13:b8:17:2d:cb:63:31:7c:f7:ec:ce:10:a0:bd:1f:ce:96:
dd:86:1c:9e:ac:f9:fd:eb:aa:c4:5a:3c:8c:c1:1b:e8:08:7e:
8d:cf:0d:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:19 2023 by rpki-client on console-ams.rpki-client.org