Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/4ed110-6479-42d7-81d9-e876ebf94417/1/XTkjvSLwMViPAmMlo58cxGTqEBY.roa
File: XTkjvSLwMViPAmMlo58cxGTqEBY.roa (raw, json)
Hash identifier: XPpVhrsD0riibu1TyansTisyJAWAGBF+P/LLJe6zdoI=
Subject key identifier: 5D:39:23:BD:22:F0:31:58:8F:02:63:25:A3:9F:1C:C4:64:EA:10:16
Certificate issuer: /CN=44e29bc671f99dd59bda945577139150631b1d71
Certificate serial: 018881563A48725C932F50928321D05F3674
Authority key identifier: 44:E2:9B:C6:71:F9:9D:D5:9B:DA:94:55:77:13:91:50:63:1B:1D:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ROKbxnH5ndWb2pRVdxORUGMbHXE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/4ed110-6479-42d7-81d9-e876ebf94417/1/XTkjvSLwMViPAmMlo58cxGTqEBY.roa
Signing time: Sat 03 Jun 2023 12:58:11 +0000
ROA not before: Sat 03 Jun 2023 12:58:11 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209638
IP address blocks: 213.109.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:81:56:3a:48:72:5c:93:2f:50:92:83:21:d0:5f:36:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44e29bc671f99dd59bda945577139150631b1d71
Validity
Not Before: Jun 3 12:58:11 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5d3923bd22f031588f026325a39f1cc464ea1016
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b5:2a:b6:12:17:68:90:ba:d0:71:c3:60:98:
d7:b8:92:2c:32:e1:a6:1d:ad:75:fe:b2:ba:ca:cf:
bb:2f:85:a4:d7:ac:8e:e6:b6:79:3f:89:24:e5:4f:
09:ab:d0:d8:a7:6c:29:41:09:59:77:f0:b6:cc:8f:
e2:ec:22:a4:44:60:45:4a:1e:09:97:3d:3e:6f:d4:
89:71:e1:81:49:cc:72:4f:7b:63:60:47:44:49:05:
db:20:d9:16:43:2a:e7:e1:3d:9a:94:71:34:f5:4b:
d2:58:7c:1e:6f:89:04:b3:7a:f8:12:d3:62:2a:3b:
7d:65:36:b6:53:79:81:8e:7b:7f:3b:f0:ea:1a:8b:
44:18:89:22:ab:ad:e1:55:fb:8f:fb:36:45:41:30:
c8:59:71:3d:17:82:34:bd:97:ef:ff:e9:ef:d0:d5:
9c:9b:f7:6c:bc:3f:1e:1c:d9:3e:e5:27:66:ad:38:
2f:5e:a3:32:d7:7f:c9:3c:11:88:e4:03:1e:e4:2d:
f4:ad:3f:25:69:ff:aa:fb:b1:53:28:e0:9a:33:6c:
af:a7:ec:5c:fc:4a:8a:25:4d:89:11:6b:e7:63:9c:
f1:7f:a8:42:bb:69:93:66:cd:f3:79:90:2f:38:42:
b9:09:2b:21:78:70:7b:ff:59:9b:41:8c:ac:20:d4:
a3:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:39:23:BD:22:F0:31:58:8F:02:63:25:A3:9F:1C:C4:64:EA:10:16
X509v3 Authority Key Identifier:
keyid:44:E2:9B:C6:71:F9:9D:D5:9B:DA:94:55:77:13:91:50:63:1B:1D:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ROKbxnH5ndWb2pRVdxORUGMbHXE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/4ed110-6479-42d7-81d9-e876ebf94417/1/XTkjvSLwMViPAmMlo58cxGTqEBY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/4ed110-6479-42d7-81d9-e876ebf94417/1/ROKbxnH5ndWb2pRVdxORUGMbHXE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.199.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:67:b9:a8:03:e5:b4:78:cb:48:34:fd:db:16:8a:66:56:61:
53:b8:35:22:02:23:ca:f0:47:b6:0b:5c:8c:1f:85:7d:fd:ce:
44:0d:b7:e4:9c:82:3d:61:40:c9:18:03:b8:a7:2a:9e:b9:43:
9e:e2:04:ad:d1:75:d9:ac:96:82:4d:a9:63:97:67:32:a5:67:
68:de:ab:e4:c7:f1:61:80:3d:6d:de:8f:af:73:78:7d:5c:ac:
3a:39:fe:e8:2f:84:eb:3a:be:82:c9:2b:3e:e8:83:0d:0c:bd:
a9:b9:8d:e3:1e:70:02:4b:69:81:28:19:22:e0:8e:05:4f:fd:
40:08:e7:7a:e1:b0:d5:7c:6c:77:4e:5f:47:86:07:d0:85:e3:
f3:8f:c0:ec:24:77:e8:39:f9:85:ee:01:4c:37:27:75:94:ce:
2e:14:12:92:01:2c:eb:42:1a:a8:bd:a2:6b:aa:38:c4:75:5e:
19:0e:ca:58:3c:6a:41:d6:91:cb:a5:cf:86:e0:e3:62:bb:89:
f5:31:aa:07:79:65:f7:b0:5b:3e:2f:54:de:52:f9:86:33:91:
2b:4c:cf:1c:e1:68:76:af:82:37:3b:7a:f1:d1:4f:e4:83:78:
1a:57:bc:3c:32:df:bc:5d:b7:6b:70:c9:18:58:9b:34:90:49:
cd:d1:fc:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:49 2024 by rpki-client on console-fra.rpki-client.org