Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/qUJN5WuG1h-PVUTNIkXF7mKqQdo.roa
File: qUJN5WuG1h-PVUTNIkXF7mKqQdo.roa (raw, json)
Hash identifier: BwNe4aZnangZ5VHqxRxFXtyT4DrG1ygfs4Mi//bWuZk=
Subject key identifier: A9:42:4D:E5:6B:86:D6:1F:8F:55:44:CD:22:45:C5:EE:62:AA:41:DA
Certificate issuer: /CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Certificate serial: 30DEBCE3
Authority key identifier: 6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/qUJN5WuG1h-PVUTNIkXF7mKqQdo.roa
Signing time: Sat 01 Jan 2022 10:55:35 +0000
ROA not before: Sat 01 Jan 2022 10:55:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31287
IP address blocks: 77.78.151.0/24 maxlen: 24
109.121.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 819903715 (0x30debce3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2e9b3a4d7b24b3a6aa14f3eda3f14fa29c76b
Validity
Not Before: Jan 1 10:55:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a9424de56b86d61f8f5544cd2245c5ee62aa41da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:75:e8:6f:7d:54:6d:be:44:97:41:e5:94:c8:
1d:3f:6d:02:17:5d:84:3c:62:91:de:c1:4c:a9:c5:
bf:7f:c9:ca:f9:8d:7e:85:66:17:e3:35:0e:ca:fd:
bd:55:88:50:15:17:7e:8f:b2:10:ca:04:0d:fa:7d:
36:b9:4e:a1:24:ba:74:ec:8c:ba:d5:fc:78:9d:ea:
5f:3d:aa:cb:8c:fe:fd:9a:cc:f7:86:2b:be:aa:a8:
8d:da:35:d4:db:c0:f1:35:f1:a1:e7:b9:4a:ec:af:
be:6b:78:18:8a:cd:89:22:79:7e:98:d2:58:e6:3c:
b2:f2:ca:af:bf:14:00:fa:26:58:07:32:23:98:c4:
33:ef:44:10:cb:bc:23:5b:e8:30:8f:2a:66:15:b6:
ea:ab:4b:b8:13:2d:51:4c:48:64:ed:86:87:14:9d:
ae:30:f0:e9:e8:53:22:62:3f:6e:d4:1b:d2:e3:e3:
43:d5:e9:c8:75:ec:3d:83:9d:b5:5b:20:d9:0f:17:
ce:6e:7f:ac:81:65:7f:06:dd:95:df:98:0a:0e:09:
4e:14:bd:04:24:b5:85:3a:8d:70:2d:f1:f6:c4:ce:
29:95:17:d5:a9:c1:41:58:f9:be:31:ff:00:2e:26:
b2:72:71:d9:16:64:d4:87:79:59:7c:c7:5c:2b:a6:
90:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:42:4D:E5:6B:86:D6:1F:8F:55:44:CD:22:45:C5:EE:62:AA:41:DA
X509v3 Authority Key Identifier:
keyid:6D:D2:E9:B3:A4:D7:B2:4B:3A:6A:A1:4F:3E:DA:3F:14:FA:29:C7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLps6TXsks6aqFPPto_FPopx2s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/qUJN5WuG1h-PVUTNIkXF7mKqQdo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/cd9bc8-11c5-4f5a-bb25-45ae7b3dae68/1/bdLps6TXsks6aqFPPto_FPopx2s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.78.151.0/24
109.121.153.0/24
Signature Algorithm: sha256WithRSAEncryption
66:13:7d:92:f1:4b:51:a8:5f:b0:29:b7:e7:f7:27:03:e0:97:
45:e4:9f:58:c6:56:d3:e1:7f:a8:e6:c3:34:95:e8:a9:f3:44:
74:05:cb:4e:d7:06:d3:39:4d:a9:d0:1d:db:e0:1d:62:c8:9f:
bd:b3:6f:dc:4f:17:4c:5e:69:c3:ef:74:74:90:3a:e7:86:ef:
60:69:45:d8:1d:3e:e8:72:92:ac:1d:2c:4c:ef:cf:f6:39:ee:
7d:34:35:d0:1f:ac:48:75:27:30:13:a8:88:b6:dc:09:65:d1:
76:7f:09:c8:87:83:18:1a:90:09:72:4c:eb:7e:5f:4a:73:c0:
b0:6d:2a:0f:dc:cf:28:b3:a5:3f:7d:77:32:bd:51:62:d9:be:
a0:6f:af:e5:e2:ea:cc:1d:6c:bf:79:8e:9a:3c:20:25:bf:ce:
66:6b:31:f9:c6:45:47:ef:b5:f1:27:7b:c6:04:48:e8:b9:a5:
d7:46:59:ed:f5:a1:e4:2b:99:b6:83:90:07:b3:53:e6:9d:09:
9c:3a:b4:bc:fe:17:cb:5e:e2:87:0e:83:ea:b4:2a:5d:3f:38:
c0:3e:0e:10:95:78:9b:ba:e7:6c:d5:b8:b7:cc:63:b9:b2:2c:
1b:51:a9:9a:bc:7c:74:c7:a2:47:01:fc:34:84:38:c5:93:76:
c0:f7:59:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:26 2023 by rpki-client on console-ams.rpki-client.org