Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1009ac-a0e2-482c-860f-7ebd626cc16b/1/B1OzITdt57kOItDFphlZLKG5soE.roa
File: B1OzITdt57kOItDFphlZLKG5soE.roa (raw, json)
Hash identifier: bbCbRRsDi+ares8kzjr0AOEm1FBc08zCU9ACGqcpmzE=
Subject key identifier: 07:53:B3:21:37:6D:E7:B9:0E:22:D0:C5:A6:19:59:2C:A1:B9:B2:81
Certificate issuer: /CN=744ea51ef8a937ecd84e003a8c4e50d8234b8000
Certificate serial: 018CC5003126F14E59A447F9AAA150D022A2
Authority key identifier: 74:4E:A5:1E:F8:A9:37:EC:D8:4E:00:3A:8C:4E:50:D8:23:4B:80:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dE6lHvipN-zYTgA6jE5Q2CNLgAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1009ac-a0e2-482c-860f-7ebd626cc16b/1/B1OzITdt57kOItDFphlZLKG5soE.roa
Signing time: Mon 01 Jan 2024 12:29:33 +0000
ROA not before: Mon 01 Jan 2024 12:29:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 60475
IP address blocks: 5.178.120.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:31:26:f1:4e:59:a4:47:f9:aa:a1:50:d0:22:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=744ea51ef8a937ecd84e003a8c4e50d8234b8000
Validity
Not Before: Jan 1 12:29:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0753b321376de7b90e22d0c5a619592ca1b9b281
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3b:a0:78:88:13:d1:ba:f6:0b:df:49:93:82:
e4:39:1b:ef:81:8b:29:cb:8a:9f:99:1d:21:1c:03:
c2:22:cd:99:2c:67:d5:26:a4:5f:53:1a:b9:65:05:
db:76:70:d8:07:60:2e:9f:fe:25:f7:86:22:b1:97:
cb:c3:8a:d0:3d:54:8a:ca:d4:60:01:ca:75:42:db:
2c:8d:8b:7a:4f:94:a7:5c:fa:8b:ed:03:47:7a:13:
6c:d7:e8:89:56:91:de:bf:d6:df:c5:ee:80:42:8b:
63:c9:e5:44:68:d0:11:bc:97:05:64:7e:d9:82:1b:
bf:6c:fd:dd:42:08:03:8d:16:76:48:8c:6a:47:da:
7b:7f:a7:b8:fc:2f:c5:97:2e:af:35:0c:8f:93:c4:
f2:ff:c1:a4:90:5f:f3:99:94:f2:3f:d9:dc:9e:2f:
19:9c:38:a2:4d:ba:ad:38:d2:a5:e8:6d:b1:56:df:
b7:6d:01:09:e6:6b:75:f2:5b:d4:8f:3e:e7:7f:cd:
75:f4:d4:1e:fa:0a:9d:ed:5c:55:b7:9c:47:e3:2c:
a5:a4:16:ad:de:4a:68:03:3b:aa:f7:f8:8e:2f:08:
46:7a:06:94:8f:3e:f2:43:22:05:be:3f:ba:f4:72:
60:33:ef:24:f8:f0:4c:0c:c9:a1:09:af:96:09:76:
74:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:53:B3:21:37:6D:E7:B9:0E:22:D0:C5:A6:19:59:2C:A1:B9:B2:81
X509v3 Authority Key Identifier:
keyid:74:4E:A5:1E:F8:A9:37:EC:D8:4E:00:3A:8C:4E:50:D8:23:4B:80:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dE6lHvipN-zYTgA6jE5Q2CNLgAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1009ac-a0e2-482c-860f-7ebd626cc16b/1/B1OzITdt57kOItDFphlZLKG5soE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1009ac-a0e2-482c-860f-7ebd626cc16b/1/dE6lHvipN-zYTgA6jE5Q2CNLgAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.120.0/21
Signature Algorithm: sha256WithRSAEncryption
78:fc:7a:42:bb:c1:3f:b9:f6:9d:7b:4d:45:ca:99:4f:d9:fe:
e5:20:f4:64:27:ae:c7:d5:62:06:d2:97:5d:bf:e4:ee:d5:9a:
de:f0:7a:2b:6f:c6:ef:61:d4:97:33:a0:c6:d4:01:73:bf:12:
9e:c8:b3:61:84:95:1d:98:66:42:ed:09:15:ad:e5:20:42:75:
6e:1d:0e:cd:27:41:53:e3:0f:43:74:53:c3:3c:e3:ac:62:81:
ba:44:fc:8c:a4:45:64:ad:c2:2c:2f:26:63:14:5a:f7:87:1b:
e5:cb:5a:bc:03:2d:f0:12:f7:b3:0b:44:96:ea:65:ed:b9:a3:
37:63:08:2c:14:d4:44:f5:a9:9e:53:0f:a3:d5:d2:10:33:1c:
2c:e2:50:8d:67:9f:11:73:eb:21:2d:66:db:05:12:13:e1:8e:
9d:df:e7:7d:64:a6:69:96:80:a1:9b:7a:c4:9f:fe:5c:6f:2f:
30:f2:57:07:63:ae:c7:d4:cd:1d:82:6f:72:3c:79:01:14:ab:
29:72:22:1d:cc:ee:e5:2d:4e:cd:b4:99:2e:39:82:30:12:b3:
25:ba:97:8f:b8:d1:08:15:4c:ec:d9:c6:1f:b0:82:00:4e:4a:
44:37:4d:b9:f7:78:1f:0d:47:bc:06:28:73:4c:c9:9f:e0:ca:
8c:b6:0c:a6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzFADEm8U5ZpEf5qqFQ0CKiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0NGVhNTFlZjhhOTM3ZWNkODRlMDAzYThjNGU1MGQ4MjM0
YjgwMDAwHhcNMjQwMTAxMTIyOTMzWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNzUzYjMyMTM3NmRlN2I5MGUyMmQwYzVhNjE5NTkyY2ExYjliMjgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqzugeIgT0br2C99Jk4LkORvvgYsp
y4qfmR0hHAPCIs2ZLGfVJqRfUxq5ZQXbdnDYB2Aun/4l94YisZfLw4rQPVSKytRg
Acp1QtssjYt6T5SnXPqL7QNHehNs1+iJVpHev9bfxe6AQotjyeVEaNARvJcFZH7Z
ghu/bP3dQggDjRZ2SIxqR9p7f6e4/C/Fly6vNQyPk8Ty/8GkkF/zmZTyP9ncni8Z
nDiiTbqtONKl6G2xVt+3bQEJ5mt18lvUjz7nf8119NQe+gqd7VxVt5xH4yylpBat
3kpoAzuq9/iOLwhGegaUjz7yQyIFvj+69HJgM+8k+PBMDMmhCa+WCXZ0+wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAdTsyE3bee5DiLQxaYZWSyhubKBMB8GA1UdIwQY
MBaAFHROpR74qTfs2E4AOoxOUNgjS4AAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZEU2bEh2aXBOLXpZVGdBNmpFNVEyQ05MZ0FBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC8xMDA5YWMtYTBlMi00ODJjLTg2MGYt
N2ViZDYyNmNjMTZiLzEvQjFPeklUZHQ1N2tPSXRERnBobFpMS0c1c29FLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC8xMDA5YWMtYTBlMi00ODJjLTg2MGYtN2ViZDYyNmNjMTZi
LzEvZEU2bEh2aXBOLXpZVGdBNmpFNVEyQ05MZ0FBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDBbJ4MA0G
CSqGSIb3DQEBCwUAA4IBAQB4/HpCu8E/ufade01FyplP2f7lIPRkJ67H1WIG0pdd
v+Tu1Zre8Horb8bvYdSXM6DG1AFzvxKeyLNhhJUdmGZC7QkVreUgQnVuHQ7NJ0FT
4w9DdFPDPOOsYoG6RPyMpEVkrcIsLyZjFFr3hxvly1q8Ay3wEvezC0SW6mXtuaM3
YwgsFNRE9ameUw+j1dIQMxws4lCNZ58Rc+shLWbbBRIT4Y6d3+d9ZKZploChm3rE
n/5cby8w8lcHY67H1M0dgm9yPHkBFKspciIdzO7lLU7NtJkuOYIwErMlupePuNEI
FUzs2cYfsIIATkpEN02593gfDUe8BihzTMmf4MqMtgym
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:42 2024 by rpki-client on console-ams.rpki-client.org