Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1009ac-a0e2-482c-860f-7ebd626cc16b/1/L7dw5RxZPlEevFAqX0J5jYM3HqA.roa
File: L7dw5RxZPlEevFAqX0J5jYM3HqA.roa (raw, json)
Hash identifier: AuSPTHwCzd/f2aJnbOrzYD1OHg9E8iSpAKmkcLuVe3I=
Subject key identifier: 2F:B7:70:E5:1C:59:3E:51:1E:BC:50:2A:5F:42:79:8D:83:37:1E:A0
Certificate issuer: /CN=744ea51ef8a937ecd84e003a8c4e50d8234b8000
Certificate serial: 018243AE8027F58A357C5E9982BDE272685C
Authority key identifier: 74:4E:A5:1E:F8:A9:37:EC:D8:4E:00:3A:8C:4E:50:D8:23:4B:80:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dE6lHvipN-zYTgA6jE5Q2CNLgAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1009ac-a0e2-482c-860f-7ebd626cc16b/1/L7dw5RxZPlEevFAqX0J5jYM3HqA.roa
Signing time: Thu 28 Jul 2022 07:21:25 +0000
ROA not before: Thu 28 Jul 2022 07:21:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60475
IP address blocks: 5.178.120.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:43:ae:80:27:f5:8a:35:7c:5e:99:82:bd:e2:72:68:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=744ea51ef8a937ecd84e003a8c4e50d8234b8000
Validity
Not Before: Jul 28 07:21:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fb770e51c593e511ebc502a5f42798d83371ea0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:18:1e:0f:0c:0a:0a:b8:b6:35:34:7f:07:21:
a8:d3:95:05:73:16:92:98:73:66:ce:85:cc:68:a8:
89:ea:55:9a:31:e3:05:2e:44:cc:c0:f9:d7:4c:5d:
b4:05:b3:21:f6:66:12:ff:10:25:e6:e2:ed:75:9e:
9a:b7:80:76:a4:5e:56:24:63:f5:c9:c1:e8:9b:3c:
f1:85:99:d7:72:06:7a:0e:e5:ed:e2:0b:c4:a9:4a:
6f:7e:4b:33:fa:60:59:2d:06:a0:04:16:01:b6:2d:
a7:06:be:5b:31:0f:a4:8e:8f:e5:e9:52:bf:b4:f4:
30:96:29:15:56:df:93:4f:bc:f6:ab:f2:a9:a1:ac:
29:d6:40:53:7b:d6:e4:ac:81:dd:35:f9:26:16:f9:
5d:5a:0c:6c:62:ac:a7:16:39:f8:6e:3b:04:b9:e5:
1c:56:0c:26:14:19:eb:8f:0e:03:f0:5e:40:61:ce:
ee:1d:bc:aa:15:05:e9:fe:df:e9:9a:f7:ef:58:24:
f0:f3:ba:22:3e:e6:7c:45:2d:75:a2:41:dc:c6:c6:
72:1a:d4:d9:b6:41:e5:91:7f:a0:82:90:18:5f:23:
39:11:80:44:01:af:4b:ae:2a:70:a1:08:1b:b9:38:
95:15:df:be:3e:03:d4:a5:8d:e1:d0:0d:b7:d7:92:
e3:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B7:70:E5:1C:59:3E:51:1E:BC:50:2A:5F:42:79:8D:83:37:1E:A0
X509v3 Authority Key Identifier:
keyid:74:4E:A5:1E:F8:A9:37:EC:D8:4E:00:3A:8C:4E:50:D8:23:4B:80:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dE6lHvipN-zYTgA6jE5Q2CNLgAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1009ac-a0e2-482c-860f-7ebd626cc16b/1/L7dw5RxZPlEevFAqX0J5jYM3HqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1009ac-a0e2-482c-860f-7ebd626cc16b/1/dE6lHvipN-zYTgA6jE5Q2CNLgAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.178.120.0/21
Signature Algorithm: sha256WithRSAEncryption
59:8e:f3:21:74:b9:de:7f:69:de:1c:79:c6:98:98:63:da:cd:
b8:af:10:85:38:59:0f:66:f6:23:04:99:f1:4e:f0:aa:20:1b:
31:d3:f7:c6:03:d5:07:6f:40:bb:8e:04:13:52:bb:f5:0c:bf:
9f:9d:6a:c1:c0:fc:48:58:b6:19:9c:3d:64:30:78:50:8f:d5:
43:50:b7:d3:12:8e:d5:b0:80:16:b7:7c:15:4f:12:af:89:55:
e5:3b:22:65:fc:92:5b:91:b5:e7:fa:2c:ad:e1:b2:a3:19:db:
de:25:4c:f0:b3:8b:46:e4:64:af:dd:f3:7c:5b:09:00:44:88:
b9:a9:dc:26:de:eb:7c:5f:fe:ae:f2:22:24:9b:82:11:4d:b3:
c6:3d:8c:90:2b:e3:d6:6c:0b:a7:a4:0d:f5:d5:9d:6f:5d:09:
4b:6c:46:54:50:e8:f1:aa:db:17:11:2a:95:68:35:1f:43:9e:
ea:6a:96:09:a2:7c:e1:c5:7a:a6:08:2a:07:5d:03:3e:96:71:
51:09:e1:52:db:8a:db:6a:d3:83:12:a1:3a:fc:30:8a:7e:8c:
6d:a2:47:00:7a:66:45:4b:9b:a0:9e:21:b0:4e:74:ec:4e:75:
e0:bf:fd:54:94:c1:09:ce:51:cf:0c:02:47:56:4b:22:28:38:
4c:c1:72:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:44:42 2024 by rpki-client on console-ams.rpki-client.org