Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/1466d7-d877-47a9-a36a-39d03edc17a4/1/kQKdGwd4utsY0nm96sBXNUrlEHo.roa
File: kQKdGwd4utsY0nm96sBXNUrlEHo.roa (raw, json)
Hash identifier: V1MdrnPmr7oTJjtE+7ZJPZTm1yXqaFLS/7iWxyLW5NQ=
Subject key identifier: 91:02:9D:1B:07:78:BA:DB:18:D2:79:BD:EA:C0:57:35:4A:E5:10:7A
Certificate issuer: /CN=7efd087431db127c15ce75fdd176d3b6f857d7ec
Certificate serial: 018CC64B5E2F4FA7BBED7F54525D72E50224
Authority key identifier: 7E:FD:08:74:31:DB:12:7C:15:CE:75:FD:D1:76:D3:B6:F8:57:D7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fv0IdDHbEnwVznX90XbTtvhX1-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/1466d7-d877-47a9-a36a-39d03edc17a4/1/kQKdGwd4utsY0nm96sBXNUrlEHo.roa
Signing time: Mon 01 Jan 2024 18:31:17 +0000
ROA not before: Mon 01 Jan 2024 18:31:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 200356
IP address blocks: 5.42.197.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c6:4b:5e:2f:4f:a7:bb:ed:7f:54:52:5d:72:e5:02:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7efd087431db127c15ce75fdd176d3b6f857d7ec
Validity
Not Before: Jan 1 18:31:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=91029d1b0778badb18d279bdeac057354ae5107a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:b5:3d:3f:ea:01:39:44:58:4c:ec:85:45:7f:
d2:d8:42:54:fb:fc:f4:9d:e2:c2:0d:a6:42:bb:4a:
6e:20:cf:55:92:d9:8c:d1:2f:c5:d2:a5:ae:0b:95:
ab:78:3d:42:5c:51:29:9b:ea:8b:2c:46:00:5b:cd:
fb:d9:0a:12:6c:cf:73:71:54:1e:c1:c3:b6:1a:c0:
bb:ab:ae:31:f1:7d:f6:c8:ec:e7:62:74:ea:6a:9c:
31:99:ce:25:29:70:9f:2f:ea:85:2a:5f:64:82:7b:
24:cd:6c:25:2c:7f:2d:ca:9f:99:dd:a9:29:a9:0b:
88:38:0e:8c:22:4d:f0:27:a7:27:7b:8d:4b:88:e9:
79:ac:21:e0:4a:08:f6:c4:b3:53:55:da:b6:4f:98:
d1:9a:d8:5a:cf:d3:71:0d:c5:0c:14:80:bc:a2:b7:
99:5b:1d:cf:1c:38:df:a9:35:ac:99:4a:a7:ba:fb:
75:d6:09:8a:33:35:d9:c9:8f:85:3a:56:39:28:8a:
4c:1b:ad:82:e3:0b:26:70:9b:69:9c:15:2c:58:3a:
58:ac:44:1e:b6:e2:67:88:fd:6e:c9:f7:4a:87:f0:
1c:2a:f0:7e:32:ef:76:55:65:85:8a:6f:cc:38:a5:
1c:f3:39:ce:91:d0:d9:a3:bb:5a:d5:0b:e4:4a:b6:
66:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:02:9D:1B:07:78:BA:DB:18:D2:79:BD:EA:C0:57:35:4A:E5:10:7A
X509v3 Authority Key Identifier:
keyid:7E:FD:08:74:31:DB:12:7C:15:CE:75:FD:D1:76:D3:B6:F8:57:D7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fv0IdDHbEnwVznX90XbTtvhX1-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1466d7-d877-47a9-a36a-39d03edc17a4/1/kQKdGwd4utsY0nm96sBXNUrlEHo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/1466d7-d877-47a9-a36a-39d03edc17a4/1/fv0IdDHbEnwVznX90XbTtvhX1-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.197.0/24
Signature Algorithm: sha256WithRSAEncryption
65:07:e4:9c:5f:9e:5d:7d:eb:38:04:c4:ea:a6:1b:6f:68:52:
2e:94:35:8e:d3:de:67:0b:9a:48:74:46:46:9c:0c:e7:3a:22:
1c:f0:ad:0f:1a:7c:38:9e:b3:f3:bf:e9:a0:6c:f3:cd:15:33:
66:66:bb:42:1b:39:69:1f:66:eb:75:47:35:60:f2:b9:73:ef:
b3:9f:2b:db:a0:bd:b3:a9:61:bb:67:81:3a:7e:0c:41:e2:e6:
5a:56:f6:50:cf:2f:8f:79:1e:a2:b6:03:03:ae:cf:e9:8c:a7:
93:c6:0f:38:f6:8d:db:ff:fa:84:c4:08:ac:b1:79:87:e8:03:
97:71:2b:2f:ab:98:16:32:f4:02:0a:94:c1:1a:c3:ea:2c:dd:
2f:60:d4:c7:25:60:9c:da:a0:79:c8:f4:a7:54:2b:5c:c9:f6:
a8:cb:d2:88:4a:87:cc:16:e5:b7:b3:22:e7:15:0d:b4:5a:fe:
de:44:54:75:9c:d8:bc:ff:e0:bf:ab:3a:3c:a7:aa:f4:fc:d8:
c6:ee:7f:76:c7:9f:e6:50:f3:75:cc:d2:f5:73:74:58:76:5b:
b8:84:df:d0:23:d6:f0:aa:88:f0:ac:f1:e1:23:fc:ce:77:16:
17:d6:9e:70:61:4f:5d:e3:24:f9:bb:f1:d5:8b:13:01:b6:e1:
34:57:54:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 14 16:41:13 2024 by rpki-client on console-fra.rpki-client.org