Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/4c0417-dcb0-4add-a265-d8da1fe4b080/1/2NObW5VGSlzYcasrYrPZtig282Q.roa
File: 2NObW5VGSlzYcasrYrPZtig282Q.roa (raw, json)
Hash identifier: jvQHVAuaZWF1IXUovly7TsCtvwRQ+OlFzRy9K14zk1Q=
Subject key identifier: D8:D3:9B:5B:95:46:4A:5C:D8:71:AB:2B:62:B3:D9:B6:28:36:F3:64
Certificate issuer: /CN=298074ad430476574d86d2d56c54f76be2a86a17
Certificate serial: 01857355EF00E981DDFC9CACFFA216623CFF
Authority key identifier: 29:80:74:AD:43:04:76:57:4D:86:D2:D5:6C:54:F7:6B:E2:A8:6A:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYB0rUMEdldNhtLVbFT3a-Koahc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/4c0417-dcb0-4add-a265-d8da1fe4b080/1/2NObW5VGSlzYcasrYrPZtig282Q.roa
Signing time: Mon 02 Jan 2023 16:34:49 +0000
ROA not before: Mon 02 Jan 2023 16:34:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200845
IP address blocks: 2.58.118.0/24 maxlen: 24
2.58.117.0/24 maxlen: 24
2.58.116.0/24 maxlen: 24
2.58.119.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:55:ef:00:e9:81:dd:fc:9c:ac:ff:a2:16:62:3c:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=298074ad430476574d86d2d56c54f76be2a86a17
Validity
Not Before: Jan 2 16:34:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d8d39b5b95464a5cd871ab2b62b3d9b62836f364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f6:3c:fc:3a:dd:74:a8:6b:53:34:e3:8a:51:
d8:64:39:ac:f4:7e:f4:c0:4c:6a:95:91:89:be:75:
05:68:0c:74:3f:97:15:ac:8c:14:64:d7:c8:57:f8:
67:48:47:b2:47:68:c9:fe:65:a9:71:9c:36:90:16:
77:d7:93:e6:f6:9b:97:52:4a:32:55:40:c8:f7:58:
9c:15:26:22:5c:7f:2e:87:fb:a3:45:5b:62:47:01:
be:94:2d:79:e3:af:3c:c4:a6:50:a8:8b:ba:5f:97:
b1:1e:44:e6:14:f9:73:10:e2:1f:00:b9:d3:39:86:
58:71:31:4e:c5:20:66:0e:78:4c:ce:15:6e:47:f5:
bb:66:dc:bd:6d:64:9d:1e:19:9f:8f:78:ea:60:81:
46:e2:65:4d:9e:cf:f4:32:ed:fb:59:eb:35:e9:e3:
e1:34:ca:fc:dd:a3:00:8f:f6:50:9f:dd:05:1d:ba:
a3:79:cd:5d:36:00:5c:2c:52:2d:ef:45:a5:92:75:
10:8b:e9:b2:50:e3:8b:73:70:6d:a1:99:c2:79:a4:
7a:ab:bb:57:03:04:c8:35:20:46:71:33:83:63:89:
d0:32:06:6a:aa:2d:1f:79:5b:9c:bb:42:80:e2:ee:
ed:b3:e5:a7:26:fc:3a:19:b3:6e:83:c1:0a:f3:70:
29:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D3:9B:5B:95:46:4A:5C:D8:71:AB:2B:62:B3:D9:B6:28:36:F3:64
X509v3 Authority Key Identifier:
keyid:29:80:74:AD:43:04:76:57:4D:86:D2:D5:6C:54:F7:6B:E2:A8:6A:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYB0rUMEdldNhtLVbFT3a-Koahc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4c0417-dcb0-4add-a265-d8da1fe4b080/1/2NObW5VGSlzYcasrYrPZtig282Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/4c0417-dcb0-4add-a265-d8da1fe4b080/1/KYB0rUMEdldNhtLVbFT3a-Koahc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.116.0/22
Signature Algorithm: sha256WithRSAEncryption
95:be:d8:1e:a0:1f:36:0d:49:32:63:c5:16:c3:45:92:5d:c5:
cb:56:39:6d:d6:b9:58:5d:1d:72:28:d6:22:e6:4c:69:4b:a7:
7d:24:09:ba:fc:bd:b6:c2:e5:2d:6c:c0:6c:7f:fe:6d:79:ee:
39:46:ca:40:37:ef:de:a5:52:2a:74:5e:0c:b5:f1:1f:26:09:
c5:54:fb:8d:17:77:d2:b6:94:c0:28:6a:7e:78:65:49:78:30:
68:a2:6b:5d:1f:27:12:e1:62:b9:2a:89:a1:a8:e6:1d:32:fd:
27:76:7c:66:ff:e7:b0:69:c1:bb:e9:27:cf:28:f1:4a:ac:34:
de:60:50:cf:a2:46:7c:e7:14:5f:d2:30:47:ef:14:56:d8:36:
0b:e4:b1:8c:92:78:41:c9:ec:e0:00:dc:2f:46:00:f4:38:27:
75:4d:e1:fa:b4:e1:d2:ea:68:52:71:be:2a:17:3f:15:03:6e:
8d:2c:d3:bc:08:02:c7:23:ec:33:8d:9b:ee:18:0c:3e:a8:6c:
c7:68:cc:05:b8:27:46:37:9e:bd:24:dd:75:d4:e1:b0:14:ee:
66:9d:43:97:91:df:71:f4:14:81:d1:b7:c0:de:2c:38:e8:80:
ca:27:db:70:67:0c:06:d8:02:17:4f:1b:88:f3:2c:1e:c0:f6:
06:57:66:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:46 2024 by rpki-client on console-fra.rpki-client.org