Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/b44b0e-fbc8-4103-8b3e-0614437be2ee/1/Ui6k-bOPzEWSail4rTgBQwoaCLQ.roa
File: Ui6k-bOPzEWSail4rTgBQwoaCLQ.roa (raw, json)
Hash identifier: 8UMFWW+GveOi7xrZoIdj54BL1AZZhobG1Bt20pI/jWc=
Subject key identifier: 52:2E:A4:F9:B3:8F:CC:45:92:6A:29:78:AD:38:01:43:0A:1A:08:B4
Certificate issuer: /CN=5ca1c1623072272425f561da97ae102f06561e3f
Certificate serial: 018CC86F6721A49B8556272E226DF1A1A4AC
Authority key identifier: 5C:A1:C1:62:30:72:27:24:25:F5:61:DA:97:AE:10:2F:06:56:1E:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XKHBYjByJyQl9WHal64QLwZWHj8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/b44b0e-fbc8-4103-8b3e-0614437be2ee/1/Ui6k-bOPzEWSail4rTgBQwoaCLQ.roa
Signing time: Tue 02 Jan 2024 04:29:53 +0000
ROA not before: Tue 02 Jan 2024 04:29:53 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201631
IP address blocks: 5.42.219.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c8:6f:67:21:a4:9b:85:56:27:2e:22:6d:f1:a1:a4:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ca1c1623072272425f561da97ae102f06561e3f
Validity
Not Before: Jan 2 04:29:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=522ea4f9b38fcc45926a2978ad3801430a1a08b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:53:b1:9d:13:aa:04:49:63:13:c6:33:71:f9:
08:fd:32:d6:4e:80:d2:62:fa:4b:44:0a:48:50:22:
77:2c:de:ed:5c:88:4f:a1:cb:03:f1:08:f9:a5:00:
46:a7:01:d4:ba:b2:7d:ed:b3:f8:aa:d0:ec:5c:31:
11:60:fe:86:d1:fa:d8:1f:1a:00:3e:ca:e7:93:d9:
12:04:d3:8f:9b:44:95:de:4f:40:fa:6a:96:b8:fa:
ea:fc:09:52:2c:ba:9d:72:75:ff:69:cd:5f:6d:86:
78:3a:73:c0:20:84:e4:b2:9d:54:06:dc:e8:e9:a8:
8e:16:ee:36:c1:34:db:4d:34:58:68:ac:52:a7:bb:
77:19:00:8f:a5:69:fe:56:d5:6b:8e:e0:e1:18:8b:
b1:07:31:95:24:2e:d7:f2:e8:73:fa:1a:a9:d4:b3:
56:9a:6a:36:e1:19:e2:1a:a9:03:82:83:b5:89:b0:
94:27:94:c9:4d:55:a9:ac:86:88:fb:15:86:d3:3c:
d8:d4:ce:0b:66:2e:e9:50:84:2a:8b:b0:15:90:ae:
a5:49:6c:44:10:81:80:af:ae:e2:33:9c:94:ae:48:
e9:f4:e8:1b:6c:51:82:b1:5f:52:34:0e:88:37:87:
30:e3:e3:a0:ed:75:70:c5:86:07:8a:ae:46:84:47:
69:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:2E:A4:F9:B3:8F:CC:45:92:6A:29:78:AD:38:01:43:0A:1A:08:B4
X509v3 Authority Key Identifier:
keyid:5C:A1:C1:62:30:72:27:24:25:F5:61:DA:97:AE:10:2F:06:56:1E:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XKHBYjByJyQl9WHal64QLwZWHj8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b44b0e-fbc8-4103-8b3e-0614437be2ee/1/Ui6k-bOPzEWSail4rTgBQwoaCLQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/b44b0e-fbc8-4103-8b3e-0614437be2ee/1/XKHBYjByJyQl9WHal64QLwZWHj8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.219.0/24
Signature Algorithm: sha256WithRSAEncryption
12:2b:f0:c5:87:94:23:55:59:5b:c0:15:86:37:6b:bc:fe:3d:
84:79:bb:ff:4f:07:42:c6:b4:10:f2:4d:88:bd:1e:7d:8f:cb:
f4:3a:d6:ff:da:7f:54:f1:7d:a1:1d:81:7f:b5:ee:33:66:c0:
e8:28:f8:3a:4f:0f:b8:29:4a:47:5f:a0:c1:8f:73:8d:42:f5:
3c:dc:f2:2a:7c:ca:d9:25:8f:af:6e:f9:90:ef:ac:52:d6:5e:
70:df:15:56:f1:7b:11:c1:16:c7:5b:0e:3e:37:a7:29:f3:18:
a3:58:1b:61:9e:78:64:4c:58:eb:7d:a1:3b:62:30:61:85:4f:
8a:fb:f3:0f:0a:70:e4:53:aa:77:43:26:fa:ab:88:d7:6a:75:
e5:23:74:cd:25:5a:6b:90:d2:0d:93:c0:69:75:b8:9c:85:1c:
0b:7f:80:94:94:99:09:fe:40:1b:8d:1b:e7:5e:3c:76:ec:50:
01:46:ca:b4:2e:16:7f:e7:0b:31:06:47:49:a9:be:d8:1e:a3:
bd:17:79:97:94:0b:2f:be:73:60:b8:96:a0:42:52:77:84:d9:
f9:ab:03:7c:d3:a9:ed:76:5e:17:77:f4:1d:52:11:55:37:fa:
d0:cd:da:ed:2a:3e:d7:07:15:bc:4b:3a:ef:2c:0b:76:2e:dc:
f5:d7:5e:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:46:06 2024 by rpki-client on console-ams.rpki-client.org