Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/sLzkMYp5mwL22mu-1OinnCz3lsk.roa
File: sLzkMYp5mwL22mu-1OinnCz3lsk.roa (raw, json)
Hash identifier: kdBavK0vvBn5Sb3RtY/uNPoXu8QnUIzYsfa2yY8VejA=
Subject key identifier: B0:BC:E4:31:8A:79:9B:02:F6:DA:6B:BE:D4:E8:A7:9C:2C:F7:96:C9
Certificate issuer: /CN=651698c0cd983797915e7d793fb6d18c481e84c5
Certificate serial: 0187E2CB3DB68AC04791AA97627D925A7714
Authority key identifier: 65:16:98:C0:CD:98:37:97:91:5E:7D:79:3F:B6:D1:8C:48:1E:84:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZRaYwM2YN5eRXn15P7bRjEgehMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/sLzkMYp5mwL22mu-1OinnCz3lsk.roa
Signing time: Wed 03 May 2023 18:06:23 +0000
ROA not before: Wed 03 May 2023 18:06:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 178.211.132.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:e2:cb:3d:b6:8a:c0:47:91:aa:97:62:7d:92:5a:77:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=651698c0cd983797915e7d793fb6d18c481e84c5
Validity
Not Before: May 3 18:06:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b0bce4318a799b02f6da6bbed4e8a79c2cf796c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:c0:aa:67:49:80:4e:94:70:39:8d:4b:79:a8:
aa:87:4a:49:06:77:ae:d8:48:e1:1c:73:b2:ba:4a:
68:c1:60:5b:ce:24:46:b1:4a:c8:ba:6a:ec:a4:03:
42:18:f7:78:0a:34:b6:f2:97:54:83:23:19:89:38:
25:51:5c:8c:23:f8:15:d1:61:e7:20:fc:35:20:e5:
52:96:f5:17:c9:97:69:71:5e:98:83:2e:b8:d3:c7:
81:3e:c8:f3:5f:75:07:7c:3c:24:7c:ea:8b:ca:55:
a8:e8:8a:6f:d0:2b:0e:df:c9:6b:72:5e:27:c4:9f:
aa:f0:d7:5e:c6:43:24:39:c9:2b:21:ba:25:ab:ce:
ab:2d:56:83:8d:14:9e:6b:39:35:18:27:ae:bc:08:
d5:a1:1e:37:9f:15:7a:ca:c9:b5:a3:2c:bc:ab:a8:
23:58:ae:9a:11:61:10:07:94:6a:bd:9a:a0:bf:79:
9a:00:b8:a9:75:d0:84:c0:59:8d:39:1b:18:39:70:
98:d7:86:77:a2:f9:8b:af:b8:a6:bf:ec:a8:0f:7c:
b8:a8:f1:4e:bf:5f:38:5d:a9:32:7d:5a:d2:f3:00:
91:c6:c0:fa:86:48:0a:9b:e8:50:44:a9:3b:45:70:
fc:f7:42:0c:e0:89:82:50:57:5f:67:3e:97:99:5d:
07:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:BC:E4:31:8A:79:9B:02:F6:DA:6B:BE:D4:E8:A7:9C:2C:F7:96:C9
X509v3 Authority Key Identifier:
keyid:65:16:98:C0:CD:98:37:97:91:5E:7D:79:3F:B6:D1:8C:48:1E:84:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZRaYwM2YN5eRXn15P7bRjEgehMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/sLzkMYp5mwL22mu-1OinnCz3lsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/ee5d9b-c8e6-499a-aaeb-e5e742f4577f/1/ZRaYwM2YN5eRXn15P7bRjEgehMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
178.211.132.0/24
Signature Algorithm: sha256WithRSAEncryption
27:ce:cb:9a:15:6f:e8:fb:75:fe:30:99:c3:66:4d:35:5b:7b:
63:00:1e:19:24:87:91:a2:0f:04:b8:0a:ef:33:f0:49:be:ea:
25:40:08:67:40:41:95:96:22:0c:5c:a2:9e:c6:7d:a5:df:cb:
49:62:17:fb:56:0f:66:f8:70:bc:33:44:96:10:e9:1d:01:8b:
06:2d:f2:be:43:47:7c:1c:3c:51:fb:ac:d7:58:50:bf:32:8e:
27:94:11:93:b3:33:c0:cc:57:46:57:b0:f0:e4:0e:df:b9:d7:
45:a8:03:fe:a7:56:75:c3:f7:05:6f:63:df:0d:93:80:57:c2:
fa:cb:de:da:88:98:6d:54:15:bd:d7:a3:47:af:4b:65:ea:ab:
ce:0b:f0:43:98:15:da:fa:9d:8c:ee:11:5f:96:8e:ac:6a:e9:
cb:cd:f2:f4:a6:0c:fd:7c:f4:03:c2:94:c5:5f:8a:0f:f8:a8:
79:69:2b:43:14:75:b5:15:60:49:37:22:e5:5e:af:c6:39:bc:
bc:d5:f6:d0:97:27:4e:3e:30:c8:77:53:df:56:d0:92:9d:3c:
fb:dd:e1:63:fe:ae:6f:a1:ad:fa:dd:60:50:1d:86:08:63:fa:
63:31:ee:18:4c:67:dd:75:fc:02:09:0f:16:55:69:45:0b:b5:
16:f2:a8:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:15 2024 by rpki-client on console-fra.rpki-client.org