Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/BDW5i_sIskM4E8xgxOI6l_D7WN8.roa
File: BDW5i_sIskM4E8xgxOI6l_D7WN8.roa (raw, json)
Hash identifier: Qv4neGYq4lchvXmglupn01XbgMRArwewFMFa+pTpaW0=
Subject key identifier: 04:35:B9:8B:FB:08:B2:43:38:13:CC:60:C4:E2:3A:97:F0:FB:58:DF
Certificate issuer: /CN=873ec15b98e26e8b29bb7dcf4a6052cace6d2683
Certificate serial: 01862F9C2CAEBA41789ACBA660B5DC7E38DD
Authority key identifier: 87:3E:C1:5B:98:E2:6E:8B:29:BB:7D:CF:4A:60:52:CA:CE:6D:26:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hz7BW5jibospu33PSmBSys5tJoM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/BDW5i_sIskM4E8xgxOI6l_D7WN8.roa
Signing time: Wed 08 Feb 2023 06:00:09 +0000
ROA not before: Wed 08 Feb 2023 06:00:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 176.53.147.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:2f:9c:2c:ae:ba:41:78:9a:cb:a6:60:b5:dc:7e:38:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=873ec15b98e26e8b29bb7dcf4a6052cace6d2683
Validity
Not Before: Feb 8 06:00:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0435b98bfb08b2433813cc60c4e23a97f0fb58df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:96:00:35:9b:cd:7e:f3:f5:44:ed:74:cd:ae:
1b:d3:0c:db:5c:57:79:a3:d8:3a:52:9d:67:e8:17:
dd:8d:72:ad:f7:a9:6e:02:f1:b4:09:cc:df:c1:e0:
49:92:29:39:ea:e3:b8:0c:0b:02:50:03:e8:e3:2d:
91:a2:89:3b:06:46:19:4c:ec:ad:8a:bc:6e:8a:b0:
eb:2d:f8:bd:4b:53:a9:7a:08:b8:7c:bc:3b:83:a3:
77:ac:71:d5:bb:23:48:06:2b:bf:0d:c4:6e:c0:36:
36:06:e7:68:f9:6f:9d:7c:9d:dc:a0:60:7f:bb:3d:
a9:b0:1e:19:ed:97:9a:8a:62:5a:ab:db:48:59:c8:
f7:c6:59:08:dc:2b:4e:e7:44:8d:9a:0d:ee:1f:27:
78:4c:83:40:ea:6d:51:66:c6:ef:55:d9:6e:00:be:
db:a6:17:b1:20:f7:74:ad:00:11:b7:0c:66:c1:e3:
25:52:08:d2:2e:ef:41:90:f8:5b:97:7f:0f:51:fa:
9b:ca:aa:dd:fb:2e:72:3b:6c:f4:80:bb:06:ea:90:
40:85:a8:4f:77:23:8b:5f:29:d4:9a:8c:a1:1c:b2:
8e:ec:9a:06:b0:c1:dc:24:ea:7d:4d:1b:40:1c:7e:
11:87:40:39:ae:3b:42:45:37:63:ae:c1:9d:a8:64:
27:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:35:B9:8B:FB:08:B2:43:38:13:CC:60:C4:E2:3A:97:F0:FB:58:DF
X509v3 Authority Key Identifier:
keyid:87:3E:C1:5B:98:E2:6E:8B:29:BB:7D:CF:4A:60:52:CA:CE:6D:26:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hz7BW5jibospu33PSmBSys5tJoM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/BDW5i_sIskM4E8xgxOI6l_D7WN8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/3ec59e-ea85-40cb-a285-07ded20e3c63/1/hz7BW5jibospu33PSmBSys5tJoM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.147.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:54:ef:e0:2c:c3:0d:b9:c3:c3:7d:70:12:19:3d:00:79:50:
3a:e0:18:11:b0:1d:6b:8b:7c:a8:8f:70:ca:a8:ca:bc:15:c7:
43:50:34:44:ce:74:61:9d:d5:c1:cf:76:e8:b2:a8:1d:6a:2f:
a1:c5:9f:de:5c:5e:21:28:1e:ba:c4:e9:9a:f5:46:78:32:75:
9c:3b:33:8e:e4:f9:8f:f8:54:dd:15:29:72:66:bb:3e:91:17:
b1:15:4d:97:7b:8e:59:0a:a1:15:e5:a5:01:c4:b5:35:14:54:
a9:8a:dd:89:17:63:97:da:5a:77:ff:9f:20:bb:1b:91:e0:4e:
d6:2f:21:26:3e:cb:4e:ef:ae:a0:d7:ed:95:60:f2:13:d9:b0:
24:c9:7e:76:50:fd:30:3c:b7:02:3e:28:61:b9:73:70:70:67:
e7:7d:c9:59:65:c5:3c:ad:e2:e6:60:37:33:c2:85:b3:66:5b:
26:63:8c:4e:d3:f9:24:62:60:d3:4a:3c:e3:f2:9a:f3:50:46:
f2:30:fd:f0:13:b3:35:2f:34:c2:46:d5:68:e4:1d:1c:dd:7a:
34:6b:ea:72:d5:f0:50:27:05:a2:c0:41:ba:f4:65:c1:b0:64:
29:63:37:78:d1:e3:66:9d:c5:e6:7a:6d:04:b4:db:2d:bf:c4:
82:d4:3e:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:58 2024 by rpki-client on console-fra.rpki-client.org