Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/YKT8COwd_Fhd5KHQkjQvgxkk7RY.roa
File: YKT8COwd_Fhd5KHQkjQvgxkk7RY.roa (raw, json)
Hash identifier: EVUY8ee29p4b3/cfplqm5DQZ8JHd6WLa96X4ZimY3nY=
Subject key identifier: 60:A4:FC:08:EC:1D:FC:58:5D:E4:A1:D0:92:34:2F:83:19:24:ED:16
Certificate issuer: /CN=68a839cc8159fc5d3d75dedf62aadb81c40eabed
Certificate serial: 018644A8F2C204B05FF32707A9D6DA3A9F14
Authority key identifier: 68:A8:39:CC:81:59:FC:5D:3D:75:DE:DF:62:AA:DB:81:C4:0E:AB:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aKg5zIFZ_F09dd7fYqrbgcQOq-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/YKT8COwd_Fhd5KHQkjQvgxkk7RY.roa
Signing time: Sun 12 Feb 2023 08:06:08 +0000
ROA not before: Sun 12 Feb 2023 08:06:08 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 3320
IP address blocks: 217.28.129.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:44:a8:f2:c2:04:b0:5f:f3:27:07:a9:d6:da:3a:9f:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68a839cc8159fc5d3d75dedf62aadb81c40eabed
Validity
Not Before: Feb 12 08:06:08 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=60a4fc08ec1dfc585de4a1d092342f831924ed16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:ea:92:6e:08:29:fe:a1:e9:e2:ba:9c:ef:07:
a5:4c:71:a0:72:ce:f2:24:83:d6:55:10:6c:f0:27:
cc:be:d5:77:47:b5:cf:4f:b7:18:e6:9a:ba:20:ed:
18:73:de:8a:49:04:00:7a:1c:94:c1:6e:29:53:6f:
65:f2:46:50:83:9a:2c:c5:2e:a8:8d:c9:15:db:cc:
08:3e:0c:7f:09:ab:58:60:66:c7:51:60:89:9f:f2:
28:82:df:d2:3a:8f:05:31:60:6d:84:a6:79:dc:fe:
f7:ca:a1:73:fb:5b:39:7e:da:a0:7b:a9:4e:90:e1:
4f:a1:4c:65:7a:6f:41:05:cf:90:de:d1:ef:88:3c:
e6:81:fb:49:a7:13:29:04:4e:58:59:48:6a:93:9a:
7f:50:4b:8f:c2:b4:ae:b9:ba:d5:be:3d:03:0a:29:
c2:04:d6:72:c6:a4:63:95:9d:13:a6:f6:a9:c7:c0:
99:20:d6:29:48:76:d1:79:53:47:83:0f:d9:a5:8f:
24:d9:8c:ed:2a:09:16:79:e1:f0:6c:09:9c:c0:03:
78:67:29:bf:ee:75:6a:b4:3f:e3:31:fa:64:a1:49:
be:8b:18:ec:19:67:8a:28:5e:e2:b4:ed:f9:5e:12:
d1:75:21:a7:60:fd:cc:3f:43:b7:63:1d:02:1c:5a:
1c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:A4:FC:08:EC:1D:FC:58:5D:E4:A1:D0:92:34:2F:83:19:24:ED:16
X509v3 Authority Key Identifier:
keyid:68:A8:39:CC:81:59:FC:5D:3D:75:DE:DF:62:AA:DB:81:C4:0E:AB:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aKg5zIFZ_F09dd7fYqrbgcQOq-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/YKT8COwd_Fhd5KHQkjQvgxkk7RY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/7f631d-d0a1-4e23-96f8-1b2b2faf1cac/1/aKg5zIFZ_F09dd7fYqrbgcQOq-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.129.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:5e:e7:35:6a:1f:54:bf:1f:ac:a0:53:af:c2:c2:fd:08:7f:
11:de:96:d8:53:ef:f6:72:c3:58:6e:45:ae:f9:95:e2:96:0a:
85:d9:2f:5a:a6:65:3f:44:b8:58:cc:a6:01:a8:b1:d2:a4:bc:
6e:63:cf:01:21:d2:ce:23:73:ac:1d:cc:62:bd:28:54:78:43:
75:e2:cd:ee:0e:67:0c:4b:43:0f:04:43:8f:33:21:9e:44:de:
07:f0:01:fe:84:19:b9:8f:e4:ca:b7:8d:5a:eb:5d:0d:91:b6:
ba:14:b0:c3:ff:3d:aa:77:a2:21:9d:4e:e2:36:d9:66:fe:9b:
ce:8a:05:de:1d:91:72:d6:40:48:40:75:8e:e3:69:3a:a5:1f:
d7:e0:78:79:63:b7:cf:47:bd:a4:30:1e:58:e8:73:a8:b9:1b:
d2:b5:9e:b2:15:b0:21:0b:17:cc:97:ac:56:d8:04:e1:6e:7c:
79:68:b8:a9:df:b8:63:f1:b2:72:f5:61:36:40:ea:15:63:7d:
54:c9:06:b3:48:5c:ab:89:20:b9:50:93:a3:78:ce:56:77:7f:
1a:31:b7:b1:81:df:09:d9:6a:83:2d:6a:d6:55:38:65:ce:cc:
6d:bf:f2:0d:f9:41:e9:ab:df:10:54:e8:a0:ba:c3:1b:15:34:
6b:9a:1d:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:18 2024 by rpki-client on console-fra.rpki-client.org