Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/b88ff8-fa66-4b7b-a9a0-69c435d32bc4/1/stCAtMmDUZl6WZURPsxwmCK2YU0.roa
File: stCAtMmDUZl6WZURPsxwmCK2YU0.roa (raw, json)
Hash identifier: Mpp39ICniHPc8Hx/p9CVg4FUPsBMMl0Xg49JO0plfAs=
Subject key identifier: B2:D0:80:B4:C9:83:51:99:7A:59:95:11:3E:CC:70:98:22:B6:61:4D
Certificate issuer: /CN=f2aa7841643ab912508e610cd00adb6d0088da48
Certificate serial: 018572B4107D773265E365B8171F409957EC
Authority key identifier: F2:AA:78:41:64:3A:B9:12:50:8E:61:0C:D0:0A:DB:6D:00:88:DA:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8qp4QWQ6uRJQjmEM0ArbbQCI2kg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/b88ff8-fa66-4b7b-a9a0-69c435d32bc4/1/stCAtMmDUZl6WZURPsxwmCK2YU0.roa
Signing time: Mon 02 Jan 2023 13:38:01 +0000
ROA not before: Mon 02 Jan 2023 13:38:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34471
IP address blocks: 5.182.160.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:b4:10:7d:77:32:65:e3:65:b8:17:1f:40:99:57:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2aa7841643ab912508e610cd00adb6d0088da48
Validity
Not Before: Jan 2 13:38:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b2d080b4c98351997a5995113ecc709822b6614d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:95:e1:a7:74:1e:cd:e2:1b:db:80:4b:d5:ec:
61:ad:fd:6b:f1:91:ba:c9:3e:87:e8:e2:c2:06:1a:
52:5a:0f:6b:98:85:99:70:57:55:3a:c7:b7:23:f7:
23:b8:9e:d0:3b:06:ef:21:bf:fb:f4:69:aa:52:e0:
df:b0:56:48:5a:f2:96:74:51:c1:54:b2:0d:7b:15:
de:87:8e:95:7a:96:76:90:69:0f:7e:c2:5d:79:50:
b7:53:e3:a2:c3:c4:2d:47:03:21:98:35:45:61:01:
07:1f:3f:f9:8f:c5:b2:1b:62:47:1d:c8:d3:0b:88:
3d:e0:28:ab:9f:a9:b9:70:df:dc:b4:16:87:48:c9:
e5:e8:bd:01:59:ba:d7:bf:03:ad:54:ed:52:35:c1:
df:3c:fa:29:07:5e:e9:44:65:2a:62:0a:54:fd:c5:
b2:7d:8d:03:c0:85:a5:11:15:32:63:86:c6:ed:14:
33:9f:27:00:c4:e3:74:6f:7d:6f:d2:fc:ad:ff:fa:
13:cb:b6:88:72:1c:94:20:d5:c1:63:93:6d:14:a8:
27:c1:e6:2f:e2:be:a0:d3:1b:3a:e1:16:94:ba:6c:
4b:87:88:5e:c4:33:a9:b4:8f:7f:1c:6d:e3:2f:7f:
eb:c3:69:69:17:8a:a5:98:09:8b:11:bf:b9:73:cb:
95:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:D0:80:B4:C9:83:51:99:7A:59:95:11:3E:CC:70:98:22:B6:61:4D
X509v3 Authority Key Identifier:
keyid:F2:AA:78:41:64:3A:B9:12:50:8E:61:0C:D0:0A:DB:6D:00:88:DA:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8qp4QWQ6uRJQjmEM0ArbbQCI2kg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b88ff8-fa66-4b7b-a9a0-69c435d32bc4/1/stCAtMmDUZl6WZURPsxwmCK2YU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/b88ff8-fa66-4b7b-a9a0-69c435d32bc4/1/8qp4QWQ6uRJQjmEM0ArbbQCI2kg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.160.0/22
Signature Algorithm: sha256WithRSAEncryption
30:ad:ed:7a:2b:6b:1a:9a:43:4e:ec:63:78:c0:17:41:92:a9:
35:d7:d7:b2:b9:d6:84:e5:56:64:99:11:64:2d:0b:d6:18:54:
37:50:f7:44:cf:bc:bb:d7:92:eb:8a:9c:7e:e2:ac:ad:2e:75:
6c:e9:2f:cb:39:16:ff:2b:d1:08:98:20:a3:68:26:bb:c4:dd:
93:fc:6f:eb:fa:03:41:8d:d8:6f:bc:37:bb:c6:81:80:91:e6:
c9:73:0c:90:55:0e:b6:d3:b3:72:e9:37:5c:15:5f:a3:51:9c:
85:09:bc:dc:0a:5f:04:f9:97:d8:4c:69:1d:39:82:42:91:ee:
30:3b:5c:7b:b6:79:60:20:5a:b9:90:6f:a2:2e:c1:0e:cb:1e:
54:c8:25:31:35:32:67:dd:e4:05:01:fb:47:d9:d4:ac:23:65:
44:2e:8a:0d:51:e5:30:28:e2:24:83:5c:2a:b1:50:23:26:be:
a0:3c:89:af:18:5e:43:89:ef:c2:a6:3f:b2:06:d0:03:e2:38:
2e:10:6c:30:d6:6b:3c:a8:e0:8c:83:8a:93:04:dc:ae:53:56:
2d:89:7d:95:4c:80:b2:d9:bb:0d:40:6d:ec:82:44:60:f4:77:
5e:5b:93:dd:26:6d:05:30:fe:81:68:4d:6b:11:b4:22:79:65:
fd:c7:c2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 9 12:15:37 2023 by rpki-client on console-fra.rpki-client.org