Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/PUvbqCBvB2LIN_u65CXulDnPGjw.roa
File: PUvbqCBvB2LIN_u65CXulDnPGjw.roa (raw, json)
Hash identifier: JaZ8yjxLyE1FOvTl5lFEwpgbaPenHiFrYFc2fnxVer0=
Subject key identifier: 3D:4B:DB:A8:20:6F:07:62:C8:37:FB:BA:E4:25:EE:94:39:CF:1A:3C
Certificate issuer: /CN=869569a2526687da91a7ecd4f567f5409cdffe79
Certificate serial: 018559623F529E54F9424DFBF5155A2414C5
Authority key identifier: 86:95:69:A2:52:66:87:DA:91:A7:EC:D4:F5:67:F5:40:9C:DF:FE:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpVpolJmh9qRp-zU9Wf1QJzf_nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/PUvbqCBvB2LIN_u65CXulDnPGjw.roa
Signing time: Wed 28 Dec 2022 15:38:08 +0000
ROA not before: Wed 28 Dec 2022 15:38:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39120
IP address blocks: 5.83.120.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:59:62:3f:52:9e:54:f9:42:4d:fb:f5:15:5a:24:14:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869569a2526687da91a7ecd4f567f5409cdffe79
Validity
Not Before: Dec 28 15:38:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d4bdba8206f0762c837fbbae425ee9439cf1a3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a1:a9:00:a3:82:f3:14:2c:ed:01:0c:8a:ac:
af:0c:83:02:38:a4:cd:70:c0:d7:e7:a6:59:71:a6:
c6:17:a3:14:cf:07:2b:91:97:84:a5:46:4a:a2:20:
cf:6b:ea:d7:a2:20:8d:92:3c:8c:48:5f:20:24:cc:
a7:2c:06:34:b1:9a:ec:5d:af:15:06:ef:cc:3a:2a:
c7:98:07:e8:c8:37:50:62:21:80:a1:74:44:42:e3:
0b:59:23:29:bd:e2:f6:6c:6f:b1:f2:95:57:2b:c8:
00:ea:b2:2a:c6:aa:ae:c0:cc:ab:36:01:e1:23:d2:
2c:58:91:62:64:ed:ca:49:19:44:2c:47:69:e0:b2:
6f:de:c7:60:74:73:c6:eb:96:a0:65:b2:ac:cf:d9:
15:fd:34:b6:a6:6b:9c:7d:24:21:86:80:c1:77:60:
0d:3f:b6:76:3d:25:77:b4:55:4b:19:bc:f0:48:31:
af:7f:c5:df:ab:a2:af:1a:31:87:fa:3a:84:a9:e7:
f0:a2:73:c5:85:d3:bb:41:41:8f:ae:59:9d:34:3f:
a1:7c:14:27:34:d3:a6:93:a5:fc:d6:4f:3a:3e:c9:
07:6d:22:c0:bb:75:48:87:22:9e:5d:65:b6:3a:b1:
39:7b:c2:34:b1:29:d0:8b:59:e8:61:09:e6:04:23:
a1:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4B:DB:A8:20:6F:07:62:C8:37:FB:BA:E4:25:EE:94:39:CF:1A:3C
X509v3 Authority Key Identifier:
keyid:86:95:69:A2:52:66:87:DA:91:A7:EC:D4:F5:67:F5:40:9C:DF:FE:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpVpolJmh9qRp-zU9Wf1QJzf_nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/PUvbqCBvB2LIN_u65CXulDnPGjw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/hpVpolJmh9qRp-zU9Wf1QJzf_nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.120.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:8c:be:89:8d:04:86:31:93:18:24:59:ae:c0:91:dc:de:99:
82:02:2d:a8:ed:40:0e:08:cc:76:42:34:f0:c8:71:41:18:2a:
0c:c0:8c:f0:38:da:5a:2f:b8:00:12:df:a9:0e:b0:8c:7f:38:
59:7d:ff:00:69:8b:bc:24:b3:f1:5c:5f:b3:48:ed:ac:da:83:
61:88:75:bd:34:ba:13:3c:62:10:f3:75:8a:9e:45:2e:85:60:
23:00:c3:c7:8e:5c:74:29:35:73:c1:a6:f3:84:b0:36:cb:77:
8a:58:0d:95:de:c4:a6:b4:a4:19:b9:49:d6:dc:5b:11:8c:51:
64:a4:ab:ee:5c:d3:8c:91:b6:83:c7:5a:37:80:ef:4b:8e:a9:
e3:a9:ca:ae:9d:01:b8:bb:09:5f:4b:8e:5c:03:1a:93:37:c4:
4b:71:99:39:01:45:33:f0:ef:00:43:58:ed:ff:f0:51:46:a9:
d6:e1:45:81:e7:c3:46:43:e0:4a:95:7f:8b:12:55:48:09:4b:
d0:42:41:5c:18:23:7e:2a:e0:84:b3:44:bd:9a:d2:e4:a5:e0:
d3:a9:fc:27:dc:73:8e:f4:24:53:9a:8b:69:a7:f7:99:6b:a8:
4e:04:28:8e:79:b8:e7:23:4c:b4:65:1d:d9:f8:84:27:75:5c:
e9:ac:99:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:30:46 2025 by rpki-client