Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/RVrWAJpHHIatZZ9quJxU-6iCwcg.roa
File: RVrWAJpHHIatZZ9quJxU-6iCwcg.roa (raw, json)
Hash identifier: 2QhDpJ4vEXmejmLXDmqcHCt1D974V8tfxAEcdeeB7/Q=
Subject key identifier: 45:5A:D6:00:9A:47:1C:86:AD:65:9F:6A:B8:9C:54:FB:A8:82:C1:C8
Certificate issuer: /CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Certificate serial: 0185CBA14CB257EEE9FCB04BB749188BDD7D
Authority key identifier: 29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/RVrWAJpHHIatZZ9quJxU-6iCwcg.roa
Signing time: Thu 19 Jan 2023 20:03:43 +0000
ROA not before: Thu 19 Jan 2023 20:03:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 54339
IP address blocks: 85.239.144.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:cb:a1:4c:b2:57:ee:e9:fc:b0:4b:b7:49:18:8b:dd:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d2daff1c5bb61a0ac8b3caead4b8a1fa284d0f
Validity
Not Before: Jan 19 20:03:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=455ad6009a471c86ad659f6ab89c54fba882c1c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:b6:6c:7f:89:6b:c0:58:c0:44:f7:a2:90:aa:
82:c3:c1:6c:72:e5:ee:a5:d0:3d:45:0c:73:8a:8d:
2f:86:39:27:98:32:81:8a:f5:9c:38:55:56:68:54:
e5:d2:72:53:1f:72:b0:3d:c3:79:86:70:19:7f:d5:
c1:dc:e6:9c:96:67:5e:b6:df:1f:1d:3e:cd:08:d5:
a5:7e:07:56:ea:53:9c:b1:c5:9a:11:05:57:fe:ef:
5b:09:c5:31:c9:2e:ad:4a:20:85:9a:94:d2:71:81:
58:d6:8c:c0:da:f9:20:88:e9:59:30:d4:1c:62:a8:
8a:cf:c8:f1:cd:d7:fc:20:95:41:e3:6b:09:b1:01:
24:6f:62:06:89:8d:59:0b:ae:e9:6b:5c:04:c3:65:
e2:54:b4:6d:bf:d6:7a:f7:2f:35:4e:15:c9:91:21:
80:ca:e4:ea:4e:69:77:6b:51:99:89:19:f6:28:50:
3d:41:09:4b:db:f2:ba:c7:a8:6d:a9:06:53:c4:22:
ae:3a:47:68:4f:6d:28:28:4a:50:70:a4:be:4b:77:
a8:3b:5b:39:82:89:bc:75:0a:e8:15:c2:1f:49:3e:
eb:b3:a9:a1:33:e9:62:08:58:43:4c:17:7d:24:cc:
ee:eb:4b:b4:17:43:b6:01:0f:6b:e4:2b:04:f1:9b:
5e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5A:D6:00:9A:47:1C:86:AD:65:9F:6A:B8:9C:54:FB:A8:82:C1:C8
X509v3 Authority Key Identifier:
keyid:29:D2:DA:FF:1C:5B:B6:1A:0A:C8:B3:CA:EA:D4:B8:A1:FA:28:4D:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdLa_xxbthoKyLPK6tS4ofooTQ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/RVrWAJpHHIatZZ9quJxU-6iCwcg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/e5ea98-9601-4add-a7f8-4f57d9cf5caa/1/KdLa_xxbthoKyLPK6tS4ofooTQ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.239.144.0/22
Signature Algorithm: sha256WithRSAEncryption
9f:8c:1d:ff:e6:a3:e5:5d:39:69:bd:6b:78:89:e9:27:40:b4:
b0:3b:fb:02:0b:f1:bc:a5:ff:3d:d3:33:3d:b3:34:38:92:a0:
3d:f3:de:84:64:76:06:36:59:06:24:30:a7:0e:23:25:1a:a3:
f5:a0:6b:9a:cb:83:56:bb:72:92:4c:a3:e4:3d:f3:13:20:7e:
51:da:e9:13:51:48:10:05:6d:15:f8:c9:78:23:7d:08:61:92:
0d:0f:0a:ff:c3:6f:4e:7d:06:84:36:18:bf:f3:e1:89:73:ab:
87:fa:2f:f5:91:d4:da:a7:74:b8:b5:f1:99:ac:00:61:e1:d4:
0f:40:5c:32:6a:78:b5:9a:07:e8:4c:bc:d7:cd:1e:31:78:d7:
a3:42:da:c8:b6:76:4d:b2:3f:99:59:a4:e8:e1:2f:fc:02:ea:
9c:2e:9e:85:9c:2e:da:01:c8:0e:da:4d:f2:cd:14:19:c4:e0:
fe:0e:07:25:21:73:c6:1d:c8:1d:8c:b3:14:ce:a3:c6:e5:86:
41:92:d6:ba:73:54:ba:4d:d8:ed:37:0d:16:e1:f3:99:ef:03:
47:bc:d2:f5:a1:98:b8:2a:b9:25:e8:63:86:ed:80:76:3f:fd:
dc:cd:b0:9b:d6:97:cf:cb:9d:02:4e:af:fc:ca:2d:24:a8:8b:
c7:d7:8a:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:02 2025 by rpki-client