Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/wQtnJYm0ztSPM1yU1vZ1kQPzj20.roa
File: wQtnJYm0ztSPM1yU1vZ1kQPzj20.roa (raw, json)
Hash identifier: FhHW6ADSBOmgBzAR8mmQBK8pyJqFfFq0mPJPH7+qoUk=
Subject key identifier: C1:0B:67:25:89:B4:CE:D4:8F:33:5C:94:D6:F6:75:91:03:F3:8F:6D
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 018AFFD46363F7E68AD49BC0AD66E52C3E2E
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/wQtnJYm0ztSPM1yU1vZ1kQPzj20.roa
Signing time: Thu 05 Oct 2023 12:33:43 +0000
ROA not before: Thu 05 Oct 2023 12:33:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 34549
IP address blocks: 195.179.44.0/22 maxlen: 22
195.180.140.0/22 maxlen: 22
195.179.80.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:ff:d4:63:63:f7:e6:8a:d4:9b:c0:ad:66:e5:2c:3e:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Oct 5 12:33:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c10b672589b4ced48f335c94d6f6759103f38f6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:53:90:74:cb:cf:f7:f9:93:00:0e:2b:db:55:
90:6c:36:b4:df:2e:17:17:9f:52:fa:cb:a4:3b:4f:
3d:a1:08:52:fc:73:4a:89:09:6f:37:68:64:71:c7:
1d:ad:1a:7f:4b:94:cf:85:0c:16:c2:88:d4:cb:4b:
f7:49:f3:da:b9:9b:d5:7d:b3:da:71:63:ca:8a:87:
3e:7c:ee:61:52:c9:71:58:f7:a3:26:9b:54:27:1a:
8e:9a:ea:62:34:59:cc:8f:95:90:8a:7b:73:c7:1c:
09:42:97:2d:8f:14:c6:8c:f5:68:32:74:43:09:7a:
7e:a3:85:77:80:20:72:ed:9c:40:e9:7f:8f:3b:9a:
67:11:05:86:b6:a9:e3:18:59:16:13:2b:f9:2c:e4:
25:20:7e:b0:8d:d9:74:6c:d4:ba:ea:95:1b:03:47:
fe:dc:c8:25:09:c1:f5:63:b6:2d:96:49:74:14:36:
4c:06:d2:5e:26:23:c5:74:71:41:c8:e0:f1:11:b6:
4e:7d:10:ea:23:88:a1:4e:86:f4:81:0b:6b:96:e5:
8e:73:e0:08:dc:c0:41:6e:d9:8a:6e:00:5f:56:6c:
ed:6b:01:6d:ae:6c:c1:db:4d:56:90:81:df:d0:30:
c1:b3:3a:04:5b:82:a1:89:33:99:00:9e:5d:38:b5:
39:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:0B:67:25:89:B4:CE:D4:8F:33:5C:94:D6:F6:75:91:03:F3:8F:6D
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/wQtnJYm0ztSPM1yU1vZ1kQPzj20.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.179.44.0/22
195.179.80.0/22
195.180.140.0/22
Signature Algorithm: sha256WithRSAEncryption
51:b3:fc:7b:59:d3:df:3b:78:1d:d2:25:0c:a2:9f:46:85:8f:
7b:67:ab:0e:52:30:eb:ea:1c:71:2d:2c:87:b5:0c:a2:95:d5:
81:eb:cc:1b:6f:5f:3e:b6:31:8b:16:23:f9:91:0f:d4:36:9d:
90:55:3f:13:e8:ba:ed:15:f6:8c:fe:45:d2:93:d3:a8:3b:cc:
70:0f:09:fd:ae:c4:2a:7d:de:67:ab:7a:cd:3e:b4:84:6a:af:
92:6b:fa:8c:90:a3:52:09:24:77:09:9f:68:99:18:41:5a:c1:
50:2a:0a:87:2d:a1:b0:98:1c:72:8d:7b:fe:35:28:cc:05:db:
34:c8:24:11:e8:1b:b4:c6:04:f6:df:7b:2b:ea:86:26:2f:01:
a2:ce:26:83:1a:6f:0a:43:6e:0b:e0:e8:c0:2b:fd:62:09:6d:
6f:be:c2:23:c9:93:b7:1f:6a:2c:dd:c0:0a:16:03:a2:06:94:
4e:d3:1b:b6:35:5f:a3:15:97:23:29:07:15:4d:ec:70:49:39:
78:33:c4:98:27:ea:b8:9e:0e:df:45:6a:8e:ef:9c:47:a8:02:
a9:87:9c:44:9b:ee:ed:d5:d3:3b:0c:09:bf:4a:0b:63:06:ea:
69:ba:f9:d5:10:65:89:31:f4:cb:4c:62:fc:b3:17:1e:b1:5c:
c3:05:f6:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:58 2025 by rpki-client