Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/51ea49-7128-46e0-838d-7d5ecb4f181f/1/FKRN7VX-M9zNuJ0Xi5mXAJ-i93Y.roa
File: FKRN7VX-M9zNuJ0Xi5mXAJ-i93Y.roa (raw, json)
Hash identifier: tPWo9Bc4jubOwnfbiLhbqZLh4bX+yga6cCmXXhQ2NPA=
Subject key identifier: 14:A4:4D:ED:55:FE:33:DC:CD:B8:9D:17:8B:99:97:00:9F:A2:F7:76
Certificate issuer: /CN=9f974da45d5914ede1381eeaf9c2bb1645b6643a
Certificate serial: 0194228D799B5376982697E5655E8732946B
Authority key identifier: 9F:97:4D:A4:5D:59:14:ED:E1:38:1E:EA:F9:C2:BB:16:45:B6:64:3A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/n5dNpF1ZFO3hOB7q-cK7FkW2ZDo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/51ea49-7128-46e0-838d-7d5ecb4f181f/1/FKRN7VX-M9zNuJ0Xi5mXAJ-i93Y.roa
Signing time: Wed 01 Jan 2025 15:48:04 +0000
ROA not before: Wed 01 Jan 2025 15:48:04 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59652
IP address blocks: 176.124.128.0/21 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:79:9b:53:76:98:26:97:e5:65:5e:87:32:94:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f974da45d5914ede1381eeaf9c2bb1645b6643a
Validity
Not Before: Jan 1 15:48:04 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=14a44ded55fe33dccdb89d178b9997009fa2f776
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3e:83:14:2e:7b:c2:69:d2:36:40:7d:c2:5a:
ad:a6:b9:11:e1:4c:38:a7:4a:7e:99:d4:e8:78:39:
03:df:2f:73:96:ed:5c:ab:db:57:2b:1c:5a:04:2c:
7e:6d:b8:e3:c3:64:b4:58:d7:6b:78:c9:ed:a1:3c:
39:b0:24:00:c4:28:7f:8e:db:6f:6d:e7:97:a6:5d:
88:46:4a:0c:a7:31:22:82:b2:73:07:9f:56:6b:dd:
97:d5:b9:6d:8f:49:7f:0a:01:67:b3:48:a9:78:08:
6a:e7:39:84:bc:43:36:f6:04:91:12:ec:99:e1:28:
85:38:8f:8a:a6:51:b7:2e:c0:93:93:4c:03:c7:65:
ec:ba:a2:78:cf:4f:ef:46:5d:8f:3b:d7:8b:84:5e:
a0:f7:21:5c:e4:65:38:ed:f8:e7:46:6c:00:ea:75:
a3:01:c7:ad:98:4f:76:8f:12:a9:33:6a:ae:66:b1:
c8:82:59:ac:28:48:ca:03:7d:56:9f:a7:06:5b:f6:
cb:d9:56:23:91:fb:06:5c:08:6a:98:b2:5b:f6:aa:
f5:d9:bf:85:99:fc:8e:74:8f:3a:d7:82:06:81:6a:
e2:95:9c:67:39:cd:4e:f3:47:ed:10:fe:43:b1:9b:
d6:bc:64:6d:48:a6:8a:5e:8b:23:40:33:c3:b8:f4:
91:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:A4:4D:ED:55:FE:33:DC:CD:B8:9D:17:8B:99:97:00:9F:A2:F7:76
X509v3 Authority Key Identifier:
keyid:9F:97:4D:A4:5D:59:14:ED:E1:38:1E:EA:F9:C2:BB:16:45:B6:64:3A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/n5dNpF1ZFO3hOB7q-cK7FkW2ZDo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/51ea49-7128-46e0-838d-7d5ecb4f181f/1/FKRN7VX-M9zNuJ0Xi5mXAJ-i93Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/51ea49-7128-46e0-838d-7d5ecb4f181f/1/n5dNpF1ZFO3hOB7q-cK7FkW2ZDo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.128.0/21
Signature Algorithm: sha256WithRSAEncryption
1c:ce:67:fb:d2:45:e5:f9:f8:5d:2b:b2:6e:d5:1e:d6:37:90:
c1:48:01:2e:df:be:dc:ab:aa:78:90:45:e5:72:54:25:ff:4a:
c9:0e:4a:a3:84:71:3f:5a:15:d4:f2:93:b8:3e:e1:f1:ea:44:
68:5c:49:37:e6:c1:30:55:71:6d:d0:e0:30:5f:86:63:09:f0:
07:23:05:ab:af:a2:5f:1e:1a:d3:86:bc:04:b3:f1:4e:06:66:
cf:1d:14:83:f2:9a:46:d5:5b:9f:57:9e:d9:13:eb:b6:3e:ff:
47:ee:71:18:d6:08:04:0e:b7:48:32:41:b0:16:1e:b4:c1:d6:
5a:60:35:81:51:5c:bc:39:86:2b:a5:25:ae:84:50:e9:02:48:
df:9e:74:44:77:08:5a:da:7b:40:c8:3c:0b:31:9b:35:15:c4:
51:cd:82:8f:a5:75:4d:76:67:ee:a3:01:2c:d2:1d:5d:a5:50:
ad:ad:c3:76:7c:8b:f0:64:b8:2f:39:7a:c7:6a:52:d2:17:1f:
9c:ed:47:8f:98:3e:9c:44:ff:cd:2f:68:ee:73:9b:3b:8f:f2:
31:77:cc:2d:33:e2:08:38:64:a3:68:e1:eb:62:83:0a:00:22:
ac:91:01:76:71:1c:42:25:ff:59:73:35:31:e5:e7:28:62:27:
bc:db:d4:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:34:47 2025 by rpki-client