Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/6a3e2b-5d40-467e-b467-fe3d6ecd4b3c/1/1-q3wtGkhV7-o8h2hIvypKzIf64I.roa
File: 1-q3wtGkhV7-o8h2hIvypKzIf64I.roa (raw, json)
Hash identifier: erJDX4II/cCpt4To74UhpWjwDkKiwhO3o7XM+ybSyBM=
Subject key identifier: FA:AD:F0:B4:69:21:57:BF:A8:F2:1D:A1:22:FC:A9:2B:32:1F:EB:82
Certificate issuer: /CN=9b070c07a292618186385cc204ec95fb64af5d19
Certificate serial: 01882086B536E2A46AC909E07C22777EB745
Authority key identifier: 9B:07:0C:07:A2:92:61:81:86:38:5C:C2:04:EC:95:FB:64:AF:5D:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwcMB6KSYYGGOFzCBOyV-2SvXRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/6a3e2b-5d40-467e-b467-fe3d6ecd4b3c/1/1-q3wtGkhV7-o8h2hIvypKzIf64I.roa
Signing time: Mon 15 May 2023 17:47:59 +0000
ROA not before: Mon 15 May 2023 17:47:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 176.97.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:b5:36:e2:a4:6a:c9:09:e0:7c:22:77:7e:b7:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b070c07a292618186385cc204ec95fb64af5d19
Validity
Not Before: May 15 17:47:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=faadf0b4692157bfa8f21da122fca92b321feb82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:97:b1:27:b2:08:5e:cd:ce:a4:11:cf:93:27:
83:29:e4:42:79:83:6a:9e:51:22:48:4a:13:c8:fc:
97:96:6d:38:99:1b:88:b6:d4:64:81:10:6d:7d:d3:
65:75:cd:c1:3e:94:a9:8d:fa:2c:5e:86:0a:90:9a:
c6:fc:d7:3b:26:db:9f:13:92:9d:40:fd:f4:88:0b:
16:03:be:70:7f:28:dc:70:1e:49:16:36:5f:0d:7d:
eb:81:c0:f1:bc:18:b6:a1:7c:70:49:91:86:33:a1:
9a:78:2f:a5:4e:da:ee:1a:c8:a0:5a:22:08:74:5b:
19:6e:b9:7e:00:04:37:14:01:e0:09:da:03:ab:56:
86:d2:ff:97:33:62:da:81:97:7d:82:53:a4:bd:00:
5e:15:d5:d4:e1:cd:e0:f1:b4:de:a1:2e:9d:ac:57:
46:2a:15:4f:3b:47:07:ef:15:0e:41:00:44:88:0c:
45:b5:d6:df:95:ee:46:a3:92:ec:24:62:7b:c8:dc:
b4:af:42:83:8f:41:fe:f4:36:de:38:58:ec:1a:37:
08:8b:d0:43:74:b1:e2:d2:5c:7a:fd:30:b5:b9:af:
ea:62:f2:f3:97:97:ab:09:64:56:b2:3d:92:b8:c2:
3e:56:30:b6:4a:68:e8:cf:05:45:37:42:fd:2f:38:
cd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:AD:F0:B4:69:21:57:BF:A8:F2:1D:A1:22:FC:A9:2B:32:1F:EB:82
X509v3 Authority Key Identifier:
keyid:9B:07:0C:07:A2:92:61:81:86:38:5C:C2:04:EC:95:FB:64:AF:5D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwcMB6KSYYGGOFzCBOyV-2SvXRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/6a3e2b-5d40-467e-b467-fe3d6ecd4b3c/1/1-q3wtGkhV7-o8h2hIvypKzIf64I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/6a3e2b-5d40-467e-b467-fe3d6ecd4b3c/1/mwcMB6KSYYGGOFzCBOyV-2SvXRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.195.0/24
Signature Algorithm: sha256WithRSAEncryption
27:a4:a6:c5:3a:9f:01:1b:62:9a:ae:79:ce:a9:8d:03:72:d7:
79:1e:0f:74:40:79:fe:1e:5f:fe:f6:01:4d:6b:fa:60:ab:2d:
b5:d2:42:a8:be:06:60:96:28:7a:96:11:b0:c1:7a:d4:1f:06:
8c:08:b0:44:63:57:b6:c9:c5:66:e0:80:fe:b7:75:ea:11:9d:
bf:dc:bf:66:50:f0:d1:d2:ce:5d:7b:b5:5d:89:71:4c:28:21:
c2:2e:6f:e0:85:7a:61:69:c9:ea:a9:bf:3f:9f:47:a1:07:ac:
c3:04:d4:f6:b6:38:65:95:4c:0d:bb:c2:2f:a6:f3:60:e3:0f:
8a:0e:56:5b:0c:01:86:b7:21:34:84:5d:29:a6:eb:6a:89:3e:
14:29:0d:db:67:42:b1:f6:5d:ab:b1:3e:3a:b7:46:83:5f:8b:
67:ec:07:ee:45:52:bd:7c:ba:c5:22:e0:2e:08:63:7b:24:22:
43:db:06:5d:c8:95:31:31:23:4e:c9:a8:b8:64:81:17:51:c9:
27:fe:22:35:a1:86:b8:be:1b:bc:75:44:a9:07:42:87:b0:f8:
c4:68:a8:78:fd:83:25:c4:9d:31:92:01:5c:06:45:d0:70:64:
3d:e4:1c:44:3d:5b:bd:e8:ba:6c:3e:b6:a7:ca:8f:30:a4:35:
eb:f4:c9:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 12:33:05 2025 by rpki-client