Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/EFjhKK1iy80gbKfEau7ZvbCa2TY.roa
File: EFjhKK1iy80gbKfEau7ZvbCa2TY.roa (raw, json)
Hash identifier: 25637nCy7jM0NKysip37uBimkRlLRxGZIclme3dBJwY=
Subject key identifier: 10:58:E1:28:AD:62:CB:CD:20:6C:A7:C4:6A:EE:D9:BD:B0:9A:D9:36
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1AB3F343
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/EFjhKK1iy80gbKfEau7ZvbCa2TY.roa
Signing time: Sat 01 Jan 2022 12:02:46 +0000
ROA not before: Sat 01 Jan 2022 12:02:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 328377
IP address blocks: 198.105.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 448000835 (0x1ab3f343)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jan 1 12:02:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1058e128ad62cbcd206ca7c46aeed9bdb09ad936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:67:03:f0:18:7b:a7:68:fd:79:0b:66:70:dd:
b3:c1:bb:43:7c:14:8c:28:5b:62:be:c5:f2:93:dc:
f3:82:a8:d4:1f:53:e8:9e:96:4b:2c:37:2a:4e:2c:
c0:7a:bf:1a:2d:09:a0:c6:bc:58:82:5b:88:7e:3d:
a7:27:c9:d0:4f:c6:5b:b3:44:a6:42:94:a3:84:f5:
5e:e5:b6:74:ce:60:01:00:d1:14:cd:03:e2:8a:64:
50:25:2d:b9:c5:43:68:9b:dc:eb:d3:50:c8:4b:16:
7f:8d:9d:cc:95:fd:e6:93:d2:72:bc:87:8b:89:aa:
1c:82:12:a4:68:9d:c9:77:6f:66:4e:2f:ea:33:e5:
1c:33:61:0a:70:70:40:6a:75:db:2d:44:3b:15:0e:
f9:a8:87:50:da:8e:a2:b7:56:44:1e:24:2c:8e:0f:
44:3a:5e:d2:5a:89:af:2c:ce:e0:74:a3:9c:72:ad:
72:13:c3:ec:c2:03:89:8f:57:25:9b:24:4d:d8:f8:
a5:db:0f:82:8b:79:0a:a2:e3:cd:a2:2c:1f:cf:4e:
10:2b:e1:23:86:01:d4:7e:fe:a6:dc:58:a5:46:83:
e3:e1:6d:a7:22:88:d6:3e:5c:90:d7:0f:c5:22:1e:
75:86:76:e1:28:6e:7c:33:11:12:9d:b5:14:59:7a:
09:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:58:E1:28:AD:62:CB:CD:20:6C:A7:C4:6A:EE:D9:BD:B0:9A:D9:36
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/EFjhKK1iy80gbKfEau7ZvbCa2TY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.105.116.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:e1:26:f6:a0:c0:ab:5b:03:b1:be:5e:f9:53:b9:d2:30:7e:
05:97:be:ae:91:6e:a6:81:d6:a3:a0:a3:b7:8b:61:68:17:12:
43:ab:74:a1:7a:5b:21:70:75:dd:95:ec:a9:70:ce:44:06:6a:
77:9b:c9:8e:70:34:57:39:e0:a2:66:d5:57:70:dd:94:3d:bd:
52:9d:77:ff:c7:3a:52:36:02:e0:ca:1f:15:e5:20:05:22:93:
ec:fd:33:ed:dd:3d:8a:fd:5d:c6:cd:ff:5c:ca:13:81:d7:2f:
89:b1:d4:45:c6:b2:f0:63:20:86:11:ea:e4:e9:90:51:9b:24:
a0:d5:1f:f1:60:3f:0e:80:ec:0c:37:60:4e:dc:52:d0:39:c2:
41:4a:21:35:fd:8d:66:92:4c:42:28:0f:37:db:47:50:f7:e9:
93:a3:3e:ad:2f:33:1f:40:58:57:78:5e:ab:a8:c7:0e:fb:42:
73:3d:27:0b:aa:68:e9:83:ab:1c:60:38:9d:f3:43:41:e3:37:
1a:3f:67:30:e8:46:c4:68:27:e0:63:1c:99:ec:8b:20:c1:67:
93:f1:9b:70:df:80:01:8e:cf:73:12:0b:18:98:a2:75:49:5b:
ec:c8:7f:38:ad:d4:b7:0f:0e:91:ca:3e:80:6b:50:36:22:13:
2b:aa:76:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:07:22 2025 by rpki-client