Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/9ddebe-372f-4258-ba0f-cc4fe6323fec/1/Qoa1cxYfvYu_jorBIKmo75LufPU.roa
File: Qoa1cxYfvYu_jorBIKmo75LufPU.roa (raw, json)
Hash identifier: oIOY7CrtCniwZdUYGm6Seb+WrcUNRf5Zme9kya4FmpA=
Subject key identifier: 42:86:B5:73:16:1F:BD:8B:BF:8E:8A:C1:20:A9:A8:EF:92:EE:7C:F5
Certificate issuer: /CN=a84e3e1becf30b44a469815fd0f8c069c562f996
Certificate serial: 0189543342D21D131DD6C9C14AE262C32BBD
Authority key identifier: A8:4E:3E:1B:EC:F3:0B:44:A4:69:81:5F:D0:F8:C0:69:C5:62:F9:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qE4-G-zzC0SkaYFf0PjAacVi-ZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/9ddebe-372f-4258-ba0f-cc4fe6323fec/1/Qoa1cxYfvYu_jorBIKmo75LufPU.roa
Signing time: Fri 14 Jul 2023 11:39:52 +0000
ROA not before: Fri 14 Jul 2023 11:39:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 139482
IP address blocks: 37.1.229.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:54:33:42:d2:1d:13:1d:d6:c9:c1:4a:e2:62:c3:2b:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a84e3e1becf30b44a469815fd0f8c069c562f996
Validity
Not Before: Jul 14 11:39:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4286b573161fbd8bbf8e8ac120a9a8ef92ee7cf5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:c4:6c:d1:69:95:a0:15:3f:eb:92:0a:18:56:
64:ee:45:8a:79:8e:3f:c0:97:06:b1:e8:59:b0:23:
78:c1:4e:bd:7e:df:24:c5:4c:f3:8d:fa:a0:9e:7d:
fd:20:73:ac:38:1b:65:9d:d8:34:f9:13:70:5b:17:
f2:7b:cd:e7:9c:3e:d1:f0:91:1f:ab:31:58:e2:01:
3f:95:f4:db:93:16:4a:a8:92:1a:86:42:12:d8:69:
1e:1c:02:b2:a5:75:23:3e:24:fb:72:9b:4b:c4:30:
81:47:e1:ba:d4:59:6d:fe:0c:14:50:2b:fe:8b:2b:
95:b1:b4:ea:5f:8c:ba:b8:97:48:a9:18:fb:9a:43:
5e:64:b2:9e:65:fb:2e:32:7d:60:cd:5a:ed:15:a7:
b2:12:50:17:19:45:16:2b:b8:fb:88:82:b2:f2:43:
c5:82:d9:07:e5:83:51:05:f0:9c:f4:30:85:63:95:
56:dc:b0:fa:1d:09:2f:9b:96:a1:20:a9:67:e9:23:
ad:80:c4:d8:7a:04:76:84:ce:ed:f7:60:71:1e:b7:
9d:86:b2:e9:d8:31:37:77:2c:ce:55:1f:46:10:89:
b1:e7:ad:2e:5f:1d:32:e5:f0:2e:a7:4f:37:5d:5a:
b5:c2:ba:52:18:de:ab:ed:4a:fb:97:86:82:62:31:
2e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:86:B5:73:16:1F:BD:8B:BF:8E:8A:C1:20:A9:A8:EF:92:EE:7C:F5
X509v3 Authority Key Identifier:
keyid:A8:4E:3E:1B:EC:F3:0B:44:A4:69:81:5F:D0:F8:C0:69:C5:62:F9:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qE4-G-zzC0SkaYFf0PjAacVi-ZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9ddebe-372f-4258-ba0f-cc4fe6323fec/1/Qoa1cxYfvYu_jorBIKmo75LufPU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/9ddebe-372f-4258-ba0f-cc4fe6323fec/1/qE4-G-zzC0SkaYFf0PjAacVi-ZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.1.229.0/24
Signature Algorithm: sha256WithRSAEncryption
89:f7:d8:17:0b:3c:7c:39:7a:e1:90:b1:cf:0b:2d:b8:b3:8e:
27:00:f9:a9:18:57:41:6a:2d:05:4c:3c:d6:51:aa:ba:f8:c3:
6e:df:6e:a8:93:1a:1b:8e:b4:50:d7:2e:63:a0:be:0a:3d:a2:
62:c5:ee:47:58:a3:cd:cc:f1:67:d1:70:d1:6a:37:39:6b:83:
07:47:62:0c:b0:da:66:45:0f:87:93:c4:46:77:ed:22:85:85:
3d:5b:8a:e1:a5:02:05:26:90:28:2d:dc:03:4f:b1:e5:80:fa:
85:e9:9d:8c:7f:93:41:07:0d:80:4f:56:9a:83:5b:9a:d9:28:
5f:c6:cf:08:26:aa:4c:47:67:b0:67:1c:db:1f:7b:f1:ab:5a:
6c:00:98:10:31:ee:66:d1:64:68:40:41:3c:b2:55:e4:65:29:
ff:7c:80:65:7d:14:a8:c0:89:df:01:bb:c5:84:9d:35:2d:06:
8c:95:bc:dc:7f:88:82:2e:5f:25:fc:b2:b2:22:91:82:64:b8:
37:81:75:eb:d6:d8:bb:d1:94:1d:f9:7a:54:b2:df:cf:03:8e:
93:90:c6:d4:96:8c:cf:dc:79:ff:96:a8:08:96:62:e0:bd:5f:
ef:69:85:6f:d2:6f:4d:76:df:6f:8c:93:b4:d2:b1:7a:7b:c2:
86:ec:26:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:41:55 2025 by rpki-client