Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/4qacDKajtDAEOvtvxyx_xXyVJCA.roa
File: 4qacDKajtDAEOvtvxyx_xXyVJCA.roa (raw, json)
Hash identifier: uzIjEUHBUKiGC+GKOpBEL4LXatuk7UmCKkZ94BCJg8w=
Subject key identifier: E2:A6:9C:0C:A6:A3:B4:30:04:3A:FB:6F:C7:2C:7F:C5:7C:95:24:20
Certificate issuer: /CN=5324defbaade93e998e13a942029dd593b8b2ea3
Certificate serial: 018C690814475FD247B4EDDB3764FB117782
Authority key identifier: 53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/4qacDKajtDAEOvtvxyx_xXyVJCA.roa
Signing time: Thu 14 Dec 2023 15:53:06 +0000
ROA not before: Thu 14 Dec 2023 15:53:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 47721
IP address blocks: 167.160.10.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:69:08:14:47:5f:d2:47:b4:ed:db:37:64:fb:11:77:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5324defbaade93e998e13a942029dd593b8b2ea3
Validity
Not Before: Dec 14 15:53:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e2a69c0ca6a3b430043afb6fc72c7fc57c952420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:06:b7:fe:e7:e8:50:3c:ab:c5:f2:aa:5c:8e:
27:6b:d5:f5:a0:1f:f9:33:7b:0d:d2:cc:10:34:c9:
4c:ed:5e:4d:68:11:b0:6f:1d:90:34:0f:ed:bd:68:
73:76:c1:cf:9a:93:56:fd:37:97:be:f9:68:46:18:
24:4d:e6:0d:89:95:b9:7e:a3:7e:08:be:49:d4:80:
64:23:82:85:64:f1:b4:23:2f:ad:d9:9d:11:1a:e9:
2c:6d:69:73:1d:e2:26:5c:00:50:63:9a:84:39:35:
68:c2:49:da:1c:c0:32:36:20:bb:40:90:15:e0:58:
d5:b0:7c:0f:28:e0:59:71:2e:87:36:b2:8e:e6:6d:
33:b1:07:48:8f:2f:7d:e8:83:97:45:d9:41:7a:80:
ba:38:66:51:16:fb:c1:9c:28:cf:41:4c:d6:38:83:
a4:f0:02:f0:f0:dd:bf:ff:06:b1:9b:de:bf:06:77:
8a:00:14:d7:d0:10:6f:fc:8e:a3:eb:ca:e3:7d:15:
7b:52:b9:36:23:d4:2c:9c:95:6c:49:3e:36:5b:62:
1b:17:d4:20:b9:52:11:05:00:c2:aa:5e:37:bc:6e:
d5:9e:99:1f:ba:17:e1:b8:2e:4d:d6:18:45:8e:2b:
6c:ae:b0:32:24:c0:b1:a2:43:77:5c:41:2d:f1:aa:
83:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:A6:9C:0C:A6:A3:B4:30:04:3A:FB:6F:C7:2C:7F:C5:7C:95:24:20
X509v3 Authority Key Identifier:
keyid:53:24:DE:FB:AA:DE:93:E9:98:E1:3A:94:20:29:DD:59:3B:8B:2E:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyTe-6rek-mY4TqUICndWTuLLqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/4qacDKajtDAEOvtvxyx_xXyVJCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/294e84-cfc5-45a4-a5cd-33b7459975e0/1/UyTe-6rek-mY4TqUICndWTuLLqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.160.10.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:94:44:b6:22:5e:90:e8:40:17:21:c3:aa:de:3d:3a:c9:64:
a1:46:90:7e:7d:3a:df:d0:a0:b5:ad:c0:38:d9:12:ec:c7:ff:
85:1a:86:03:33:2c:2f:f9:4a:08:bf:73:7b:5a:4f:eb:fe:e4:
10:dd:69:94:9d:dc:e5:25:cf:a3:77:d4:49:bb:fd:37:5c:fe:
23:67:71:f0:f3:cf:45:12:ab:0b:65:a8:47:0b:02:80:74:74:
47:21:08:36:b2:45:95:c0:66:8d:5f:6e:8e:6d:d4:c2:bd:2c:
07:50:6f:e5:ce:b7:ab:c8:95:36:4c:37:50:43:96:75:c5:c8:
de:3f:bc:26:a5:5e:8c:97:9b:c5:21:99:55:26:b7:71:83:d5:
75:97:40:67:1c:34:e3:f5:4d:cb:d4:6d:3e:e6:8f:33:cb:4a:
d9:34:75:58:80:7e:ce:cd:f5:44:88:7c:5b:e9:d1:07:0e:08:
5d:bc:e9:18:d6:99:5c:fc:6d:b4:ea:47:2d:b6:e1:95:31:8d:
86:d6:00:ec:d2:24:1d:9a:09:f8:93:02:d6:3c:13:7f:58:57:
84:cf:98:6f:ae:ba:3a:0b:6f:e0:b0:7b:8f:bd:ee:d9:44:e6:
f8:74:28:3f:7a:bd:1e:49:11:67:34:85:38:f5:16:90:96:4d:
2f:1e:42:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:51 2025 by rpki-client