Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/0BEzsazQz-3-fzZOXUBzFR9-SEA.roa
File: 0BEzsazQz-3-fzZOXUBzFR9-SEA.roa (raw, json)
Hash identifier: xJdvyBzFJCzDNWN1w4SpJl++kA85g2jY9KiUG4fQa2E=
Subject key identifier: D0:11:33:B1:AC:D0:CF:ED:FE:7F:36:4E:5D:40:73:15:1F:7E:48:40
Certificate issuer: /CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Certificate serial: 0194266B497CF9279E5BF201BADEED48C633
Authority key identifier: 92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/0BEzsazQz-3-fzZOXUBzFR9-SEA.roa
Signing time: Thu 02 Jan 2025 09:49:12 +0000
ROA not before: Thu 02 Jan 2025 09:49:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201270
IP address blocks: 217.107.192.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:49:7c:f9:27:9e:5b:f2:01:ba:de:ed:48:c6:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92f4b1c0bfbad46b811eee568a18fbaa14a9d687
Validity
Not Before: Jan 2 09:49:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d01133b1acd0cfedfe7f364e5d4073151f7e4840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f2:fd:07:52:11:10:b6:a2:db:6f:45:de:d7:
95:5e:d0:c7:52:2b:e7:85:b4:ab:14:f6:15:2a:cb:
45:34:17:af:14:0c:bc:3b:3a:3e:7e:c4:b9:36:a7:
32:d5:f0:e1:f6:d9:bc:6c:4e:ab:a2:07:d4:4e:37:
bf:69:ec:e2:ec:c8:55:aa:fe:1c:8b:51:a6:00:c0:
3e:fa:71:a0:7b:f0:8a:7f:09:d7:e5:dc:c8:27:a2:
e4:08:17:cc:2c:79:e5:bd:6e:c8:41:83:61:91:23:
74:4d:53:49:9c:f4:11:1b:2d:9c:da:74:97:0a:40:
04:c3:84:5f:a0:2d:17:6f:99:ae:74:7d:b0:12:04:
f9:32:10:19:a7:95:c1:bf:ab:87:94:33:ff:5d:b6:
e8:e8:32:19:a9:d6:c0:bc:2e:a8:eb:cf:00:77:01:
f8:d3:d2:a0:62:67:02:09:38:f1:7a:fd:a9:68:79:
ac:f4:f4:0c:f9:de:ec:88:17:1d:66:fe:3b:72:ba:
c6:e4:d0:66:2d:eb:82:5a:23:c8:3b:a9:d9:80:86:
a6:4a:eb:22:00:4e:ec:e6:1b:60:46:90:1a:46:99:
27:f0:31:53:6b:e4:41:0d:c8:2b:31:16:57:1d:e3:
fe:ec:3c:b8:c8:7b:5d:4c:e8:0d:96:9e:90:10:f4:
5e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:11:33:B1:AC:D0:CF:ED:FE:7F:36:4E:5D:40:73:15:1F:7E:48:40
X509v3 Authority Key Identifier:
keyid:92:F4:B1:C0:BF:BA:D4:6B:81:1E:EE:56:8A:18:FB:AA:14:A9:D6:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kvSxwL-61GuBHu5Wihj7qhSp1oc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/0BEzsazQz-3-fzZOXUBzFR9-SEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/4f8514-2e20-4935-995c-a084f76c8e2b/1/kvSxwL-61GuBHu5Wihj7qhSp1oc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.107.192.0/22
Signature Algorithm: sha256WithRSAEncryption
08:30:e7:94:f7:c1:76:3c:19:28:3b:85:bb:99:92:c0:8d:7c:
e5:6f:15:4a:82:5c:ad:34:bc:9e:8e:57:ef:5a:20:1f:0c:5c:
02:8d:cd:91:e4:4e:67:a2:27:e9:20:70:8f:7e:c1:75:bb:72:
00:c3:81:d8:e2:55:e2:c2:51:8d:f7:a9:52:82:29:67:ea:59:
0b:53:bd:de:90:c8:90:1b:74:98:40:25:3d:d4:f1:99:af:e5:
ee:c5:3c:d6:02:3c:00:00:f4:26:10:3d:b3:2e:39:3f:cc:22:
09:09:22:c1:24:98:ee:f6:10:61:02:d1:15:04:79:ef:ab:f3:
46:97:a3:7e:8e:cb:e8:8d:67:16:1c:98:31:54:ca:5c:c6:9f:
59:20:3e:75:68:15:a0:6f:4e:1c:78:1d:ee:ca:ed:80:5d:df:
7c:fa:fa:9f:01:00:22:11:d3:24:ce:f3:f0:8b:5f:f1:69:2b:
42:16:81:b7:48:15:0c:2b:92:08:a9:99:96:bd:dd:dc:9d:f8:
f3:78:18:88:bb:00:62:3f:df:a3:9c:94:77:ca:8c:31:9f:c6:
50:c7:63:6e:be:b4:e4:cd:f0:33:fe:6e:44:88:96:51:cb:27:
77:0c:63:c9:cd:2b:7f:46:ce:92:95:6c:5a:8f:37:24:1f:ac:
0a:41:9f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 13:03:56 2025 by rpki-client