Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/gMxwz_Lvfx1K4vHSrq8NCMqZmz8.roa
File: gMxwz_Lvfx1K4vHSrq8NCMqZmz8.roa (raw, json)
Hash identifier: tBKWBAi0rnJnUAIMchMvZ6VO9gIIwJEHjIEnPp0gVOQ=
Subject key identifier: 80:CC:70:CF:F2:EF:7F:1D:4A:E2:F1:D2:AE:AF:0D:08:CA:99:9B:3F
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01936C9C1BE045F55492318C3A83A47F5144
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/gMxwz_Lvfx1K4vHSrq8NCMqZmz8.roa
Signing time: Wed 27 Nov 2024 07:53:10 +0000
ROA not before: Wed 27 Nov 2024 07:53:10 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 63023
IP address blocks: 163.5.53.0/24 maxlen: 24
163.5.79.0/24 maxlen: 24
163.5.161.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6c:9c:1b:e0:45:f5:54:92:31:8c:3a:83:a4:7f:51:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 27 07:53:10 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=80cc70cff2ef7f1d4ae2f1d2aeaf0d08ca999b3f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:f8:68:d1:b1:d0:df:35:a2:86:67:fb:73:7f:
4d:f2:53:2d:51:0c:b2:a4:bf:7f:a1:cb:ed:92:5c:
a1:a7:c0:b3:3d:0e:4f:d1:26:de:de:31:34:b6:d4:
db:64:86:b5:df:94:3d:9c:d2:4a:5c:d6:8f:61:d5:
03:5c:79:dd:72:3b:32:11:b2:98:01:11:a8:df:07:
b7:f1:5e:94:d9:c4:83:1b:37:84:85:72:04:3f:8e:
f4:40:0e:29:a9:6c:ae:20:47:13:fc:1e:44:43:95:
48:67:0e:bf:fc:93:86:33:c2:3d:84:95:4b:2a:6c:
9a:c0:30:86:64:fa:3e:21:7b:23:be:b0:06:17:fb:
bb:f0:b1:ef:21:8f:29:09:0d:90:e8:e5:d5:4d:7a:
4a:88:21:19:8c:52:c1:02:e1:b4:10:33:e1:25:09:
13:3b:c1:e5:0a:0b:a3:1e:c3:3e:26:a1:c3:27:2f:
db:11:36:59:30:b0:c0:a0:51:9d:54:a6:8c:44:f6:
8b:b4:3e:20:67:07:d4:49:c0:2a:6d:29:3e:1c:46:
50:9a:10:65:a7:74:74:7f:9f:71:29:28:ae:42:42:
6a:e4:37:0e:a8:c7:c6:27:16:87:04:3f:b2:b8:86:
64:30:72:5e:ff:05:40:c1:cf:a6:7d:15:de:5b:22:
13:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:CC:70:CF:F2:EF:7F:1D:4A:E2:F1:D2:AE:AF:0D:08:CA:99:9B:3F
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/gMxwz_Lvfx1K4vHSrq8NCMqZmz8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.53.0/24
163.5.79.0/24
163.5.161.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:e2:c1:12:a7:c8:f9:e3:7d:79:7b:4c:72:1a:6f:c5:66:99:
64:40:07:7e:35:a1:19:f6:e2:f3:e4:1d:30:f8:69:2b:65:6a:
fa:2e:ce:ea:f1:63:f9:ad:e9:ee:21:66:8e:92:bd:1d:6e:ac:
2b:1c:e3:61:1d:77:c4:fb:df:26:4c:72:44:42:21:65:03:6e:
a9:05:52:b6:6e:62:82:61:fe:ab:b7:ea:33:b8:e8:79:72:45:
f7:74:c6:3d:22:05:7d:29:e3:75:84:f1:a2:b9:08:34:cf:68:
1c:e5:0e:d2:fd:f9:1a:a5:4a:03:14:09:92:fb:bb:97:20:dc:
78:4a:66:58:53:cf:01:55:b3:81:ac:e0:78:63:57:fa:f0:48:
47:d0:9c:3b:ac:c4:e8:2a:9d:14:c6:11:9b:d4:68:41:a8:2b:
57:29:3e:37:e4:b2:f6:03:36:8a:50:e1:4e:bb:aa:b8:2e:9e:
59:34:f5:f7:1b:56:3d:e8:cc:f4:8c:4c:ee:7a:17:de:65:a9:
2d:42:fa:19:d6:69:95:de:4b:96:5c:45:b0:cc:52:bc:a8:65:
35:56:9e:08:cc:66:ee:65:01:43:c0:65:73:59:72:3c:cc:5e:
76:72:50:2d:e7:40:c0:d5:c1:cb:5b:03:46:dd:94:03:97:6e:
ea:d1:52:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:57:42 2025 by rpki-client