Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/uEsJRf3tOkPI0KpHCb2e1Z4liDI.roa
File: uEsJRf3tOkPI0KpHCb2e1Z4liDI.roa (raw, json)
Hash identifier: P2YDNAYEmcYgsaED5QhjtkSdtNylnsnEw3FRd7sdM2M=
Subject key identifier: B8:4B:09:45:FD:ED:3A:43:C8:D0:AA:47:09:BD:9E:D5:9E:25:88:32
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01936CA2BE141E6CDA7F13E5B866B734EDB9
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/uEsJRf3tOkPI0KpHCb2e1Z4liDI.roa
Signing time: Wed 27 Nov 2024 08:00:24 +0000
ROA not before: Wed 27 Nov 2024 08:00:24 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 9304
IP address blocks: 163.5.12.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:6c:a2:be:14:1e:6c:da:7f:13:e5:b8:66:b7:34:ed:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Nov 27 08:00:24 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b84b0945fded3a43c8d0aa4709bd9ed59e258832
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2e:85:4d:91:f7:e3:07:30:29:81:df:1b:2d:
2b:69:95:3d:52:7c:b6:c5:f8:f1:8d:c1:4d:82:7e:
60:4c:fb:f2:de:66:c2:fa:d8:09:52:7a:64:05:b4:
5b:f6:6e:c8:ae:33:ce:a5:48:67:71:de:88:68:22:
db:fb:4c:79:33:69:dd:34:c1:7e:a8:fb:95:7f:d4:
cc:f9:f2:60:41:f7:f0:33:f3:07:a4:90:aa:7c:d1:
58:5f:5f:5e:43:fd:ce:9b:21:e8:04:63:4f:7c:a7:
cb:8c:f7:f4:9c:69:d7:51:52:2a:bf:93:a5:1d:5f:
7d:c3:eb:8a:8d:d0:6d:04:19:e0:f7:62:63:c5:7a:
c4:2a:d4:7d:90:df:71:0b:5c:1d:e0:7c:72:d6:94:
28:c5:a1:12:64:59:f9:c0:30:e2:24:6f:b7:91:3b:
e1:68:2e:be:21:99:3b:94:6b:b6:f1:ea:2d:26:cb:
2a:8a:0f:f7:bf:ac:a8:33:cb:8f:92:33:26:c3:e5:
cd:76:0a:ee:01:b2:9b:bc:81:cb:81:e8:58:73:03:
ef:42:13:5e:ca:67:5f:a6:c0:be:bf:47:5d:23:4a:
0f:79:03:e8:81:f1:7a:dc:19:76:ea:6a:47:e3:bc:
00:44:da:3e:bc:ac:2a:2a:62:8e:cf:f6:cc:81:16:
96:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:4B:09:45:FD:ED:3A:43:C8:D0:AA:47:09:BD:9E:D5:9E:25:88:32
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/uEsJRf3tOkPI0KpHCb2e1Z4liDI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.12.0/24
Signature Algorithm: sha256WithRSAEncryption
92:57:e2:4d:d2:ac:4b:ad:74:77:2a:1f:07:34:08:d1:89:3b:
31:40:e3:0b:58:04:59:36:75:1f:f3:24:6c:c0:8b:0f:e1:79:
fa:54:ee:0a:5f:00:ae:8d:b0:32:50:3c:df:52:a9:e5:93:24:
0c:39:4e:f0:d3:d4:91:a5:69:25:13:45:42:72:2a:a9:ad:ed:
61:60:7e:8f:65:83:84:89:1f:07:05:05:6f:90:b4:71:8e:34:
cf:7c:1c:c2:ac:b2:93:06:b5:17:7b:af:38:ee:1d:23:78:5c:
8e:3f:d0:37:f3:3e:c4:af:1a:3d:a4:50:f4:70:14:76:5e:64:
9b:5a:fe:27:00:0d:6c:e2:82:9b:87:34:3a:d2:36:99:0d:b4:
48:01:a4:83:b0:6f:55:96:4e:c7:fd:3f:1c:3e:08:cb:df:fc:
78:a5:84:20:f6:88:54:44:68:76:a0:2f:15:7b:1c:5d:4a:de:
39:1f:3f:07:c7:2d:07:95:b8:92:bf:21:e0:d3:71:71:21:e8:
0e:bd:92:5b:76:41:45:5b:50:c9:d2:6e:84:ed:47:de:39:6b:
7c:78:d2:dd:5a:e8:39:0c:52:71:d4:a9:c2:d3:ea:f3:e7:97:
f1:74:03:4e:35:c4:12:b6:0b:c5:2a:51:ae:09:a9:da:39:3f:
d7:75:84:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:36:49 2025 by rpki-client