Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/esC-giyunM_K9enSCaUCnZKeL4M.roa
File: esC-giyunM_K9enSCaUCnZKeL4M.roa (raw, json)
Hash identifier: Qr0/3waQdHhwdUVkbvUIUPX/T8bHxpRBEJMkf5A/L34=
Subject key identifier: 7A:C0:BE:82:2C:AE:9C:CF:CA:F5:E9:D2:09:A5:02:9D:92:9E:2F:83
Certificate issuer: /CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Certificate serial: 019425FCB18D3D03126E7D8D17A5917581CF
Authority key identifier: 68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/esC-giyunM_K9enSCaUCnZKeL4M.roa
Signing time: Thu 02 Jan 2025 07:48:25 +0000
ROA not before: Thu 02 Jan 2025 07:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197142
IP address blocks: 213.189.42.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:b1:8d:3d:03:12:6e:7d:8d:17:a5:91:75:81:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68c510fc9b865d96e3afc7c56056efad9a330c5b
Validity
Not Before: Jan 2 07:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7ac0be822cae9ccfcaf5e9d209a5029d929e2f83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:81:e1:77:2b:27:6c:1c:99:e7:b7:fd:a5:66:
21:4b:28:01:7e:dd:06:a6:b4:a4:b4:99:ed:7c:9a:
c0:a2:5d:d5:6f:22:b0:86:fe:1c:66:5f:b2:74:9d:
d3:26:18:0d:c1:ce:99:c3:b8:71:63:da:0b:63:0d:
98:61:82:57:ad:99:5d:87:a1:51:06:30:02:bc:9f:
ef:76:68:c3:cc:62:84:d5:24:91:78:95:e0:f3:2f:
66:c0:c9:39:f2:18:54:01:79:49:19:1e:65:df:a8:
e1:b7:98:d3:17:db:17:cd:e1:83:d2:4b:51:52:c4:
b3:9a:93:64:23:30:cb:f8:05:1c:d7:00:92:3e:91:
ba:79:1c:19:72:9c:ba:23:79:3d:4d:c9:fb:e7:60:
44:52:41:e4:2c:3c:40:cc:71:df:0f:d5:84:74:8a:
7e:08:ce:7b:06:0e:c2:ad:7c:7d:f9:79:fc:2b:b3:
3c:f7:cc:de:b1:3e:fc:dc:24:aa:7b:a3:dc:09:73:
f1:b3:3b:4e:d5:f8:df:5a:01:00:f7:7f:25:60:8e:
be:5d:45:53:84:9b:2f:b3:99:fa:76:48:02:20:5b:
2b:d9:d4:ab:03:be:2a:2f:82:9c:3f:9b:4b:c8:fb:
a4:05:4b:9f:7f:ae:95:c1:ea:83:b1:f5:37:5f:ce:
d3:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:C0:BE:82:2C:AE:9C:CF:CA:F5:E9:D2:09:A5:02:9D:92:9E:2F:83
X509v3 Authority Key Identifier:
keyid:68:C5:10:FC:9B:86:5D:96:E3:AF:C7:C5:60:56:EF:AD:9A:33:0C:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aMUQ_JuGXZbjr8fFYFbvrZozDFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/esC-giyunM_K9enSCaUCnZKeL4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/e0f2f6-3a8a-4daa-8271-5d665e998f6a/1/aMUQ_JuGXZbjr8fFYFbvrZozDFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.189.42.0/24
Signature Algorithm: sha256WithRSAEncryption
63:cd:0d:1e:f9:39:56:68:7f:2e:89:b2:86:00:d3:d2:32:15:
15:71:47:d2:34:5a:c8:0d:58:7a:90:eb:cb:35:ea:58:21:8d:
c1:6e:75:3d:88:23:57:4e:60:be:81:10:f1:20:46:41:4d:56:
dd:71:9d:0b:e6:27:18:6d:25:f4:3d:9f:3f:cc:70:a3:35:70:
0e:c0:64:f4:5a:ed:e0:72:99:a0:f7:36:12:00:be:e1:43:71:
6a:30:f4:9d:76:62:03:42:44:73:af:bc:92:4d:e2:9d:92:55:
48:4f:f2:e2:95:bc:b7:82:65:8b:ba:11:22:ca:a4:75:89:b9:
67:80:0f:f0:ff:27:00:62:39:79:23:d1:6d:1c:d0:f2:86:06:
b5:90:81:f4:6a:18:c4:68:1a:70:d8:11:60:8b:a0:31:04:3e:
50:5e:d9:63:b6:40:2a:6e:99:82:a1:7c:6c:13:46:65:bb:78:
f8:97:ac:ea:ea:5e:36:30:99:f8:da:bc:72:d4:92:c4:e5:b2:
dc:db:bd:99:64:9d:dd:62:6a:9b:98:2a:a1:99:fb:4d:9e:11:
1f:d5:e9:73:04:03:81:3d:eb:a1:7a:8a:f2:56:c8:f5:35:62:
62:a4:72:31:37:86:33:1f:76:ec:ab:ff:c1:07:a5:83:ff:db:
fc:60:9c:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:12 2025 by rpki-client