Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/848966-ea61-4644-bbc2-9b2bc9907d46/1/AV28v3kjwjBzCBKDAtI5r7U9SwY.roa
File: AV28v3kjwjBzCBKDAtI5r7U9SwY.roa (raw, json)
Hash identifier: 8+sjT9G07Bf3extcGkfsHvWwdHrjyUKvRuZ/Ejjokvs=
Subject key identifier: 01:5D:BC:BF:79:23:C2:30:73:08:12:83:02:D2:39:AF:B5:3D:4B:06
Certificate issuer: /CN=018b45ed4c21fd8dce94f134d713aea3c6275c69
Certificate serial: 0189654A8F9DA6BEAAC74C08D879BFE51FD0
Authority key identifier: 01:8B:45:ED:4C:21:FD:8D:CE:94:F1:34:D7:13:AE:A3:C6:27:5C:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AYtF7Uwh_Y3OlPE01xOuo8YnXGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/848966-ea61-4644-bbc2-9b2bc9907d46/1/AV28v3kjwjBzCBKDAtI5r7U9SwY.roa
Signing time: Mon 17 Jul 2023 19:18:52 +0000
ROA not before: Mon 17 Jul 2023 19:18:52 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 62240
IP address blocks: 176.116.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:65:4a:8f:9d:a6:be:aa:c7:4c:08:d8:79:bf:e5:1f:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=018b45ed4c21fd8dce94f134d713aea3c6275c69
Validity
Not Before: Jul 17 19:18:52 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=015dbcbf7923c2307308128302d239afb53d4b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:70:8b:28:ce:4a:9f:6f:42:4a:68:fc:31:cb:
ae:ea:75:68:89:8c:4e:85:ff:ef:8e:28:eb:88:12:
94:fa:7d:71:1a:6a:24:38:73:8b:8b:16:5c:1e:78:
0d:ce:d0:de:50:05:42:4a:6f:00:88:7c:0d:80:17:
8b:a6:42:23:3f:f3:be:9f:df:61:cf:1e:43:a2:4c:
fe:87:14:ca:b4:03:33:02:fb:3e:64:7e:60:40:45:
44:72:bd:b9:51:f8:9c:01:11:97:fc:f1:dc:9c:a8:
94:0d:74:b8:b9:8a:7f:d3:61:ed:59:28:5a:73:b0:
5c:f2:b8:ba:ac:40:1d:89:95:94:f2:1e:0f:83:f3:
dd:b7:d2:52:b7:5a:c8:27:0d:0e:fd:20:fd:c2:10:
62:cd:08:46:8b:d4:a0:36:37:a3:c6:bc:8a:94:cc:
71:a2:43:4e:cb:63:d9:0a:71:9a:9a:77:88:42:e4:
ad:98:4d:a5:4a:cc:76:57:77:19:e7:bd:56:bf:86:
1a:4e:62:47:be:ee:96:1a:c2:98:79:4b:74:c1:34:
b0:2c:7f:6f:cd:4d:37:1a:9f:5a:b2:b5:3a:d0:c2:
6b:71:8b:be:c2:d5:0c:ba:64:1e:51:ce:70:9f:e1:
b1:77:c4:85:dd:92:57:70:c0:de:60:64:2f:5c:c0:
d4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:5D:BC:BF:79:23:C2:30:73:08:12:83:02:D2:39:AF:B5:3D:4B:06
X509v3 Authority Key Identifier:
keyid:01:8B:45:ED:4C:21:FD:8D:CE:94:F1:34:D7:13:AE:A3:C6:27:5C:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AYtF7Uwh_Y3OlPE01xOuo8YnXGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/848966-ea61-4644-bbc2-9b2bc9907d46/1/AV28v3kjwjBzCBKDAtI5r7U9SwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/848966-ea61-4644-bbc2-9b2bc9907d46/1/AYtF7Uwh_Y3OlPE01xOuo8YnXGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.25.0/24
Signature Algorithm: sha256WithRSAEncryption
bb:33:a9:89:dd:66:17:4c:b2:e9:35:d3:c8:34:26:5b:fb:0d:
3a:87:76:23:fb:8c:02:00:e2:df:42:80:7e:f8:2d:b4:84:91:
2b:ba:0a:a7:e0:27:bc:2a:1e:7b:84:b2:82:ae:4f:b0:ee:56:
2f:37:1f:f8:32:4d:77:00:78:43:49:b0:42:37:fb:ce:d3:a0:
3d:d0:70:32:35:e4:4c:b6:b2:09:77:77:a0:5c:06:40:61:b6:
89:c3:27:58:e0:ca:d2:07:73:49:4c:e3:7f:07:41:33:3a:52:
eb:6f:b1:3c:01:37:35:44:54:dd:2e:a2:b0:e1:7c:ce:57:80:
69:3a:4d:c4:47:72:5a:45:15:d1:f9:4f:e0:ab:fb:89:11:32:
6b:e6:a3:c7:ba:60:98:41:0e:55:fe:db:2d:ef:0e:3c:c2:e7:
c4:7d:be:1a:18:e6:50:87:ca:ee:da:58:d5:94:33:53:5c:2f:
c1:da:aa:85:e6:01:9b:42:d7:72:93:d2:e0:22:7c:0d:0f:a2:
3a:c6:24:b1:97:c3:e6:e0:51:77:9e:ee:d8:a2:a6:96:b1:04:
71:b6:cc:8a:8c:27:4e:91:4e:3f:46:94:e7:13:f7:fe:0e:45:
3f:69:51:22:45:77:2d:4e:52:50:75:dd:ae:8e:bd:32:05:f0:
a4:e1:e2:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:20 2025 by rpki-client