Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/cEAEkUn_R5oJdVPOOwFsLwqppQ4.roa
File: cEAEkUn_R5oJdVPOOwFsLwqppQ4.roa (raw, json)
Hash identifier: MVvF6eKKtoRO8xVyqes38yT8sTj5+e8fxHK/QBFqwco=
Subject key identifier: 70:40:04:91:49:FF:47:9A:09:75:53:CE:3B:01:6C:2F:0A:A9:A5:0E
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 0191DFFEE313C350F8327EB1B1E93C0738DB
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/cEAEkUn_R5oJdVPOOwFsLwqppQ4.roa
Signing time: Wed 11 Sep 2024 07:31:49 +0000
ROA not before: Wed 11 Sep 2024 07:31:49 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 10753
IP address blocks: 185.34.162.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:df:fe:e3:13:c3:50:f8:32:7e:b1:b1:e9:3c:07:38:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Sep 11 07:31:49 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7040049149ff479a097553ce3b016c2f0aa9a50e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7a:bc:1c:8c:37:fa:33:f6:20:4a:b2:91:73:
e1:61:4e:a6:6f:78:1d:f2:6e:34:ff:e4:33:19:f5:
84:5c:87:77:bc:82:ef:26:7c:4a:57:7c:a6:4c:cb:
50:f3:cf:be:be:f2:dd:b3:84:dd:3a:7a:fa:39:b4:
e6:79:78:e7:df:5c:d9:c1:69:0e:1f:a0:90:0a:66:
23:20:82:e8:68:b6:f7:00:9b:0c:7c:15:8e:fa:cd:
36:1f:13:45:22:19:ae:70:10:2e:a2:db:d7:75:8b:
82:dd:74:7b:97:11:87:1a:f9:60:9b:3d:59:2e:17:
78:b6:eb:b8:84:60:c1:69:c2:79:40:b0:7e:19:66:
04:c6:36:34:e4:a8:12:89:af:15:ee:5b:63:37:ab:
bd:ee:eb:eb:9b:7d:09:26:02:33:70:65:08:9a:9f:
f5:c7:f4:f1:ad:01:68:1b:9a:73:23:0a:08:18:a9:
ff:13:16:2a:ed:ce:5b:8e:2a:b1:ae:03:3a:3a:16:
33:6c:07:29:56:04:e5:63:a9:c0:92:11:f3:14:b5:
79:1b:78:08:4f:86:4f:6f:9e:43:2e:5c:42:86:0b:
1b:2c:c6:a8:9b:0d:b1:cf:a9:f6:7a:bd:30:82:86:
4b:c1:f2:b5:ae:d6:92:e3:76:3c:98:a6:b0:d4:21:
ff:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:40:04:91:49:FF:47:9A:09:75:53:CE:3B:01:6C:2F:0A:A9:A5:0E
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/cEAEkUn_R5oJdVPOOwFsLwqppQ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.34.162.0/23
Signature Algorithm: sha256WithRSAEncryption
4a:f8:b3:f3:fe:81:7c:da:df:80:02:60:38:78:16:e3:6b:e6:
d8:13:85:6b:ba:a7:41:3f:41:62:f8:c2:d5:9e:95:42:d4:c0:
d5:fc:e7:ec:82:9b:4e:2d:15:39:72:44:e9:84:03:52:6f:8b:
bd:7e:94:57:87:d5:96:33:b7:17:7e:b9:d1:1c:01:a6:5c:79:
f4:d7:46:43:4f:e2:8c:06:e5:27:4e:7c:9b:ff:89:78:f4:87:
e4:cd:6f:2a:17:14:ba:52:c0:12:f9:42:b5:62:15:44:68:43:
74:2a:94:25:69:fe:47:dd:e4:1e:63:ba:dc:6c:01:a4:33:5c:
b1:5d:b2:18:3f:93:3c:b2:79:0f:24:b5:3f:ce:d8:aa:22:d3:
a1:36:43:77:ca:ef:8e:bb:63:bc:06:4b:59:ba:a8:9f:09:4e:
22:d9:76:97:03:58:14:0c:52:8c:fa:2d:35:23:8a:46:6b:4e:
53:27:93:9a:2e:87:80:6f:17:8d:65:8e:f1:ac:9d:5d:03:4e:
f1:fa:40:ff:9b:b1:06:c9:ab:df:e0:76:c7:97:6a:9e:9e:97:
fa:92:4d:83:3c:b6:43:b5:bd:4f:b0:31:5d:60:2d:25:aa:15:
c9:79:d6:75:a3:0f:79:c5:9a:b7:28:b1:b5:75:9b:45:9d:dc:
7e:7a:8d:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:51 2025 by rpki-client