Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/7e90ac-90cf-4523-8f97-31660c22d19e/1/xHaucpgtSJqvYDWEQH_jghu3SHs.roa
File: xHaucpgtSJqvYDWEQH_jghu3SHs.roa (raw, json)
Hash identifier: 7WTdK2upF+9XygbepRb7SlbpqhR7M3j31Q2B96zjyEA=
Subject key identifier: C4:76:AE:72:98:2D:48:9A:AF:60:35:84:40:7F:E3:82:1B:B7:48:7B
Certificate issuer: /CN=cb4d83a67fb35af88de83c1304c6743a51531361
Certificate serial: 019423D6BB1DAB6665CB5625D6DF0D249E71
Authority key identifier: CB:4D:83:A6:7F:B3:5A:F8:8D:E8:3C:13:04:C6:74:3A:51:53:13:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y02Dpn-zWviN6DwTBMZ0OlFTE2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/7e90ac-90cf-4523-8f97-31660c22d19e/1/xHaucpgtSJqvYDWEQH_jghu3SHs.roa
Signing time: Wed 01 Jan 2025 21:47:42 +0000
ROA not before: Wed 01 Jan 2025 21:47:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209328
IP address blocks: 176.97.50.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:bb:1d:ab:66:65:cb:56:25:d6:df:0d:24:9e:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb4d83a67fb35af88de83c1304c6743a51531361
Validity
Not Before: Jan 1 21:47:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c476ae72982d489aaf603584407fe3821bb7487b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:79:b0:79:52:38:88:c5:aa:cf:0c:82:90:3d:
5b:70:49:f7:bb:44:f4:f1:f9:05:73:57:f0:2a:c6:
41:bb:06:f4:bb:00:e6:14:97:02:5c:84:a7:1a:4e:
97:8f:55:12:8e:07:be:66:a0:76:c2:1e:60:c4:dc:
80:8a:83:56:8b:cc:72:66:83:57:0b:82:d5:4e:70:
bd:69:7c:21:43:ce:b5:c1:d1:23:59:9d:c0:f0:03:
5f:5d:27:ee:5a:88:a9:12:86:6f:a4:12:9a:ad:de:
a8:17:f0:0f:51:0e:6b:67:8d:f6:ee:a1:ff:03:f9:
4a:a1:e3:9f:e1:8f:29:cc:1e:1a:32:18:9b:74:0a:
38:1e:e5:2f:cd:fd:0a:df:4f:e7:38:a7:de:db:c6:
ce:9b:78:f9:69:4d:2c:6d:7c:56:de:3c:49:d9:f7:
5e:96:f8:c6:58:81:f7:47:75:d9:68:0f:85:dc:45:
6e:75:a5:67:c2:8f:39:70:b8:42:9b:41:e5:d3:ca:
ee:5d:43:c2:6c:91:b6:c6:3a:51:62:e7:68:a7:e1:
6d:6c:cf:3e:f2:11:56:dc:dd:8d:85:cf:86:ae:21:
10:4c:a8:24:64:a6:03:3a:18:99:d0:f5:f6:32:39:
aa:0d:14:05:d1:80:4e:f5:6b:a6:45:f3:b8:35:84:
db:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:76:AE:72:98:2D:48:9A:AF:60:35:84:40:7F:E3:82:1B:B7:48:7B
X509v3 Authority Key Identifier:
keyid:CB:4D:83:A6:7F:B3:5A:F8:8D:E8:3C:13:04:C6:74:3A:51:53:13:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y02Dpn-zWviN6DwTBMZ0OlFTE2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/7e90ac-90cf-4523-8f97-31660c22d19e/1/xHaucpgtSJqvYDWEQH_jghu3SHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/7e90ac-90cf-4523-8f97-31660c22d19e/1/y02Dpn-zWviN6DwTBMZ0OlFTE2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.50.0/24
Signature Algorithm: sha256WithRSAEncryption
32:39:6c:dc:31:c7:97:5e:85:28:56:5c:42:11:81:22:13:e6:
98:a6:1e:25:64:02:f2:25:1a:62:48:c6:ee:d6:e3:7b:dc:9b:
41:99:6e:93:19:d2:ed:53:fb:47:c4:9b:cc:9a:14:6b:ab:a7:
80:36:36:f7:f1:9c:e4:96:5e:09:f9:0a:82:7e:7f:b9:d6:c5:
c1:4b:5e:69:fa:d3:59:6d:74:da:9e:8d:20:9e:1c:6e:62:08:
21:7b:29:f1:d7:fa:b2:ee:db:c8:2b:42:d9:a3:c1:d3:e5:f8:
ee:d1:31:fe:af:a3:44:95:62:f1:15:ab:02:12:a3:8b:77:8e:
13:74:c6:78:e7:43:9e:73:df:1d:30:7a:7c:01:55:df:bc:68:
f2:29:b3:bb:16:6d:7e:a7:82:59:37:9b:dd:d6:22:35:49:27:
4a:ae:e8:25:1e:19:89:5d:4e:34:19:82:03:c0:03:6e:09:49:
e1:6f:62:31:6e:83:08:87:6f:39:ed:8c:5f:a2:21:9d:07:9f:
16:ae:5f:45:18:f5:97:8b:a4:71:a7:52:ea:fc:24:ad:0e:52:
03:f5:d6:b0:21:17:3f:ff:56:2d:90:61:79:cc:38:c3:d0:99:
c7:b2:45:e2:84:41:08:c3:52:40:b3:89:fd:6e:7e:d1:86:a3:
f9:86:80:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:32:27 2025 by rpki-client