Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/cd410f-9de4-4d82-8091-59e792fe14cc/1/aVzsVZaNCb_ru7hWF7V7w83dgy4.roa
File: aVzsVZaNCb_ru7hWF7V7w83dgy4.roa (raw, json)
Hash identifier: daf0dmciUF7Zop5cymcw0kQetzV7iycphgOjYU7caQ0=
Subject key identifier: 69:5C:EC:55:96:8D:09:BF:EB:BB:B8:56:17:B5:7B:C3:CD:DD:83:2E
Certificate issuer: /CN=334b09743ed2afd6afb47c58360ee3112a95cd34
Certificate serial: 018D048B66A9C3F9E2387C512683490887DA
Authority key identifier: 33:4B:09:74:3E:D2:AF:D6:AF:B4:7C:58:36:0E:E3:11:2A:95:CD:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M0sJdD7Sr9avtHxYNg7jESqVzTQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/cd410f-9de4-4d82-8091-59e792fe14cc/1/aVzsVZaNCb_ru7hWF7V7w83dgy4.roa
Signing time: Sat 13 Jan 2024 20:37:40 +0000
ROA not before: Sat 13 Jan 2024 20:37:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 205053
IP address blocks: 213.134.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:04:8b:66:a9:c3:f9:e2:38:7c:51:26:83:49:08:87:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=334b09743ed2afd6afb47c58360ee3112a95cd34
Validity
Not Before: Jan 13 20:37:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=695cec55968d09bfebbbb85617b57bc3cddd832e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:77:b4:fb:16:4a:4c:43:9c:f1:52:15:1d:08:
37:d5:0f:8d:76:2c:a2:e8:86:3b:a1:7c:5e:62:a9:
e4:1f:f7:b3:de:38:4d:4e:92:b0:26:ac:e0:79:42:
55:af:a0:da:51:bc:0f:25:60:6d:22:61:55:37:ff:
c9:85:e6:b6:d6:6c:6d:58:ed:48:c5:9c:be:b4:63:
15:35:d0:ad:1f:d3:68:2c:18:96:88:3e:77:1f:21:
2e:9e:68:4a:1a:70:85:77:37:e7:28:5a:1d:27:cd:
b1:c2:c0:27:a9:d6:db:56:73:d0:f1:ed:c9:25:5f:
91:2d:07:c8:6f:ec:fa:8d:af:94:84:80:f8:53:a4:
78:7f:6c:b3:2e:c2:b9:6e:1a:e8:c6:24:b0:9d:0e:
0f:cd:3e:ba:fa:48:05:1a:ff:4f:25:42:db:f2:1b:
3b:d4:fd:87:57:b4:16:8e:55:a1:c4:60:1d:f9:19:
29:82:3e:45:bb:f8:a2:db:2a:17:dd:a2:82:d6:af:
87:47:81:69:5f:b6:62:e7:15:67:38:e2:1b:5a:6e:
d5:a6:70:33:61:c4:2c:ff:01:e6:bb:e9:42:72:0a:
ea:d4:b6:a6:47:0e:b4:55:9c:ff:4e:e9:fb:26:27:
fe:94:5d:8b:14:35:4b:ce:1c:1d:68:96:ad:00:a5:
40:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5C:EC:55:96:8D:09:BF:EB:BB:B8:56:17:B5:7B:C3:CD:DD:83:2E
X509v3 Authority Key Identifier:
keyid:33:4B:09:74:3E:D2:AF:D6:AF:B4:7C:58:36:0E:E3:11:2A:95:CD:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M0sJdD7Sr9avtHxYNg7jESqVzTQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cd410f-9de4-4d82-8091-59e792fe14cc/1/aVzsVZaNCb_ru7hWF7V7w83dgy4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/cd410f-9de4-4d82-8091-59e792fe14cc/1/M0sJdD7Sr9avtHxYNg7jESqVzTQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.134.5.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:26:db:78:d5:bb:a9:87:ac:52:72:bd:d2:94:f9:26:65:17:
bd:e6:6c:48:84:c7:5d:9d:76:2d:af:32:d6:7f:8f:c5:7b:b7:
35:6b:3b:4b:29:34:b8:e9:a7:c1:7c:2f:18:ae:c8:2f:c5:a3:
66:10:79:af:31:b5:9b:c4:e4:56:cf:08:b2:50:d3:bf:ed:d1:
6e:11:86:2d:ee:96:bf:55:79:42:99:29:d5:a3:3a:14:15:df:
b4:62:a1:5f:22:6e:3c:bc:c0:dc:02:e7:fa:10:b1:05:6c:0b:
27:d5:66:a2:bc:f1:ed:0a:84:d2:ee:e4:8c:69:a2:5a:cd:91:
c5:45:38:b3:03:7b:ce:c8:1a:a6:23:b7:eb:ad:06:03:5f:8e:
8c:7c:06:74:c5:aa:82:3d:01:01:02:e9:b7:15:08:ce:d2:c4:
45:1e:29:8e:b3:02:22:29:12:08:b3:f5:a3:1e:19:e7:f9:43:
0d:d4:c9:ad:a8:d6:d3:c1:8c:31:03:1a:f8:ea:3d:ee:06:f0:
01:a6:37:f4:ac:f4:2d:e6:94:ac:4d:34:45:9a:9e:b6:7c:95:
32:3d:e8:59:69:86:a1:53:07:68:c2:a9:44:7a:df:e5:79:a9:
d3:06:80:17:5f:74:60:b8:2b:8e:e2:d7:4e:48:d3:fd:1a:ef:
d3:8b:d4:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:15 2025 by rpki-client