Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/0f39cb-6b89-4f76-9082-06483f574d12/1/EPfd9abynvqCAfK7ukyzANX9cFw.roa
File: EPfd9abynvqCAfK7ukyzANX9cFw.roa (raw, json)
Hash identifier: d/ekpRIzYSMEVYvTb3glNDwndl/8yaknRou9//9OWck=
Subject key identifier: 10:F7:DD:F5:A6:F2:9E:FA:82:01:F2:BB:BA:4C:B3:00:D5:FD:70:5C
Certificate issuer: /CN=537e8960106e9465ecc2b45bf59a31e123d39dc2
Certificate serial: 01882086B6A75BADBE06C4D5684FF4523DE3
Authority key identifier: 53:7E:89:60:10:6E:94:65:EC:C2:B4:5B:F5:9A:31:E1:23:D3:9D:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U36JYBBulGXswrRb9Zox4SPTncI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/0f39cb-6b89-4f76-9082-06483f574d12/1/EPfd9abynvqCAfK7ukyzANX9cFw.roa
Signing time: Mon 15 May 2023 17:47:59 +0000
ROA not before: Mon 15 May 2023 17:47:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 7393
IP address blocks: 213.109.159.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:20:86:b6:a7:5b:ad:be:06:c4:d5:68:4f:f4:52:3d:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=537e8960106e9465ecc2b45bf59a31e123d39dc2
Validity
Not Before: May 15 17:47:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=10f7ddf5a6f29efa8201f2bbba4cb300d5fd705c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:c4:93:71:f4:52:3f:a0:cb:37:98:38:d2:4b:
cc:f2:ee:8b:92:85:e8:f6:36:30:19:9f:88:2f:61:
df:f8:b8:1f:0d:b4:5f:ba:21:91:67:2b:b2:14:b8:
be:db:2a:90:e9:de:2f:92:44:80:83:3b:45:75:dd:
fa:dc:dd:de:70:e4:2d:d9:d1:0f:38:9b:2b:d4:68:
b2:63:4f:af:4f:c0:23:b5:e1:94:cc:49:c7:fd:15:
65:76:b9:e2:6c:6a:70:62:17:77:2c:53:0e:80:26:
8a:d7:22:72:dc:2a:c3:2e:3c:e3:06:97:e4:4f:5c:
9d:f1:d9:85:1c:14:67:55:c2:22:f8:ce:08:65:df:
c0:f1:0e:8a:ee:22:5d:06:c4:1f:fb:a6:38:46:4d:
b3:d5:56:c5:7a:74:86:c1:12:f1:29:e9:9b:fe:d7:
4f:e3:ad:a1:9a:a6:a5:24:cc:f1:63:be:c0:7e:59:
05:4f:56:e4:72:9b:2f:7e:c8:68:1c:e7:88:ad:e7:
2f:84:a2:26:94:1d:c9:aa:36:eb:03:b3:8f:78:b9:
5f:48:d9:b9:5e:ec:e5:eb:c5:ac:3c:82:53:3d:c3:
3d:2a:18:2c:82:29:a8:be:b6:ad:d2:68:f8:c2:41:
38:cf:1c:83:9c:4c:be:9e:9c:93:41:5c:d3:bf:c9:
f8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:F7:DD:F5:A6:F2:9E:FA:82:01:F2:BB:BA:4C:B3:00:D5:FD:70:5C
X509v3 Authority Key Identifier:
keyid:53:7E:89:60:10:6E:94:65:EC:C2:B4:5B:F5:9A:31:E1:23:D3:9D:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U36JYBBulGXswrRb9Zox4SPTncI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0f39cb-6b89-4f76-9082-06483f574d12/1/EPfd9abynvqCAfK7ukyzANX9cFw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/0f39cb-6b89-4f76-9082-06483f574d12/1/U36JYBBulGXswrRb9Zox4SPTncI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.109.159.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:06:07:d8:40:93:98:45:e4:ea:f2:ef:4a:39:9a:8f:da:a3:
17:47:db:c0:b0:aa:bd:98:f9:1c:5b:40:4b:7f:b7:55:ef:05:
76:58:91:28:f1:32:5d:15:8d:83:6f:44:5b:60:d8:e6:9f:18:
63:37:97:21:96:bf:b7:2a:c7:10:52:c5:c8:d8:0f:1a:cd:fe:
94:b1:c9:18:1b:a1:99:2f:c1:e6:a8:f7:80:5c:6d:76:89:fb:
d6:42:f9:2b:89:0c:ea:40:2a:66:68:be:98:ca:27:49:48:5e:
cd:d5:13:10:67:ee:69:a8:f8:a2:53:d4:8b:e7:cd:83:10:16:
31:2d:e8:4c:33:7a:76:b1:4f:ff:68:96:41:b0:6d:e5:07:79:
b2:02:b1:d0:60:94:22:57:97:c1:a8:60:a1:61:03:dc:3e:14:
e2:26:35:78:29:04:92:84:a6:49:60:59:28:e3:15:1f:82:45:
f4:31:12:1c:14:87:d1:89:20:6c:72:ac:b5:93:b4:f8:18:6a:
80:09:f6:76:d6:06:66:5b:bc:b8:e2:ce:04:40:1c:b5:ed:fa:
87:87:15:e0:2e:4e:fe:48:a6:a8:b3:8f:c7:58:d2:64:fc:10:
b7:8b:17:1b:08:4b:d8:46:3b:84:e3:19:53:78:70:8e:5c:27:
57:0a:77:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:29 2025 by rpki-client