Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/cLWrsRnGMXP9vGXpqMibrmbIrFg.roa
File: cLWrsRnGMXP9vGXpqMibrmbIrFg.roa (raw, json)
Hash identifier: XmRHaQFxPrEAO8IMrSptcXMZAs1h8oPUGFGCJgstt/c=
Subject key identifier: 70:B5:AB:B1:19:C6:31:73:FD:BC:65:E9:A8:C8:9B:AE:66:C8:AC:58
Certificate issuer: /CN=17802133d98b655a9f5411b700ec79347e1eb490
Certificate serial: 01837D87B3B0B6913009700CDF023C7AC646
Authority key identifier: 17:80:21:33:D9:8B:65:5A:9F:54:11:B7:00:EC:79:34:7E:1E:B4:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F4AhM9mLZVqfVBG3AOx5NH4etJA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/cLWrsRnGMXP9vGXpqMibrmbIrFg.roa
Signing time: Tue 27 Sep 2022 05:59:48 +0000
ROA not before: Tue 27 Sep 2022 05:59:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 176.97.194.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7d:87:b3:b0:b6:91:30:09:70:0c:df:02:3c:7a:c6:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17802133d98b655a9f5411b700ec79347e1eb490
Validity
Not Before: Sep 27 05:59:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70b5abb119c63173fdbc65e9a8c89bae66c8ac58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:ce:f9:df:c2:0d:10:df:6f:8b:4b:a8:da:4a:
b8:4e:6b:d4:68:6d:58:e9:92:99:e0:0f:17:db:bf:
d1:45:7f:e1:ae:d8:dc:90:6f:9c:43:ab:67:9e:10:
ba:40:9a:10:66:1f:99:f5:aa:ad:bf:b9:44:c1:71:
d7:86:64:fb:13:d3:a2:e1:3d:f0:96:a1:66:d7:a6:
ae:c5:53:df:72:ae:72:d7:b7:fb:25:a9:da:c3:91:
1b:b6:d8:3f:5c:ab:a1:ad:05:78:fd:3f:be:88:b8:
fc:19:77:c7:47:bd:49:df:15:e0:5f:48:e9:dc:5b:
c2:f5:ae:6f:dd:41:d4:18:07:2e:80:ec:13:a3:29:
80:1b:19:b5:6e:4e:8c:e8:b7:65:02:55:4d:1b:55:
52:53:05:d8:96:04:14:36:fb:d9:60:b6:d2:30:c9:
c4:9b:7d:1b:c4:00:00:30:a8:ab:8f:bb:9e:09:27:
44:30:0a:c4:3f:b7:26:8d:15:44:30:38:54:4a:a6:
d1:0b:6c:70:87:32:12:78:49:0d:70:df:87:48:14:
62:8a:e1:95:5d:3d:34:4f:a2:ad:13:fc:ed:41:62:
01:34:d4:28:3e:14:4c:16:4f:fe:16:5c:89:bc:2f:
06:41:6a:6e:33:33:92:fd:83:5a:1e:da:3e:bf:61:
a2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:B5:AB:B1:19:C6:31:73:FD:BC:65:E9:A8:C8:9B:AE:66:C8:AC:58
X509v3 Authority Key Identifier:
keyid:17:80:21:33:D9:8B:65:5A:9F:54:11:B7:00:EC:79:34:7E:1E:B4:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F4AhM9mLZVqfVBG3AOx5NH4etJA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/cLWrsRnGMXP9vGXpqMibrmbIrFg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/cd820e-a988-48e3-b944-9fe327dabe64/1/F4AhM9mLZVqfVBG3AOx5NH4etJA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.194.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:a9:97:70:c1:5f:b7:03:29:44:a5:fd:3c:e0:02:ff:62:ca:
b2:ed:4e:b4:24:4f:f5:cf:95:54:85:9c:91:9c:9c:cd:c4:14:
fe:2d:41:e6:d5:3e:dd:45:0c:75:a2:29:fe:05:98:7c:95:4c:
cc:d4:dd:b7:8e:8b:72:a1:9c:81:b7:db:be:eb:26:d8:7e:bc:
7d:b1:97:3c:8a:2a:84:b7:29:cd:c0:50:76:5f:87:b1:ca:0e:
5c:b8:fd:79:1b:f8:b3:a1:f1:2d:50:5e:0b:0a:15:db:bb:ce:
76:84:e5:a6:53:ae:31:7d:11:40:56:58:37:80:d9:54:d2:42:
fe:9b:6d:93:95:70:98:52:47:38:66:65:61:ea:1f:40:1f:77:
bd:7c:1d:c6:51:ee:b2:e3:42:99:f2:06:fa:16:db:16:42:d2:
d4:33:a9:e6:84:ef:c5:86:28:0c:0b:dd:15:8c:f8:f5:d2:7a:
99:57:14:9d:b0:29:66:e7:12:8f:6e:b5:38:a9:1d:b3:bc:70:
56:5c:c8:4e:b3:e0:a0:1a:7e:72:e7:e2:6c:6d:a1:35:1a:ef:
be:fb:38:20:ff:7b:1e:87:32:f7:83:b6:dd:58:58:7a:e6:1a:
bc:e4:eb:db:01:8f:99:06:9a:93:1c:87:8f:c7:e5:a2:fa:d3:
72:a3:05:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:36 2025 by rpki-client