Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/84abd2-f594-448e-9f00-404885ad50dc/1/yY-TkWMGbgiVMkpE71XUFMskavw.roa
File: yY-TkWMGbgiVMkpE71XUFMskavw.roa (raw, json)
Hash identifier: Mijj0RnWOQb2yVxH+W8iM63cHV290HL8ySlv0xpPUXc=
Subject key identifier: C9:8F:93:91:63:06:6E:08:95:32:4A:44:EF:55:D4:14:CB:24:6A:FC
Certificate issuer: /CN=7bf3fb694f38ae79d2476cc4d3e4f8171579cc58
Certificate serial: 01856EA6A7D85E88FA26E72E5F3C13BE67D2
Authority key identifier: 7B:F3:FB:69:4F:38:AE:79:D2:47:6C:C4:D3:E4:F8:17:15:79:CC:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/e_P7aU84rnnSR2zE0-T4FxV5zFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/84abd2-f594-448e-9f00-404885ad50dc/1/yY-TkWMGbgiVMkpE71XUFMskavw.roa
Signing time: Sun 01 Jan 2023 18:44:53 +0000
ROA not before: Sun 01 Jan 2023 18:44:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 201502
IP address blocks: 176.124.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6e:a6:a7:d8:5e:88:fa:26:e7:2e:5f:3c:13:be:67:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7bf3fb694f38ae79d2476cc4d3e4f8171579cc58
Validity
Not Before: Jan 1 18:44:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c98f939163066e0895324a44ef55d414cb246afc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b9:a0:c6:e5:a8:c5:c0:62:0c:16:b5:7d:53:
fa:df:80:af:ed:38:19:59:9e:39:46:af:ee:24:44:
3d:ef:78:f3:fb:89:c5:ad:76:97:82:d8:f7:5c:04:
fb:9f:6f:05:96:19:7b:a2:50:37:7f:4e:4b:22:51:
58:23:72:9a:7c:1d:f7:38:24:1c:d6:0d:5e:0a:f2:
bc:ba:33:f9:ec:5a:37:49:2a:83:ad:7d:75:f5:f1:
87:cf:e8:73:6f:15:c5:21:0c:c0:b8:61:2e:38:ce:
f9:5f:42:f6:80:5a:80:9c:1d:ca:cd:d0:38:92:d5:
5f:e9:5f:b3:02:86:77:c8:b6:0d:c7:6d:d8:a9:aa:
af:cf:7a:91:69:e7:9e:e4:7f:08:5d:19:dd:4c:b6:
44:8d:71:fd:11:ab:d0:20:03:9e:3e:ea:59:d8:f7:
60:d3:b4:59:c3:5f:c0:a6:75:88:42:7b:9e:04:53:
f1:1a:b4:1b:b3:31:fb:21:da:42:c1:8e:a1:19:6a:
a1:87:48:4e:48:9c:1b:e4:1c:97:5f:12:2c:8c:ca:
00:25:1e:06:66:ee:6d:89:99:6f:9c:4f:35:03:09:
44:d4:ff:2d:f2:b6:3a:f6:af:f1:c5:58:ac:23:67:
28:26:18:04:10:f4:68:b4:43:b8:f6:fa:f6:ee:b7:
c3:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:8F:93:91:63:06:6E:08:95:32:4A:44:EF:55:D4:14:CB:24:6A:FC
X509v3 Authority Key Identifier:
keyid:7B:F3:FB:69:4F:38:AE:79:D2:47:6C:C4:D3:E4:F8:17:15:79:CC:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/e_P7aU84rnnSR2zE0-T4FxV5zFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84abd2-f594-448e-9f00-404885ad50dc/1/yY-TkWMGbgiVMkpE71XUFMskavw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/84abd2-f594-448e-9f00-404885ad50dc/1/e_P7aU84rnnSR2zE0-T4FxV5zFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.124.114.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:3f:34:97:de:65:2a:13:f0:9c:28:13:66:de:d6:ab:60:4e:
bb:f2:3d:1a:26:66:b6:96:8d:d3:f7:b5:e7:dd:bc:61:4b:bf:
3c:40:03:38:6a:97:ed:1c:2b:2e:9b:78:b2:bb:33:39:66:9c:
7d:8f:5f:24:8f:8d:cd:6b:31:9e:db:09:dc:37:9a:f4:74:07:
c9:d6:48:ca:78:fc:7d:25:06:ba:1a:75:24:3b:d8:b9:ac:d8:
e4:24:40:20:be:41:6b:5b:25:80:7d:65:4e:e5:79:2c:99:46:
43:60:12:32:b7:96:07:d9:22:0b:a3:4e:45:66:45:d4:25:20:
16:6f:3c:7a:42:d2:48:5b:fd:96:3e:55:de:1d:d4:2b:6b:d7:
6d:43:ef:8c:cc:87:75:15:65:f7:8d:0f:34:21:9c:f8:80:a7:
40:23:ae:95:0c:d8:28:a4:2f:18:3e:d1:98:ad:8e:69:93:a3:
97:34:dc:db:70:9c:63:06:4a:51:41:fc:e2:f2:e8:30:a6:49:
cc:4d:30:d3:f2:b8:3a:db:b2:04:d9:62:73:3a:fc:7a:27:f7:
20:ac:f2:6f:70:9a:9e:2f:02:87:9b:ad:b7:6a:79:71:69:00:
ca:59:3c:f0:ae:6c:73:12:69:a8:ea:8b:50:c8:5f:76:dd:be:
f4:ed:f8:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:06 2025 by rpki-client