Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/fex5vY-PV71o8KhDZLYhi5tSxNQ.roa
File: fex5vY-PV71o8KhDZLYhi5tSxNQ.roa (raw, json)
Hash identifier: aB1cy20fQu0o32zdkDDoMxP0fu5szBkdITYvdR65wWc=
Subject key identifier: 7D:EC:79:BD:8F:8F:57:BD:68:F0:A8:43:64:B6:21:8B:9B:52:C4:D4
Certificate issuer: /CN=9f312e9297bc1d27ebeb476dea0ee15dd756542d
Certificate serial: 018CCA2A25510AA5141A8FF60D70B7FA98FB
Authority key identifier: 9F:31:2E:92:97:BC:1D:27:EB:EB:47:6D:EA:0E:E1:5D:D7:56:54:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/fex5vY-PV71o8KhDZLYhi5tSxNQ.roa
Signing time: Tue 02 Jan 2024 12:33:28 +0000
ROA not before: Tue 02 Jan 2024 12:33:28 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 134196
IP address blocks: 116.206.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:ca:2a:25:51:0a:a5:14:1a:8f:f6:0d:70:b7:fa:98:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f312e9297bc1d27ebeb476dea0ee15dd756542d
Validity
Not Before: Jan 2 12:33:28 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=7dec79bd8f8f57bd68f0a84364b6218b9b52c4d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8d:10:f8:60:96:ea:b9:11:12:87:66:55:68:
e4:5a:5c:a6:54:a1:27:ec:e1:cb:dc:ce:e1:d0:fe:
d2:46:08:8f:e4:6f:97:4a:f7:27:45:00:25:d4:26:
e3:4e:be:5f:a0:03:21:53:95:ca:21:4b:b3:23:32:
c5:59:b3:de:13:3b:b2:47:34:61:25:ec:ec:00:12:
4e:3d:72:d9:42:b7:81:96:17:0e:7d:bc:3d:6e:0d:
5c:0e:e7:cb:a3:db:80:fc:65:1d:0e:4c:1d:95:e3:
d6:7b:16:15:3e:aa:31:b8:22:b5:31:4e:6c:f5:02:
d0:2c:df:8c:e2:ea:09:8a:ca:bc:6c:1f:90:a1:ac:
88:3f:2a:e8:12:7e:65:b9:89:61:21:8e:39:90:06:
6c:8f:50:94:72:1c:6c:71:2f:08:b1:cf:4a:e7:6b:
78:3a:97:95:3c:1f:75:d2:85:94:64:76:ad:1f:29:
e1:e4:1f:b4:84:28:4c:96:e2:bf:be:ed:de:94:a7:
e3:ce:27:87:31:3a:f6:fa:a7:b5:39:e0:1e:45:b0:
8b:9e:ae:2b:bf:06:34:9b:94:65:93:1f:ea:05:d7:
b0:f5:eb:79:9f:57:89:06:94:15:eb:89:5c:09:ce:
5b:c7:47:8c:f3:bc:0a:fe:d1:de:31:e5:5a:2b:1f:
ac:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:EC:79:BD:8F:8F:57:BD:68:F0:A8:43:64:B6:21:8B:9B:52:C4:D4
X509v3 Authority Key Identifier:
keyid:9F:31:2E:92:97:BC:1D:27:EB:EB:47:6D:EA:0E:E1:5D:D7:56:54:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzEukpe8HSfr60dt6g7hXddWVC0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/fex5vY-PV71o8KhDZLYhi5tSxNQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/dd5a28-df9d-4627-809d-bd5d3f00fbb2/1/nzEukpe8HSfr60dt6g7hXddWVC0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.206.95.0/24
Signature Algorithm: sha256WithRSAEncryption
af:1d:ec:d6:22:29:9c:7c:4b:a0:31:48:4f:2a:7b:67:be:ec:
c0:66:00:8c:62:b4:75:06:2f:3d:07:fc:0b:41:cc:e0:94:6f:
4e:2f:b6:64:13:3e:48:04:93:cb:a5:e2:e2:c7:ea:ef:01:33:
e1:82:fd:cb:55:f0:8a:f4:b1:2d:2d:73:02:71:03:45:9f:76:
b8:26:e4:b8:f5:28:64:8a:b1:83:a9:af:ff:09:1e:7b:a2:95:
55:29:a8:85:30:b8:ae:3f:f7:b6:2c:3f:8f:92:c4:5f:74:c4:
0d:6f:e0:9e:67:ba:c5:ef:7e:37:42:84:03:01:58:58:ab:89:
a5:0a:2b:39:4d:b2:e0:93:02:6d:6f:83:bc:24:f7:17:e6:21:
e6:d4:70:0a:e8:a1:0e:f6:ab:bf:54:82:db:4a:73:a8:17:cd:
fa:f0:9a:59:6b:7b:20:46:6d:c0:73:a3:89:55:f2:fd:67:60:
29:8a:a9:37:a4:d7:bc:8b:2a:4d:bd:1d:6d:ab:16:06:67:59:
9b:47:df:cc:7b:3e:3d:7d:64:d9:dc:68:df:f3:60:bc:06:de:
77:f7:75:6b:ab:a8:13:6b:10:e6:3f:37:2f:25:f2:4e:24:d3:
00:a3:35:1e:74:5a:12:99:0b:6f:98:41:ee:72:b5:ca:5d:80:
a2:bc:47:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 05:51:46 2025 by rpki-client