Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/4WiM0TwW7erEmomC2kqqtS2MZfI.roa
File: 4WiM0TwW7erEmomC2kqqtS2MZfI.roa (raw, json)
Hash identifier: Hmlo57SEFzEO/bSEeQtj6m6qVri+P2rPr9R0dy0/oVs=
Subject key identifier: E1:68:8C:D1:3C:16:ED:EA:C4:9A:89:82:DA:4A:AA:B5:2D:8C:65:F2
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 01856705A7031F45FACDCA74C3F9E9843358
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/4WiM0TwW7erEmomC2kqqtS2MZfI.roa
Signing time: Sat 31 Dec 2022 07:11:41 +0000
ROA not before: Sat 31 Dec 2022 07:11:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211584
IP address blocks: 109.111.52.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:67:05:a7:03:1f:45:fa:cd:ca:74:c3:f9:e9:84:33:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Dec 31 07:11:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e1688cd13c16edeac49a8982da4aaab52d8c65f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:59:9e:66:c5:95:36:00:a4:d8:f8:e4:ec:de:
7e:cc:aa:f5:4f:91:7e:a6:47:5d:b6:97:be:4f:55:
8f:2a:39:d0:23:23:5d:a6:7c:17:50:c8:1c:5b:d5:
56:a6:13:80:06:47:fe:0b:16:34:e5:1f:fa:43:fe:
7a:3c:47:2b:fb:23:0b:78:3d:0d:c9:e5:1c:f5:5d:
53:4b:33:54:d4:77:4c:91:0c:a6:d3:bc:fd:11:1c:
8d:15:6d:43:c6:b2:09:e4:6c:d2:2a:1a:8e:79:c4:
98:25:1c:61:4f:9b:6f:57:0e:e2:d8:0a:54:81:1f:
f2:ed:cb:de:6f:87:56:5b:4a:52:93:5d:73:71:43:
5b:39:2a:aa:6b:cb:99:29:3e:09:8a:ad:0a:f0:45:
77:14:68:ae:b3:c2:8c:a4:25:d2:a0:cf:c0:81:82:
a1:ae:6a:43:6a:87:2d:96:80:f1:15:9c:b1:2a:a3:
3a:7c:6a:3f:b4:7c:93:b3:ca:c2:07:f6:0f:b3:66:
45:fd:3d:1b:4e:e4:db:bd:c2:c8:45:1f:d9:cf:d0:
53:a8:99:6f:12:47:81:24:9c:b4:63:34:7b:ca:95:
a6:46:df:bf:63:42:1d:a3:be:b1:c3:8d:44:45:ea:
f7:da:ef:bb:75:c2:7a:5d:a0:1d:ca:89:13:c9:fa:
b8:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:68:8C:D1:3C:16:ED:EA:C4:9A:89:82:DA:4A:AA:B5:2D:8C:65:F2
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/4WiM0TwW7erEmomC2kqqtS2MZfI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.111.52.0/22
Signature Algorithm: sha256WithRSAEncryption
94:f1:05:91:55:b5:e8:6b:dc:81:9c:2f:a5:e9:95:cb:d7:52:
50:41:03:e6:3f:bc:f8:f4:6a:db:f9:75:2b:ee:a5:3b:4d:c0:
4a:a1:78:f7:0d:9d:56:67:29:7a:e9:e0:b1:6f:48:b6:37:4d:
78:07:44:fe:c3:d7:82:1b:fd:55:01:af:36:75:32:ee:4a:bf:
3e:77:6a:67:71:59:7a:08:47:10:d5:6f:89:35:db:e9:a4:e8:
a9:c9:cc:5b:8c:ff:51:4b:e6:ed:ef:3a:ea:dc:e0:28:b6:25:
dc:f8:2c:0c:70:fd:94:57:12:6c:12:d9:35:03:37:d5:c4:90:
e0:9b:b6:04:94:a9:4a:57:94:de:28:1b:19:47:c5:34:1d:7b:
1f:e7:53:78:85:5f:66:b2:e0:8a:12:bd:9c:01:e1:b7:c2:15:
86:9b:63:8d:90:63:4b:13:bb:0e:e5:e5:9f:c0:08:73:e1:53:
f4:4f:67:9d:6d:7c:9d:52:d9:78:6c:36:5c:75:42:40:14:d2:
69:87:f1:28:8c:3f:00:74:28:51:44:cc:ee:30:49:19:8a:51:
a8:ef:6d:f3:79:4f:ec:36:ec:c4:6a:77:30:cf:6f:5f:a1:39:
79:6c:57:d5:c9:f8:81:1f:ae:23:03:60:e5:5a:44:8d:13:69:
1e:b9:43:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:37 2025 by rpki-client