Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/D7POb9Cbl9YGofy8fUKkkw9nsT0.roa
File: D7POb9Cbl9YGofy8fUKkkw9nsT0.roa (raw, json)
Hash identifier: hrsQMJh2LkhAZP/LzjaZtpEdN82HMJOvuWvK/z5M9S4=
Subject key identifier: 0F:B3:CE:6F:D0:9B:97:D6:06:A1:FC:BC:7D:42:A4:93:0F:67:B1:3D
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 0190C8EC682DE1B9D672007D0ED0CC7E9059
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/D7POb9Cbl9YGofy8fUKkkw9nsT0.roa
Signing time: Fri 19 Jul 2024 02:57:34 +0000
ROA not before: Fri 19 Jul 2024 02:57:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 152179
IP address blocks: 176.221.16.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:c8:ec:68:2d:e1:b9:d6:72:00:7d:0e:d0:cc:7e:90:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Jul 19 02:57:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=0fb3ce6fd09b97d606a1fcbc7d42a4930f67b13d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:09:06:ae:c9:1c:51:17:c1:ee:b9:54:76:d5:
d7:ff:1a:7b:c1:08:4a:26:b5:21:da:3d:02:9f:a0:
08:ba:be:fd:39:39:96:3b:4a:ce:29:fe:ad:18:76:
dc:a7:44:f1:77:12:44:de:5e:e4:ce:77:f5:d1:96:
9e:9f:5a:45:d7:68:6e:f4:0b:6e:3b:68:c2:e4:d9:
08:a4:9c:91:e6:db:ae:f6:e2:52:72:c6:8c:26:ba:
48:32:c7:3d:21:3d:72:e6:c0:d7:2d:bf:93:1c:27:
b9:ff:57:c8:82:c3:d2:20:7d:91:34:1b:56:e9:22:
00:e8:97:fb:8b:9f:6b:08:f3:ec:1a:f3:55:cb:79:
83:41:b2:58:57:09:bd:c0:e4:a6:e9:e3:27:91:52:
2f:5e:b6:34:33:fd:d4:7b:57:b7:17:3f:f2:bd:95:
77:7c:08:1c:ec:73:41:6a:42:75:f8:78:a2:51:20:
ec:12:c2:98:93:84:28:ec:16:c1:bb:6a:03:71:95:
52:c9:09:92:26:96:27:a3:b6:a3:20:f8:93:d4:2a:
8a:34:33:47:cd:aa:f4:97:1a:e1:6a:07:94:ae:6b:
ed:24:09:03:fc:16:a9:af:8b:4a:9e:6f:73:da:f8:
f8:27:88:66:99:20:07:74:51:6b:32:37:b6:ea:b0:
04:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:B3:CE:6F:D0:9B:97:D6:06:A1:FC:BC:7D:42:A4:93:0F:67:B1:3D
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/D7POb9Cbl9YGofy8fUKkkw9nsT0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.221.16.0/22
Signature Algorithm: sha256WithRSAEncryption
56:f5:bb:24:3e:59:61:c4:0c:24:cf:5e:40:e8:eb:f6:50:d6:
4e:51:f3:0b:c6:84:57:2e:03:e4:d4:37:24:e3:e0:3b:6f:6b:
0a:cc:dc:83:b4:37:f2:d3:a7:a5:91:0a:ea:3d:9a:cf:2f:e6:
8d:06:89:28:9c:91:79:48:8c:84:13:c2:6f:5d:2a:34:df:34:
10:a1:9f:3b:7f:10:df:42:9d:9c:ea:2d:2f:15:c1:03:66:0b:
d7:d4:d5:2e:d7:ff:10:13:41:7b:1a:b3:9f:4d:c7:f4:23:12:
38:1d:ec:a9:47:51:bd:91:de:67:26:3e:97:7f:09:1b:5e:4e:
b4:cc:58:24:6c:4b:93:34:41:c3:af:49:5e:81:2f:29:78:7a:
60:24:1b:9f:3c:57:63:d9:4c:52:e4:ed:09:6d:71:ac:4c:c2:
39:f1:42:c5:92:6f:49:bd:24:53:6d:88:ac:9a:92:93:38:98:
f0:ad:42:1b:4c:19:67:00:ec:00:f4:83:72:8f:29:a0:84:6d:
02:c4:62:88:17:16:d0:a8:9d:1f:89:8b:71:08:e1:ac:d9:8f:
ff:3d:bf:9d:26:ab:ea:ce:3b:ca:80:70:52:0f:9b:57:05:bd:
cd:fb:ce:06:a0:51:72:f7:16:05:18:29:34:82:34:d7:4a:52:
0c:bb:93:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:03 2025 by rpki-client