Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/Q-3zz_yGHFIF38AO52LmsMhii8w.roa
File: Q-3zz_yGHFIF38AO52LmsMhii8w.roa (raw, json)
Hash identifier: jLBGVPqg5c00T2ulzJzsuGIv7bOfgPKA1Xk2R2gSCBc=
Subject key identifier: 43:ED:F3:CF:FC:86:1C:52:05:DF:C0:0E:E7:62:E6:B0:C8:62:8B:CC
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 0189FD70557AC002CB5A8654A06256ACA794
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/Q-3zz_yGHFIF38AO52LmsMhii8w.roa
Signing time: Wed 16 Aug 2023 08:22:24 +0000
ROA not before: Wed 16 Aug 2023 08:22:24 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 95.82.32.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:fd:70:55:7a:c0:02:cb:5a:86:54:a0:62:56:ac:a7:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Aug 16 08:22:24 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=43edf3cffc861c5205dfc00ee762e6b0c8628bcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:4a:ef:aa:42:77:0e:8e:a7:41:11:ca:72:04:
a7:50:04:76:60:3f:ef:c2:c5:50:da:ea:13:1c:86:
a8:19:85:03:4f:0c:42:d2:e2:3e:2d:b6:05:99:15:
70:94:61:41:9c:56:6a:62:6a:25:dd:53:d5:d8:e0:
b8:94:8b:93:6c:ee:ce:62:5d:51:5b:4c:13:b4:9e:
87:b4:d6:da:c6:11:9a:1a:51:6c:ec:ce:7f:d7:7b:
a0:1f:b7:09:89:6b:cc:d6:4d:e3:19:80:88:39:eb:
89:e9:21:94:98:28:15:38:2f:bc:20:cc:a3:5b:e3:
01:03:f3:63:14:e0:0f:52:48:58:80:5a:a9:e7:2b:
bc:1b:ab:90:43:b9:e0:4b:a5:22:37:67:f1:e9:d8:
71:b5:da:bd:01:17:d5:19:39:ca:72:7a:14:d8:82:
a4:98:da:6f:b5:a9:cb:a1:81:27:d5:83:50:e7:17:
d6:a6:c0:e6:f3:eb:79:54:9b:f5:24:2c:3d:18:d2:
ca:f1:df:3f:7d:83:11:1d:79:ff:22:4d:04:be:49:
72:77:96:ad:c4:dd:c7:16:c3:47:88:a2:b6:11:05:
56:db:0a:8f:3a:c2:54:81:24:8c:8f:ba:e2:c5:cc:
50:1e:91:48:6c:c1:35:f1:01:c7:ca:6c:46:25:13:
a4:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:ED:F3:CF:FC:86:1C:52:05:DF:C0:0E:E7:62:E6:B0:C8:62:8B:CC
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/Q-3zz_yGHFIF38AO52LmsMhii8w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.82.32.0/21
Signature Algorithm: sha256WithRSAEncryption
1a:77:1d:9c:31:27:42:6a:7d:0d:ce:a2:fe:09:ac:30:3e:28:
75:65:dc:d7:80:33:d1:89:e9:b5:f4:ea:48:53:40:8b:f7:eb:
c3:4a:e4:b3:52:55:df:35:98:96:10:59:c9:42:d7:99:3a:e2:
b0:3e:94:b7:84:86:9f:65:03:ff:bf:d7:8d:1e:36:16:9d:bc:
61:2c:d2:af:71:05:46:cb:e0:95:01:70:09:9c:0b:ac:37:07:
2d:1f:ec:69:a4:8e:a3:6a:5f:27:71:4b:d2:bd:04:59:10:1c:
12:a8:2e:2d:dc:37:d3:f5:00:07:55:ad:21:54:0e:0b:c3:e4:
06:79:c5:ec:a2:90:2d:16:90:31:fa:32:5f:ea:33:0b:e0:b2:
a9:d4:25:f8:98:3f:13:f2:10:a6:e9:de:4d:ae:22:a7:c4:ca:
d9:ce:58:3d:f6:73:29:53:9f:54:e2:15:5a:6f:d0:74:b9:26:
40:d8:95:9a:7d:a5:4a:ba:92:b3:33:7d:5b:70:be:18:e4:6e:
85:f9:86:50:5f:7b:95:3f:57:f2:8a:03:1c:d2:96:25:70:4b:
f5:49:4b:9d:d4:83:80:16:6f:ff:a8:04:b9:3a:77:cb:7f:f8:
b9:47:34:23:bf:d7:88:42:85:ba:bd:ff:e0:8a:90:4e:98:c1:
ea:57:6b:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:24 2025 by rpki-client