Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/lZLCd-sqrCOdIFVPgIJSw8QU1zM.roa
File: lZLCd-sqrCOdIFVPgIJSw8QU1zM.roa (raw, json)
Hash identifier: kGVj29HXon0AXrGmrUGqsqIHoBiSLjx3MQ0yzuGsXMY=
Subject key identifier: 95:92:C2:77:EB:2A:AC:23:9D:20:55:4F:80:82:52:C3:C4:14:D7:33
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 018C6778E9AB98BD7F9A622AB7FC2689C1BE
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/lZLCd-sqrCOdIFVPgIJSw8QU1zM.roa
Signing time: Thu 14 Dec 2023 08:37:06 +0000
ROA not before: Thu 14 Dec 2023 08:37:06 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9087
IP address blocks: 176.221.30.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:67:78:e9:ab:98:bd:7f:9a:62:2a:b7:fc:26:89:c1:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Dec 14 08:37:06 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9592c277eb2aac239d20554f808252c3c414d733
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0b:ad:ed:4a:d3:fb:1d:09:44:2a:da:bb:32:
ed:d2:33:ef:c1:cc:72:a1:e5:49:f4:5c:00:c5:70:
aa:bd:dc:3d:6a:f6:aa:44:42:47:15:d5:24:23:18:
1b:5c:b6:09:10:42:19:13:6b:7e:5c:4f:e8:61:f8:
9e:ce:16:6b:89:cc:4a:ec:4f:13:96:9e:c9:f9:28:
bf:45:de:86:92:59:bd:46:c6:2a:b3:0f:fb:54:61:
e7:3c:55:48:58:0e:99:20:96:6a:40:1a:1e:18:c5:
fc:6c:57:66:dd:96:cd:95:b9:81:d4:84:3c:2f:8f:
8b:bb:c9:84:71:f6:0f:23:9a:7f:98:4e:f0:36:45:
12:3d:9d:7b:24:51:58:4c:9c:70:28:ca:bc:06:32:
98:fe:ff:51:34:5e:c3:0e:45:af:96:f3:b8:eb:3c:
8d:4a:e7:9b:3f:a8:6e:07:9a:e0:8b:64:57:fa:7a:
b6:75:9e:7b:c5:85:b8:7a:a1:c1:45:67:19:a7:6f:
8d:16:66:dc:91:5a:11:94:62:ca:f9:0f:fc:be:27:
82:af:d0:1f:f2:2c:c2:2e:5b:3a:ef:b6:85:9b:9c:
b0:31:f5:81:e6:43:6f:0c:d1:88:ae:81:0f:3b:6c:
fd:f4:3f:c9:67:5e:5f:24:36:5e:7b:b1:e7:87:94:
90:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:92:C2:77:EB:2A:AC:23:9D:20:55:4F:80:82:52:C3:C4:14:D7:33
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/lZLCd-sqrCOdIFVPgIJSw8QU1zM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.221.30.0/23
Signature Algorithm: sha256WithRSAEncryption
96:c8:d8:62:60:e0:a3:30:16:78:73:15:b3:2a:d3:39:9d:22:
6a:42:57:c6:90:e3:7c:96:f8:27:90:7a:23:a0:87:c5:1f:d1:
9e:d9:41:a4:20:5b:e8:2c:f0:f0:b6:3c:cb:35:2f:08:37:82:
c4:ca:33:3c:5f:e5:e1:27:c3:55:a8:f5:64:a7:2d:68:95:03:
fd:fe:57:be:c3:7d:0f:b4:39:c9:01:10:0a:99:b5:79:5d:90:
48:09:aa:e4:23:77:48:f5:ad:e0:52:75:75:b2:45:3a:bd:e5:
79:dc:5c:9e:35:18:55:d1:cc:37:f5:12:b7:30:2a:ef:cb:20:
ad:04:58:fd:4f:e7:60:5a:3f:dd:c9:60:8a:2a:ff:10:cf:3e:
a4:e4:91:96:5f:5d:55:98:9a:6a:07:92:87:3c:9f:5d:c8:aa:
75:a2:98:ba:08:01:d5:33:2e:f9:58:80:0e:83:80:59:aa:09:
8f:7f:cd:2d:51:86:2c:6f:d2:60:ae:82:9e:58:0c:53:04:8c:
af:0c:2d:86:ad:8a:b0:45:ce:dc:76:a3:a7:87:39:5d:b7:cd:
ab:11:65:b0:f4:0b:45:29:6b:6f:c1:30:b4:d7:c2:bd:75:b7:
8c:06:fa:e2:9c:42:c1:77:61:94:91:35:43:df:ca:89:66:c5:
75:f3:98:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:17:09 2025 by rpki-client