Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/qJY2huNtS8oGcvfpey4cw1jq9L8.roa
File: qJY2huNtS8oGcvfpey4cw1jq9L8.roa (raw, json)
Hash identifier: 1OmHlJOyL2B1EW+n2oKrhQUH9SCizUu8XmBExY9xPKw=
Subject key identifier: A8:96:36:86:E3:6D:4B:CA:06:72:F7:E9:7B:2E:1C:C3:58:EA:F4:BF
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 018FCF184F5F9451CCE54A01819495D90322
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/qJY2huNtS8oGcvfpey4cw1jq9L8.roa
Signing time: Fri 31 May 2024 14:40:27 +0000
ROA not before: Fri 31 May 2024 14:40:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 131775
IP address blocks: 176.221.26.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:cf:18:4f:5f:94:51:cc:e5:4a:01:81:94:95:d9:03:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: May 31 14:40:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a8963686e36d4bca0672f7e97b2e1cc358eaf4bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:af:2f:2b:6e:f1:fc:dc:cb:e5:14:fd:8d:31:
78:1f:0f:c9:d9:3a:48:99:a9:3a:d4:f6:e9:39:90:
bc:7a:86:16:56:23:ea:77:9b:6c:fe:d4:34:b0:e1:
a7:86:3f:c0:14:b8:6d:37:6b:39:14:fa:88:e9:cb:
7b:38:96:7b:b2:15:bf:32:32:30:75:72:c0:23:f9:
76:38:3a:cf:b7:02:a4:34:55:0c:6a:a8:f2:ba:e2:
ed:bf:5e:ff:c3:0a:ce:d4:ae:ed:3c:db:20:47:c7:
a9:08:24:1e:5c:84:44:5a:d3:e2:cd:88:37:51:9d:
2e:cc:f5:2a:d6:e2:42:5f:b2:4e:47:45:91:43:fe:
0c:4b:96:45:6f:f3:19:5b:06:dc:12:0e:8f:4c:fd:
1a:dd:e8:7e:6a:71:18:63:93:76:0c:81:c4:c5:b9:
fc:06:33:ff:42:d1:08:e4:53:f8:e0:f7:40:19:5c:
17:66:8c:62:da:f1:26:d1:47:68:9a:86:5c:cd:04:
4f:88:c3:bc:15:25:fc:81:f6:7d:47:9f:73:31:b8:
ea:de:7f:30:5f:6c:e3:df:6b:98:c0:17:4d:81:dd:
85:e1:07:d4:05:a6:8d:28:2b:0b:f0:6f:e4:95:d7:
e6:d6:50:d0:b1:60:8e:5b:78:38:6e:48:fd:bc:dc:
98:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:96:36:86:E3:6D:4B:CA:06:72:F7:E9:7B:2E:1C:C3:58:EA:F4:BF
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/qJY2huNtS8oGcvfpey4cw1jq9L8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.221.26.0/23
Signature Algorithm: sha256WithRSAEncryption
65:9d:57:d6:17:38:2e:68:1e:4d:dc:46:c1:36:8a:51:ef:10:
64:37:c9:e2:05:32:21:6d:9e:4a:1d:81:20:af:e3:e2:b3:a5:
87:fb:57:d7:3f:5a:df:64:04:9f:10:ec:e3:95:5c:c6:b8:6f:
21:c9:27:68:77:98:82:73:67:da:58:69:ed:18:4d:1b:e6:c7:
7f:f3:77:6f:fb:49:1b:d4:a1:bd:d6:35:ee:7e:34:4f:5a:9e:
7e:c5:03:f7:33:f9:17:81:b6:28:8e:e1:84:b7:66:c2:94:11:
31:2a:38:dd:26:3a:20:2a:6a:7e:e8:a7:b4:50:ad:35:83:21:
b8:27:9c:b0:81:f1:c6:cf:f4:4d:2f:ed:58:4e:8d:6c:e4:8c:
ec:b3:e0:db:f3:98:52:ed:af:e9:64:30:da:87:37:9e:41:bc:
cc:95:82:c7:4b:68:d8:67:21:89:b2:08:f1:08:78:ab:c4:7e:
b4:57:9d:6c:f2:4e:8b:23:70:f5:c6:f3:4b:d6:7b:9d:6a:85:
b4:78:02:d7:d0:cd:88:c8:69:77:1d:e5:d3:00:2d:25:20:76:
b7:92:48:d1:18:12:c8:0c:2a:ec:4c:2f:46:18:05:ab:70:ed:
ea:f6:d1:b4:54:90:bf:b1:c3:6b:00:fb:52:42:92:51:23:7b:
c6:d1:91:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:22:09 2025 by rpki-client