Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/xbvw8QLgxHnlRiCxkv07jR9F2TI.roa
File: xbvw8QLgxHnlRiCxkv07jR9F2TI.roa (raw, json)
Hash identifier: utMb/VF/+If3ETMG5ffUPJ1u37MlZy9fqTDOAXgsDks=
Subject key identifier: C5:BB:F0:F1:02:E0:C4:79:E5:46:20:B1:92:FD:3B:8D:1F:45:D9:32
Certificate issuer: /CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Certificate serial: 018C5E6D1710702B9DB90A7EC39BDE09B972
Authority key identifier: 6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/xbvw8QLgxHnlRiCxkv07jR9F2TI.roa
Signing time: Tue 12 Dec 2023 14:27:36 +0000
ROA not before: Tue 12 Dec 2023 14:27:36 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9087
IP address blocks: 176.221.30.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:5e:6d:17:10:70:2b:9d:b9:0a:7e:c3:9b:de:09:b9:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f75e4e94b5cb74517b7b01568015da9e6eecdb6
Validity
Not Before: Dec 12 14:27:36 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c5bbf0f102e0c479e54620b192fd3b8d1f45d932
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:8d:9c:73:1e:2d:ff:b9:b8:cd:7c:e1:6b:a5:
21:cd:29:8a:74:85:6d:eb:bc:ed:67:1a:9d:b2:58:
d5:6b:37:31:10:8f:7c:c9:c3:a4:87:59:77:28:65:
04:ca:ea:c0:76:a5:26:c3:97:4a:ee:77:b6:ae:92:
8e:28:46:38:4b:f9:ce:cf:53:88:9d:21:fb:97:db:
1a:a2:aa:a7:8b:88:d3:11:0c:8b:00:af:da:cc:94:
eb:3b:61:bc:99:33:7b:f0:99:fb:c7:0e:47:be:82:
55:3c:a4:13:a8:ed:73:9a:27:66:f8:d6:8d:86:92:
55:32:58:a3:cc:60:d1:ce:ec:85:3c:af:68:ef:7f:
cb:ec:5a:db:75:2c:41:cb:5d:57:18:c8:ac:ca:a9:
f5:8e:bb:04:4e:23:3b:ff:93:07:ff:f3:67:8e:5f:
b9:59:79:2f:58:8f:e8:b0:65:aa:d8:eb:59:57:7e:
7f:c6:ce:11:17:a9:2a:c3:7c:4e:6e:a7:69:59:f7:
e8:18:e9:49:4c:53:81:fb:35:81:2a:48:39:a5:54:
c2:75:26:af:e7:d5:87:85:d1:96:c6:0b:8b:0e:ca:
49:5c:c5:cb:84:78:99:c4:63:1b:e9:fc:0d:df:03:
24:fc:99:24:de:3b:9a:dc:53:86:5b:28:6c:fd:7b:
bc:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:BB:F0:F1:02:E0:C4:79:E5:46:20:B1:92:FD:3B:8D:1F:45:D9:32
X509v3 Authority Key Identifier:
keyid:6F:75:E4:E9:4B:5C:B7:45:17:B7:B0:15:68:01:5D:A9:E6:EE:CD:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3Xk6Utct0UXt7AVaAFdqebuzbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/xbvw8QLgxHnlRiCxkv07jR9F2TI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/57a34f-e33b-4e17-bc32-66457724c2d3/1/b3Xk6Utct0UXt7AVaAFdqebuzbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.221.30.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:d9:bd:9d:ee:b5:d9:de:70:7b:34:61:c9:43:5c:60:cd:5a:
d9:73:2b:d5:5e:90:f2:57:dc:4b:c5:bf:78:73:ed:98:37:10:
c2:bf:d9:22:64:29:1c:0a:30:7b:2c:89:33:b4:58:03:1d:d8:
0d:79:c4:92:a3:25:55:77:a3:10:12:0e:6e:71:a0:7d:fe:a0:
cf:01:29:f2:66:5f:d5:5f:03:2f:49:26:26:55:65:3a:96:0e:
0e:9b:b2:c4:ee:1c:2c:1f:41:8a:37:6c:9d:87:6e:39:88:4d:
6b:73:fc:67:f7:f8:d0:cd:fc:be:00:05:1e:fb:a0:0f:de:3d:
2c:41:72:95:f2:ce:df:05:c1:4a:dc:6c:10:1c:b5:5b:a8:0e:
26:d1:97:84:80:07:57:68:d2:46:6f:9b:8c:8d:0d:7e:3d:e6:
91:50:a2:13:d2:58:b7:b9:15:51:81:0d:c5:f8:ab:80:b1:56:
5e:5f:4a:87:8c:c5:a2:15:01:ec:31:86:fc:35:42:94:f8:97:
9f:c2:eb:ec:03:10:dc:da:1d:ac:a9:d3:6d:3f:04:c7:5f:b6:
c8:16:de:ec:6a:42:66:75:c6:7d:ea:4b:70:ff:fb:1a:a3:06:
81:d2:f7:2d:a1:98:1f:9f:16:3a:cc:f2:00:b3:36:8f:9b:4c:
ba:72:dd:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:14:09 2025 by rpki-client