Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/e7edff-86da-449f-b89c-d7b2ad01a1d7/1/dSWnDMzGU7w05-szcewuViNoYXc.roa
File: dSWnDMzGU7w05-szcewuViNoYXc.roa (raw, json)
Hash identifier: Z3YzI+In7TPyeUHO276uy8/ZGrKKO82F7EoRqQw0E6g=
Subject key identifier: 75:25:A7:0C:CC:C6:53:BC:34:E7:EB:33:71:EC:2E:56:23:68:61:77
Certificate issuer: /CN=22a19ed85a2c0cfc4f50bead16fc9f6f1465ad11
Certificate serial: 01941F8C8BFD8A400849C467345835DE496F
Authority key identifier: 22:A1:9E:D8:5A:2C:0C:FC:4F:50:BE:AD:16:FC:9F:6F:14:65:AD:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IqGe2FosDPxPUL6tFvyfbxRlrRE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/e7edff-86da-449f-b89c-d7b2ad01a1d7/1/dSWnDMzGU7w05-szcewuViNoYXc.roa
Signing time: Wed 01 Jan 2025 01:48:12 +0000
ROA not before: Wed 01 Jan 2025 01:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203591
IP address blocks: 217.29.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:8b:fd:8a:40:08:49:c4:67:34:58:35:de:49:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22a19ed85a2c0cfc4f50bead16fc9f6f1465ad11
Validity
Not Before: Jan 1 01:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7525a70cccc653bc34e7eb3371ec2e5623686177
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:82:37:d9:db:ff:e9:13:89:cc:f7:f4:5e:ca:
02:0b:89:a9:26:84:68:86:db:5e:03:12:58:3d:8d:
c7:da:07:88:e7:dc:2d:24:46:93:c4:56:6b:32:9e:
d3:f5:02:f4:39:2b:56:1b:6d:14:6b:a9:0e:b4:a0:
ef:c6:1c:e3:cc:f7:c7:8d:bb:bb:74:9f:d1:0c:58:
ec:8a:a9:7f:72:15:5c:3f:30:62:a2:5f:81:0c:9f:
74:3b:71:04:5a:89:ad:a4:8f:42:44:69:da:9b:8a:
ab:cf:7a:e2:4a:e8:60:16:01:b2:a6:3c:e6:35:87:
34:d0:49:f2:a9:84:bd:ec:9a:44:c1:14:3c:9e:6e:
81:a8:8a:48:51:f9:f9:90:06:c9:46:0d:35:d0:7b:
07:ed:ff:16:41:38:17:43:18:79:cd:fa:d9:36:70:
ed:7d:fa:ca:ce:0e:ad:b4:db:4d:09:a7:a1:71:28:
e8:dd:05:b9:d6:9d:76:45:64:74:7f:13:37:d9:b1:
2d:7a:46:6b:7c:14:b7:ce:15:67:0a:bb:00:4f:ed:
ea:2b:9a:1a:06:c8:af:12:c4:b5:05:c0:cf:c0:aa:
57:c0:f6:6d:37:2b:d1:47:a8:28:30:30:b1:7f:10:
c5:14:23:0b:17:e1:0e:d8:3f:68:ad:79:ad:eb:98:
f5:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:25:A7:0C:CC:C6:53:BC:34:E7:EB:33:71:EC:2E:56:23:68:61:77
X509v3 Authority Key Identifier:
keyid:22:A1:9E:D8:5A:2C:0C:FC:4F:50:BE:AD:16:FC:9F:6F:14:65:AD:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IqGe2FosDPxPUL6tFvyfbxRlrRE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/e7edff-86da-449f-b89c-d7b2ad01a1d7/1/dSWnDMzGU7w05-szcewuViNoYXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/e7edff-86da-449f-b89c-d7b2ad01a1d7/1/IqGe2FosDPxPUL6tFvyfbxRlrRE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.29.195.0/24
Signature Algorithm: sha256WithRSAEncryption
3f:5d:f1:f9:3a:48:f2:df:aa:0a:41:6a:71:57:82:c0:7d:fd:
00:c9:7f:49:c6:14:a4:26:1d:85:3c:a6:9d:34:1a:fa:03:2c:
f6:37:a2:2f:22:55:53:5a:eb:28:3f:5a:a8:6e:fa:50:95:28:
e8:43:e9:2f:b6:90:e9:6b:df:26:61:6d:3c:14:65:26:38:e2:
83:a6:be:25:ed:f0:a6:77:04:50:39:f2:97:b1:29:dd:e6:a2:
52:10:ad:65:47:18:f4:4d:df:5f:05:e6:ab:7a:89:50:1d:21:
6a:48:fa:a8:d3:85:73:af:68:ea:c8:d0:bc:36:19:ca:a2:b3:
e7:7f:c9:83:d7:5b:32:22:ac:30:26:5d:b7:c9:7f:ac:ef:f1:
04:ea:13:7f:e3:17:4f:c9:2f:1e:74:17:f2:33:e6:49:fc:76:
9b:d8:39:d6:4a:82:79:f3:74:df:d7:8e:90:a2:f1:0c:2c:27:
a8:ec:bf:d4:ea:3f:cf:22:54:57:e3:47:9c:6c:62:59:39:11:
2a:e1:e7:91:2a:0a:2a:73:f8:5c:fb:56:f6:43:40:01:7b:58:
5a:eb:df:81:c9:c7:59:cd:00:24:52:6c:02:25:55:c2:4d:dd:
f3:02:a6:da:6d:7b:05:75:00:92:63:d9:09:70:e5:2f:1f:93:
c8:87:a0:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 01:02:42 2025 by rpki-client