Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/Bfqj17J2GNZ1bU8g4T2_RRZ8vKw.roa
File: Bfqj17J2GNZ1bU8g4T2_RRZ8vKw.roa (raw, json)
Hash identifier: S47gJh5Fs9VfG/wY2ixUHDuJlIWSbH4EbOwbH0xq3No=
Subject key identifier: 05:FA:A3:D7:B2:76:18:D6:75:6D:4F:20:E1:3D:BF:45:16:7C:BC:AC
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 098D5FC0
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/Bfqj17J2GNZ1bU8g4T2_RRZ8vKw.roa
Signing time: Sat 01 Jan 2022 04:03:23 +0000
ROA not before: Sat 01 Jan 2022 04:03:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15830
IP address blocks: 192.44.26.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 160260032 (0x98d5fc0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Jan 1 04:03:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05faa3d7b27618d6756d4f20e13dbf45167cbcac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:1b:7f:f6:bd:76:f8:e5:2c:a3:eb:73:30:e1:
dd:91:60:31:b1:12:2c:29:99:8e:ee:e2:46:78:b1:
b6:01:87:45:a5:2f:02:50:09:cc:18:02:d5:e5:4f:
ff:67:21:40:3e:f2:f7:7c:96:bf:a2:76:91:35:c5:
77:8c:db:fa:95:ac:c6:37:87:1e:8e:e4:a0:67:68:
ed:5b:91:6b:8d:c9:8f:0a:40:0f:2a:e3:02:a1:db:
30:7d:15:90:45:f4:1c:f1:d3:c7:f0:72:e0:39:10:
ab:00:6e:09:3c:22:89:d6:d6:91:a9:cf:ec:68:4e:
a2:7f:ff:73:34:8c:d0:c2:8d:01:66:d0:d1:6b:31:
67:22:7e:8a:8a:9e:28:59:f5:69:89:7d:fd:a7:1d:
1b:1b:b7:62:9f:cb:5b:25:c3:1c:91:60:07:4a:2c:
8c:0c:60:c0:d0:75:58:79:94:6b:dd:d9:48:c8:dd:
05:2a:99:cf:eb:fa:fb:9a:be:bd:25:f0:a8:09:38:
09:64:48:97:67:69:30:d8:17:b3:f0:0f:1b:42:32:
7d:00:df:91:02:96:98:7d:7a:9e:8b:51:e4:05:41:
9e:cc:be:15:00:45:27:d2:17:0a:cd:91:59:35:9e:
be:b8:4f:4d:91:4d:c9:e7:3d:5d:d5:1a:88:5e:94:
5b:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:FA:A3:D7:B2:76:18:D6:75:6D:4F:20:E1:3D:BF:45:16:7C:BC:AC
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/Bfqj17J2GNZ1bU8g4T2_RRZ8vKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.44.26.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:b7:a8:2e:91:aa:ad:cd:58:00:3f:6b:5c:3a:ba:dc:f9:e6:
df:70:79:1f:74:6f:7f:37:fc:d7:da:07:c5:17:4a:46:29:1f:
f3:47:05:74:9a:ab:af:43:fc:dc:6d:3b:fb:44:47:a4:5e:fd:
85:53:83:6d:41:69:6e:f5:ea:64:9f:2a:10:4a:c7:07:85:7e:
77:9f:c7:30:63:15:cb:c4:17:9e:b2:2d:18:b7:70:dc:94:63:
bf:a0:ac:9d:9e:a5:f8:3b:0d:0a:a9:a3:8b:fc:51:8b:23:28:
31:36:5b:d8:c2:4b:23:b7:32:92:dd:63:12:a2:46:b6:26:69:
5e:13:3f:d2:24:fd:76:d7:37:3f:5d:cc:77:fa:39:e4:5c:48:
7a:50:87:38:77:d9:ee:fe:50:a4:a0:49:4c:0e:32:b6:f3:34:
55:5d:fd:a2:e7:a7:1d:12:78:d3:83:55:52:8f:3d:a8:72:fa:
c8:4f:8c:37:6a:e4:50:2d:4e:8e:c1:6a:96:b1:9b:56:69:4c:
1d:6a:64:48:e9:36:8b:ca:44:d2:74:d7:cd:90:48:8e:7c:bd:
eb:73:21:a3:ff:0f:f7:72:51:c0:6e:58:65:34:77:a4:16:61:
c8:13:0f:99:41:6f:bb:74:5f:47:1d:b2:29:e5:aa:02:4e:ad:
30:0b:c7:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:03 2025 by rpki-client