Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/Hfd0CTwVpzuDjlVIxIx1lGb4-pg.roa
File: Hfd0CTwVpzuDjlVIxIx1lGb4-pg.roa (raw, json)
Hash identifier: EG2x7iJm813Qkv6v6h7n5kcqFJMswubMs3AGk/S67C0=
Subject key identifier: 1D:F7:74:09:3C:15:A7:3B:83:8E:55:48:C4:8C:75:94:66:F8:FA:98
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 0192C299DF3E974EA7AFD362980CA2FCF842
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/Hfd0CTwVpzuDjlVIxIx1lGb4-pg.roa
Signing time: Fri 25 Oct 2024 07:35:16 +0000
ROA not before: Fri 25 Oct 2024 07:35:16 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 141.226.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c2:99:df:3e:97:4e:a7:af:d3:62:98:0c:a2:fc:f8:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Oct 25 07:35:16 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=1df774093c15a73b838e5548c48c759466f8fa98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5d:31:76:70:53:0b:54:1b:53:2c:5e:45:83:
f2:62:14:4b:4f:a0:15:18:5f:af:26:0d:59:7b:7c:
5f:e7:78:aa:e1:07:ca:35:fb:aa:36:6b:38:57:af:
29:0f:b0:be:13:6d:71:59:db:87:61:92:49:5e:4c:
54:21:46:42:59:39:13:f6:b6:a3:d6:bd:19:97:b5:
c8:d2:19:c7:d2:72:d0:2a:b4:95:38:9d:2f:3e:49:
e0:92:f6:5f:f2:6b:f7:d4:6c:06:64:37:5f:95:3d:
02:ec:f4:2f:99:51:dc:ae:7f:42:6c:58:a9:7f:82:
c3:65:d6:da:87:2c:59:86:50:06:ee:62:ce:75:59:
01:b6:bd:fe:7b:29:2e:8b:d8:2e:19:17:68:0d:77:
97:94:fa:f5:63:c3:d7:c8:63:a9:ca:11:3d:79:06:
40:b9:fa:db:a3:5f:96:6c:86:28:71:bc:88:4b:12:
d4:d3:09:bc:e2:c6:4a:11:00:54:de:43:c2:f1:2e:
1d:6a:47:a9:53:8a:ad:8a:f7:b1:a4:ab:88:f1:fa:
9f:88:4e:13:1b:4a:d2:65:3b:83:5c:27:6a:8d:b4:
bb:a6:70:94:1e:cc:dd:0f:ae:d6:c1:ce:9d:ae:ee:
95:84:3e:1d:b0:9a:3e:a0:67:9c:b5:19:6b:82:c9:
37:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:F7:74:09:3C:15:A7:3B:83:8E:55:48:C4:8C:75:94:66:F8:FA:98
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/Hfd0CTwVpzuDjlVIxIx1lGb4-pg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.246.0/24
Signature Algorithm: sha256WithRSAEncryption
14:73:77:3b:63:85:ab:53:a3:8b:cf:f0:93:ad:fa:13:91:88:
8f:58:07:be:c9:f3:2a:94:d1:8f:d6:17:39:1e:42:99:10:eb:
d8:a6:a0:51:6e:e2:d9:32:1d:0b:43:d4:3a:96:b9:9b:34:53:
4a:f2:75:0c:ec:26:4c:d2:07:dd:22:71:8d:08:0c:ba:21:89:
7c:4d:dd:c6:23:2c:4c:91:cc:bf:3a:e5:60:50:e3:14:b5:ea:
cf:fb:0c:b6:3d:40:85:7e:3b:13:35:f8:ec:a7:ce:27:d0:da:
b0:e1:bc:82:de:c7:c8:ec:ae:1f:8a:c0:52:a4:03:12:71:52:
1b:7f:8e:76:9a:b6:c6:b9:69:93:fc:13:d9:0e:3d:e2:d1:5d:
76:a8:e6:94:5b:2f:f6:a0:df:19:75:00:44:1a:63:f5:71:b9:
7a:0d:e5:20:ad:ce:40:db:c0:3a:41:9b:ee:14:9d:67:44:15:
1c:5f:7d:9f:c2:be:cf:a0:63:1d:16:a4:36:89:26:18:29:bf:
86:e0:0c:1d:5b:f0:82:e0:c7:ce:7d:70:80:d2:46:18:30:f2:
31:a3:e4:b0:dd:85:da:53:dc:2e:01:24:a3:d1:70:f6:11:69:
29:70:85:d5:cb:c9:f8:ac:16:76:95:f7:0d:9b:c0:dc:ee:c5:
31:26:00:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:19 2025 by rpki-client