Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cr94DEuu9PrisNjMDUdSHVdIEuU.roa
File: cr94DEuu9PrisNjMDUdSHVdIEuU.roa (raw, json)
Hash identifier: ORQ7ZgCK1dT+kxEaecmrDpL+vBRnOQ2dweLN2KZW+qk=
Subject key identifier: 72:BF:78:0C:4B:AE:F4:FA:E2:B0:D8:CC:0D:47:52:1D:57:48:12:E5
Certificate issuer: /CN=70f9b16adf2fd31988859922b4457481dd7eef40
Certificate serial: 0188CC9C224C69BBE68145938BEFF46B72F4
Authority key identifier: 70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cr94DEuu9PrisNjMDUdSHVdIEuU.roa
Signing time: Sun 18 Jun 2023 03:46:04 +0000
ROA not before: Sun 18 Jun 2023 03:46:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 141.226.246.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:88:cc:9c:22:4c:69:bb:e6:81:45:93:8b:ef:f4:6b:72:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70f9b16adf2fd31988859922b4457481dd7eef40
Validity
Not Before: Jun 18 03:46:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72bf780c4baef4fae2b0d8cc0d47521d574812e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ff:fa:0c:79:cd:88:48:c1:16:cc:8a:40:4e:
09:c3:ae:89:39:fd:40:0e:3d:60:59:b1:8b:bb:d5:
9a:b4:33:8a:eb:96:11:33:6e:b4:61:4a:d7:0c:24:
a4:6a:5d:a7:94:53:1d:57:96:9d:56:00:75:da:b0:
b6:99:8b:c7:e9:ba:68:69:fe:d0:f7:f4:16:ff:bf:
9d:33:e8:60:14:e2:46:fd:d9:1a:c0:f2:a0:ab:99:
b1:3f:c0:38:85:76:9e:51:89:66:f7:00:18:c3:b1:
d4:a5:5c:fc:d2:2c:be:1f:21:b7:e6:12:c1:88:d2:
be:33:25:66:bf:52:a6:3b:a5:3b:24:61:df:46:62:
bb:4e:d1:e8:6d:61:13:61:81:3f:f8:e9:6d:6b:55:
54:89:f1:94:46:6b:13:4a:30:05:ae:5f:54:55:4c:
c3:6f:0d:b4:ea:42:34:07:3c:6d:d1:52:7b:b0:13:
10:f7:e0:df:5c:75:d6:3e:30:47:c2:49:4e:c9:2f:
77:3b:e9:86:10:27:16:46:cb:ec:17:09:95:71:60:
6f:bf:db:a4:b0:b1:50:f5:5d:25:bd:f8:7d:e3:8a:
62:44:92:d4:11:43:47:35:e3:cf:92:94:a3:76:f3:
52:71:f7:a6:3d:f6:65:68:dd:3c:a7:3d:8f:48:e7:
b9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:BF:78:0C:4B:AE:F4:FA:E2:B0:D8:CC:0D:47:52:1D:57:48:12:E5
X509v3 Authority Key Identifier:
keyid:70:F9:B1:6A:DF:2F:D3:19:88:85:99:22:B4:45:74:81:DD:7E:EF:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cPmxat8v0xmIhZkitEV0gd1-70A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cr94DEuu9PrisNjMDUdSHVdIEuU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/956db9-c8f7-4b9f-a56e-bc6db7248add/1/cPmxat8v0xmIhZkitEV0gd1-70A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.226.246.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:08:26:ef:1d:dd:cb:6b:15:5e:ec:56:36:b4:fd:0a:f5:08:
7f:79:26:c0:e3:61:95:db:28:59:67:f7:f2:bf:88:c0:ae:15:
03:c2:4d:0a:15:ce:cc:98:6f:64:cf:b2:1b:0f:e2:16:df:4b:
00:e8:59:21:13:2f:ab:30:90:5f:a9:2d:60:04:5e:42:d4:f3:
98:56:20:cb:be:41:3d:62:00:99:02:a3:62:e2:48:9d:d4:17:
b8:99:8a:c1:02:e7:ea:26:f6:16:46:37:39:0f:f5:9f:97:27:
1f:66:9d:70:e7:a5:44:aa:0f:c6:6d:b9:d1:11:ad:b2:f2:98:
84:1d:0d:25:a7:77:9b:7b:c7:b3:46:52:7b:ea:ae:44:59:c4:
5b:af:3d:54:ff:43:b3:a9:7e:a0:bc:de:6c:38:51:b8:36:76:
5e:b2:7e:fd:a0:bb:49:d7:a9:06:b5:70:b7:d3:53:b2:e9:99:
f1:3c:04:e6:6a:1c:a2:2e:12:99:f7:6b:99:96:82:0e:b2:50:
fb:5c:13:e1:c7:26:e6:28:08:b3:66:3b:ce:84:3e:32:32:c5:
4e:98:f9:f9:a9:5a:24:e4:8f:64:53:29:79:89:99:70:9b:b4:
10:b2:a7:40:15:09:ee:19:0b:a9:4d:1f:5f:e2:af:cc:03:fc:
e3:71:20:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:01 2025 by rpki-client