Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/f26afa-f76a-4474-9223-cd0fa1063e13/1/AgvIIL6Xy1fPN8RVioiy8wQdUjo.roa
File: AgvIIL6Xy1fPN8RVioiy8wQdUjo.roa (raw, json)
Hash identifier: neoaPKzwi06sRe8JwQj1Zg0RT5WgLC5RgMhGmaNJxHY=
Subject key identifier: 02:0B:C8:20:BE:97:CB:57:CF:37:C4:55:8A:88:B2:F3:04:1D:52:3A
Certificate issuer: /CN=e621f68eceda56f330e5067ed3ea52c7b982a8ae
Certificate serial: 01856F1D9AF6591C5E35012B56944F543971
Authority key identifier: E6:21:F6:8E:CE:DA:56:F3:30:E5:06:7E:D3:EA:52:C7:B9:82:A8:AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5iH2js7aVvMw5QZ-0-pSx7mCqK4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/f26afa-f76a-4474-9223-cd0fa1063e13/1/AgvIIL6Xy1fPN8RVioiy8wQdUjo.roa
Signing time: Sun 01 Jan 2023 20:54:49 +0000
ROA not before: Sun 01 Jan 2023 20:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 27176
IP address blocks: 37.16.76.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:1d:9a:f6:59:1c:5e:35:01:2b:56:94:4f:54:39:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e621f68eceda56f330e5067ed3ea52c7b982a8ae
Validity
Not Before: Jan 1 20:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=020bc820be97cb57cf37c4558a88b2f3041d523a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:6a:b8:14:53:f3:6b:b9:ed:e3:9a:44:b8:d4:
ce:0f:4e:a7:51:30:cc:29:be:50:ae:7b:3c:64:bf:
19:59:a3:7c:f8:e5:e7:88:77:b5:77:d0:75:60:13:
f7:36:72:b5:e2:62:6c:48:47:d5:de:4c:6b:c5:06:
2f:27:e3:72:b0:82:75:c2:0a:46:12:4d:70:e4:69:
d6:e4:a9:0e:b3:b9:d7:e0:c8:ea:5c:ff:da:8e:d9:
89:01:52:6b:93:3a:ed:f9:ee:d9:f9:93:7b:7a:e0:
6f:74:e8:22:5c:28:68:1f:f2:1d:1d:c5:5c:55:c2:
31:72:1f:a5:e7:4a:ec:24:9a:48:0d:1e:78:b4:e6:
a3:e6:ce:cf:a2:9e:cf:95:d8:18:6e:4e:b8:f8:81:
f2:05:b9:85:76:9e:06:63:39:58:9e:d8:8d:5e:dd:
25:ed:8f:14:7e:19:e0:f2:18:31:a1:84:89:38:ad:
7e:23:0f:ef:b9:1d:fc:6b:04:e5:4d:7a:07:0e:54:
b3:21:ab:4d:ca:d2:35:ba:89:14:3e:8b:31:6c:55:
51:aa:51:3f:14:ba:04:9f:14:71:f0:40:49:59:87:
0b:bb:20:e0:06:3f:1a:1c:a8:d9:1e:40:6d:24:ff:
49:f9:a2:a4:4d:d8:07:0a:ff:64:c7:38:ed:86:d0:
be:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:0B:C8:20:BE:97:CB:57:CF:37:C4:55:8A:88:B2:F3:04:1D:52:3A
X509v3 Authority Key Identifier:
keyid:E6:21:F6:8E:CE:DA:56:F3:30:E5:06:7E:D3:EA:52:C7:B9:82:A8:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iH2js7aVvMw5QZ-0-pSx7mCqK4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f26afa-f76a-4474-9223-cd0fa1063e13/1/AgvIIL6Xy1fPN8RVioiy8wQdUjo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/f26afa-f76a-4474-9223-cd0fa1063e13/1/5iH2js7aVvMw5QZ-0-pSx7mCqK4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.76.0/24
Signature Algorithm: sha256WithRSAEncryption
09:ce:3c:99:62:27:3b:19:b8:08:ce:78:82:00:bb:d0:05:ab:
f3:8a:01:82:a7:1e:fb:af:f8:2f:43:cd:c4:e5:ef:c1:c0:62:
a2:19:63:64:06:ee:1a:fa:78:5e:f8:34:85:b7:5d:6c:d8:03:
e7:df:cf:18:09:d4:6d:c4:9f:8c:cb:bc:b7:dc:7c:01:ea:0b:
99:07:b3:6d:0a:24:0c:23:fe:bf:69:66:5b:f2:d3:a0:f4:ff:
d4:fb:e3:8f:70:5e:2f:76:7d:55:b5:6a:2b:bf:78:9d:0a:ae:
ff:87:74:ec:53:93:bd:58:26:cc:97:fd:7c:7a:22:4a:4b:0c:
8e:89:83:41:96:31:3f:27:66:34:90:2f:b9:53:0d:ce:48:d3:
dc:e9:03:f9:ce:cd:ce:dc:21:bb:fe:b3:22:01:33:e2:47:5a:
94:4e:f1:3e:d8:51:ef:65:9f:b7:2d:4c:ee:12:2b:cf:bd:59:
59:51:a6:35:cb:8d:50:a1:f1:b1:59:34:11:2c:58:bb:b8:d8:
95:b3:28:95:c7:dd:7e:15:57:8c:de:9e:b5:9f:d0:e9:87:cf:
61:cf:09:b4:ed:b0:e6:dc:2c:ea:ae:74:90:bc:88:b0:6f:7c:
14:9f:5a:22:8f:b3:2b:63:4c:07:0f:df:5f:10:11:0e:1e:f6:
95:d3:42:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:50 2025 by rpki-client