Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/1ad468-e309-4ae6-a1ca-d54c49a46338/1/RGrsS39pgprbePyaLzZVVlgSbBk.roa
File: RGrsS39pgprbePyaLzZVVlgSbBk.roa (raw, json)
Hash identifier: TgZrS1uzy3jy67hyWUgYfA6ksSLpNSzEn+tIXer+bss=
Subject key identifier: 44:6A:EC:4B:7F:69:82:9A:DB:78:FC:9A:2F:36:55:56:58:12:6C:19
Certificate issuer: /CN=2c76e0c8f6cb721e3bcf2011ba3aafba2a1017db
Certificate serial: 019049D9E34DE6C161E760A5986BD887D2F1
Authority key identifier: 2C:76:E0:C8:F6:CB:72:1E:3B:CF:20:11:BA:3A:AF:BA:2A:10:17:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LHbgyPbLch47zyARujqvuioQF9s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/1ad468-e309-4ae6-a1ca-d54c49a46338/1/RGrsS39pgprbePyaLzZVVlgSbBk.roa
Signing time: Mon 24 Jun 2024 10:45:34 +0000
ROA not before: Mon 24 Jun 2024 10:45:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 209200
IP address blocks: 2.57.8.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:49:d9:e3:4d:e6:c1:61:e7:60:a5:98:6b:d8:87:d2:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2c76e0c8f6cb721e3bcf2011ba3aafba2a1017db
Validity
Not Before: Jun 24 10:45:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=446aec4b7f69829adb78fc9a2f36555658126c19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:2d:4f:1b:d7:06:bc:ce:29:9f:ee:1a:b1:e0:
f3:c6:10:f2:eb:3c:a8:0a:a2:09:82:d7:10:c7:68:
4a:3c:3c:18:d0:e9:24:55:2a:b0:ac:ef:f8:e7:e5:
cd:b8:f5:5d:1a:ca:0a:c3:68:55:26:da:e1:7a:b4:
e8:26:5d:e8:bd:c9:be:c1:1e:9c:c6:36:90:e7:12:
6c:c3:c0:b0:3f:e9:09:42:eb:ef:bf:89:1e:b1:83:
a4:d0:c9:f1:2f:de:09:48:e8:db:c3:d2:2e:a8:dd:
34:a3:c0:9a:28:10:de:8f:21:12:7c:c4:46:d5:d2:
73:63:40:5a:89:65:e7:fe:99:89:53:56:df:ee:c2:
99:1e:fb:86:e3:b4:2e:b1:22:16:74:3b:9e:68:f1:
fa:b1:a9:ff:fc:89:f0:6e:67:31:e4:95:d3:e3:53:
80:b7:f3:29:4d:fa:55:bb:e7:e1:18:17:51:e2:80:
7a:a3:67:18:cd:6b:1b:88:fb:21:0b:42:bd:94:25:
f8:7b:98:cc:52:e1:63:5e:1e:b4:67:91:b1:95:f1:
61:35:8d:0d:51:0b:b9:35:43:f3:05:a3:81:e4:f7:
55:5d:a2:ec:60:e3:b7:9c:0d:ac:ed:79:c6:7c:c3:
86:7b:df:2f:37:3e:12:af:4c:89:52:a2:b2:f1:30:
06:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:6A:EC:4B:7F:69:82:9A:DB:78:FC:9A:2F:36:55:56:58:12:6C:19
X509v3 Authority Key Identifier:
keyid:2C:76:E0:C8:F6:CB:72:1E:3B:CF:20:11:BA:3A:AF:BA:2A:10:17:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LHbgyPbLch47zyARujqvuioQF9s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/1ad468-e309-4ae6-a1ca-d54c49a46338/1/RGrsS39pgprbePyaLzZVVlgSbBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/1ad468-e309-4ae6-a1ca-d54c49a46338/1/LHbgyPbLch47zyARujqvuioQF9s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.8.0/23
Signature Algorithm: sha256WithRSAEncryption
22:f3:d4:2e:9f:16:fe:43:14:6c:e1:f6:0c:f1:c7:a1:a5:e0:
4b:02:97:2e:66:a8:68:42:1c:ba:22:be:78:ea:5c:6a:83:f2:
c9:14:ea:1a:93:3b:88:c5:18:ab:a0:a7:c2:e0:a2:43:c0:da:
d3:4f:61:54:54:09:e1:e2:7b:86:d0:b9:bc:b0:b4:19:61:a1:
a5:a8:46:47:fa:ee:68:0b:8d:b6:9b:82:ba:ec:9c:d3:a5:e6:
77:30:5a:60:c1:29:fa:0c:5f:c8:9b:9e:af:45:f5:59:ba:18:
b7:cc:3f:2e:aa:4f:85:82:12:80:c3:cf:80:a0:2e:58:50:68:
99:29:e4:00:cd:f6:23:0e:6a:03:fc:85:f0:b3:f0:4f:f1:05:
db:f8:be:76:17:64:b1:d3:92:06:2c:a7:0c:bc:a4:39:a0:6d:
88:3b:35:32:99:0b:00:d1:b2:89:94:83:28:81:a9:98:1a:bb:
f7:20:24:2a:8f:67:d2:98:6f:84:b4:e6:bc:48:44:86:fb:fe:
7c:38:4e:fa:ee:42:8c:e3:44:05:73:ce:f7:96:8a:0c:d2:cc:
5c:ab:88:5f:a9:45:f7:89:8b:1c:a6:83:f2:5d:34:0e:db:d7:
60:16:fe:5a:53:d5:18:3f:4d:71:24:a1:fd:5a:6c:58:23:ed:
f9:d8:02:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:18:24 2025 by rpki-client