Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/bbcfaa-7c45-4935-9159-dde769d7ade9/1/4J9JcHZzDii8bi9UNdpAGwlAbbg.roa
File: 4J9JcHZzDii8bi9UNdpAGwlAbbg.roa (raw, json)
Hash identifier: QeK0IhZNSOlCCOdKGda6ah5/ob7VfpWxhCVeqkDUiI4=
Subject key identifier: E0:9F:49:70:76:73:0E:28:BC:6E:2F:54:35:DA:40:1B:09:40:6D:B8
Certificate issuer: /CN=caeed2e1bb505049adb39884436cf2cb3e745224
Certificate serial: 0161BF
Authority key identifier: CA:EE:D2:E1:BB:50:50:49:AD:B3:98:84:43:6C:F2:CB:3E:74:52:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yu7S4btQUEmts5iEQ2zyyz50UiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/bbcfaa-7c45-4935-9159-dde769d7ade9/1/4J9JcHZzDii8bi9UNdpAGwlAbbg.roa
Signing time: Tue 08 Feb 2022 18:37:50 +0000
ROA not before: Tue 08 Feb 2022 18:37:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 217.198.181.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90559 (0x161bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=caeed2e1bb505049adb39884436cf2cb3e745224
Validity
Not Before: Feb 8 18:37:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e09f497076730e28bc6e2f5435da401b09406db8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:14:23:02:7c:39:6d:be:53:7b:35:bc:14:1d:
27:47:80:05:87:3a:1b:dc:e7:02:ac:33:b3:44:d8:
54:7f:ec:63:82:66:6e:87:d6:f5:55:3a:c8:9f:64:
fe:4a:84:c7:e4:9e:b0:a1:5b:81:ec:08:2d:59:bf:
f7:eb:fb:1a:a4:7b:ea:22:9f:c0:6b:18:49:3f:19:
e1:c2:a6:d8:89:44:ad:75:f6:14:80:21:39:44:af:
e6:bc:34:4d:91:14:58:cf:ad:6a:d3:3d:96:e6:33:
9f:99:5a:98:de:7b:8c:ed:ee:3b:9a:33:5c:9d:da:
37:22:28:97:33:64:e0:b2:50:e0:54:88:35:ff:42:
9a:8e:39:e6:0d:d5:e2:f3:f0:31:fe:cd:20:f5:72:
de:70:4c:ad:19:6c:c1:3e:37:66:bf:d0:0d:af:5b:
44:a3:02:4c:8c:68:54:7d:0e:c5:79:24:2a:27:14:
91:e3:05:fd:46:79:2b:da:ed:f5:39:d0:22:61:d0:
70:c7:4a:2e:97:8c:c7:08:49:af:81:02:aa:af:0b:
bd:40:b2:f6:aa:39:05:bd:0a:6a:0a:c7:90:cd:13:
ab:5e:dd:59:d0:26:b3:2b:e8:11:aa:a2:43:08:f8:
4e:d8:75:eb:cd:03:4a:06:6c:86:00:d9:6f:82:3d:
8c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:9F:49:70:76:73:0E:28:BC:6E:2F:54:35:DA:40:1B:09:40:6D:B8
X509v3 Authority Key Identifier:
keyid:CA:EE:D2:E1:BB:50:50:49:AD:B3:98:84:43:6C:F2:CB:3E:74:52:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yu7S4btQUEmts5iEQ2zyyz50UiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bbcfaa-7c45-4935-9159-dde769d7ade9/1/4J9JcHZzDii8bi9UNdpAGwlAbbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/bbcfaa-7c45-4935-9159-dde769d7ade9/1/yu7S4btQUEmts5iEQ2zyyz50UiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.181.0/24
Signature Algorithm: sha256WithRSAEncryption
68:86:57:6d:a0:52:a8:40:ba:24:60:ab:bf:22:c6:ac:a5:a4:
e3:55:d4:de:81:95:8a:3a:fb:8f:4c:3a:0d:ef:1c:d6:38:68:
ff:8b:51:36:71:15:8b:82:fa:ee:4a:a1:b3:f4:ee:46:b7:72:
43:d8:9e:12:95:17:65:b7:ac:1e:22:91:7c:08:f1:0e:24:6e:
58:67:e5:2d:31:33:c0:d2:52:60:dd:39:9e:53:79:c4:63:64:
b8:5c:48:c4:83:57:13:f0:65:a1:82:0f:e3:c6:99:20:83:e4:
23:dd:cd:1f:53:9b:8a:8a:82:31:08:d1:21:4e:71:5b:ec:94:
78:96:06:41:66:90:bd:e5:5f:26:cd:93:97:81:1a:61:e7:2c:
b2:3d:1c:08:5a:ee:2c:e9:f6:73:5c:fd:cd:35:33:b1:d7:fc:
4a:71:01:f2:20:41:4b:90:27:dc:13:81:03:69:7b:13:6a:0c:
a6:62:50:67:fb:c2:09:c2:e0:3b:f9:44:b8:87:6f:5e:ef:73:
6f:b4:f4:d3:f1:18:10:7c:b6:c1:20:70:a4:a4:71:1e:7e:79:
d9:d2:e8:3c:fd:0f:1c:95:f1:75:7a:85:ff:7a:ae:77:f4:c1:
06:82:bc:dd:fa:b3:9b:3d:65:bb:6b:f5:c8:02:f7:07:bf:4e:
20:b3:ec:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:53:14 2025 by rpki-client