Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/1c2f90-26ea-4d59-91a9-4d775622bcb6/1/AznASXPtSsVB0QJTrOLEwvRqJvg.roa
File: AznASXPtSsVB0QJTrOLEwvRqJvg.roa (raw, json)
Hash identifier: AIlADlzguhRYCJM9H8PKNEWx4IayFm+wVXpreNrn5jI=
Subject key identifier: 03:39:C0:49:73:ED:4A:C5:41:D1:02:53:AC:E2:C4:C2:F4:6A:26:F8
Certificate issuer: /CN=253358358eba51b534d3fae9a6cb871de637e000
Certificate serial: 01942747EF1341D1A81E8A669E108ED5AE15
Authority key identifier: 25:33:58:35:8E:BA:51:B5:34:D3:FA:E9:A6:CB:87:1D:E6:37:E0:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JTNYNY66UbU00_rppsuHHeY34AA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/1c2f90-26ea-4d59-91a9-4d775622bcb6/1/AznASXPtSsVB0QJTrOLEwvRqJvg.roa
Signing time: Thu 02 Jan 2025 13:50:13 +0000
ROA not before: Thu 02 Jan 2025 13:50:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209664
IP address blocks: 176.117.70.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:47:ef:13:41:d1:a8:1e:8a:66:9e:10:8e:d5:ae:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=253358358eba51b534d3fae9a6cb871de637e000
Validity
Not Before: Jan 2 13:50:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0339c04973ed4ac541d10253ace2c4c2f46a26f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b5:37:c8:03:ff:59:16:05:3d:4b:d8:8b:8b:
04:60:d0:8c:00:6d:b6:d7:e8:49:30:0c:69:c1:ea:
26:90:c3:1b:c6:9a:f8:47:2a:74:5f:8c:77:a3:79:
7c:83:be:db:f5:8c:4b:67:0b:4b:ab:2e:e4:ae:36:
87:21:1d:2e:a8:a0:00:c4:a0:35:b2:0c:9f:18:db:
80:f6:1a:34:09:3f:3d:32:45:70:b1:93:f6:57:bd:
f0:ee:60:07:36:01:ee:e2:db:96:2b:ed:2e:06:e6:
c5:bd:b3:17:89:02:3f:01:e2:eb:d7:4d:21:e4:69:
aa:61:52:60:9a:0b:c2:0c:20:fd:52:91:e4:dd:ec:
57:74:7f:a9:32:ca:87:3a:8e:0f:81:61:93:6a:4f:
76:93:42:fd:c7:89:68:10:73:86:0d:ef:62:0b:05:
1c:47:12:7d:3c:8a:9b:74:3b:0f:24:e8:13:a9:59:
c9:94:2a:9e:a9:4a:60:95:c4:9f:03:bf:c5:31:c2:
54:b2:7a:be:75:d8:c7:9f:7a:f5:b8:e0:64:40:02:
7f:b4:58:ab:db:64:0d:b0:39:44:ff:47:20:38:b5:
3b:13:bf:33:e9:d2:94:c3:de:57:bd:c2:7b:93:05:
7b:c6:78:d8:5f:4e:86:39:0f:1b:17:a8:21:cc:70:
ff:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:39:C0:49:73:ED:4A:C5:41:D1:02:53:AC:E2:C4:C2:F4:6A:26:F8
X509v3 Authority Key Identifier:
keyid:25:33:58:35:8E:BA:51:B5:34:D3:FA:E9:A6:CB:87:1D:E6:37:E0:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JTNYNY66UbU00_rppsuHHeY34AA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1c2f90-26ea-4d59-91a9-4d775622bcb6/1/AznASXPtSsVB0QJTrOLEwvRqJvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/1c2f90-26ea-4d59-91a9-4d775622bcb6/1/JTNYNY66UbU00_rppsuHHeY34AA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.117.70.0/24
Signature Algorithm: sha256WithRSAEncryption
18:b3:4d:80:d0:c9:39:e7:db:06:1b:6a:eb:e1:60:e2:d2:63:
00:0f:8f:1c:e8:18:29:6a:b2:bf:18:06:b8:f4:4c:9b:1a:eb:
e7:10:fa:f3:4d:76:6a:d3:39:84:40:10:d2:12:2d:b8:ad:8b:
78:89:52:f7:2f:f8:6b:f9:62:5a:bb:e6:92:d4:2e:5a:4f:79:
d5:1c:b9:4b:50:8a:15:bf:50:db:dd:76:72:da:72:94:cc:2b:
87:20:7f:3a:54:24:b9:39:05:05:fd:63:2b:20:bd:1b:b0:47:
28:69:e1:0b:fc:f7:13:9a:90:d4:44:6c:22:f4:b2:0f:46:7d:
25:64:cb:52:7f:ae:de:d4:f2:d2:b7:9a:79:ed:cc:fa:ea:34:
2e:fe:55:8d:fc:00:53:0c:4f:02:3d:89:69:e1:ad:f1:63:44:
cf:f3:55:d0:c4:ad:7e:66:f6:23:13:e7:c1:fe:d8:d1:95:4d:
89:c1:bb:6d:32:8c:ff:2b:5a:85:55:19:5b:ac:83:c4:ad:96:
5f:b4:6b:f9:0f:03:b4:9d:06:d7:aa:cb:07:de:37:0e:50:dc:
ef:8a:5b:1e:16:d1:27:b3:d0:c7:9a:29:b7:72:71:32:7f:45:
e0:47:36:1a:69:49:31:a5:4d:2f:3e:83:b4:28:26:34:2e:9a:
c4:c9:9a:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:49:42 2025 by rpki-client