Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/62bcff-7d96-453e-9399-c76e4b1f4c2c/1/PBOYnLFP9Jueq7QQ2l2hnFHttuk.roa
File: PBOYnLFP9Jueq7QQ2l2hnFHttuk.roa (raw, json)
Hash identifier: 5d+tyz1enlA8fQTXI0pZPujHHCf8K4ktFvxyeRL7Tgs=
Subject key identifier: 3C:13:98:9C:B1:4F:F4:9B:9E:AB:B4:10:DA:5D:A1:9C:51:ED:B6:E9
Certificate issuer: /CN=030bde05a2cd806a00c808425e8b5c5dc9cf6c3b
Certificate serial: 19A3735D
Authority key identifier: 03:0B:DE:05:A2:CD:80:6A:00:C8:08:42:5E:8B:5C:5D:C9:CF:6C:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AwveBaLNgGoAyAhCXotcXcnPbDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/62bcff-7d96-453e-9399-c76e4b1f4c2c/1/PBOYnLFP9Jueq7QQ2l2hnFHttuk.roa
Signing time: Sat 01 Jan 2022 07:53:20 +0000
ROA not before: Sat 01 Jan 2022 07:53:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199766
IP address blocks: 185.43.144.0/22 maxlen: 25
2a04:9600::/29 maxlen: 56
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 430142301 (0x19a3735d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=030bde05a2cd806a00c808425e8b5c5dc9cf6c3b
Validity
Not Before: Jan 1 07:53:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c13989cb14ff49b9eabb410da5da19c51edb6e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e1:7a:05:68:5c:7d:de:3a:b2:eb:d5:43:04:
3a:69:de:44:83:25:3e:db:af:87:7c:92:c4:a5:f7:
87:93:e4:49:92:da:56:4b:22:b8:c9:14:01:c9:46:
74:dd:dc:81:ff:e8:fd:b1:38:41:1b:79:1c:50:38:
4f:22:04:91:74:44:be:22:f3:7a:39:6c:c2:d3:7c:
85:1c:19:36:45:fc:8c:ee:a7:03:21:b6:fd:e6:cb:
62:30:79:93:1a:aa:cd:84:fc:31:29:ce:73:22:ce:
df:87:bf:2f:b8:44:3a:20:5a:7b:b0:03:1e:42:9a:
be:f4:0e:82:6f:54:c0:79:0b:b0:78:23:b4:2c:ff:
91:f2:5b:56:11:b7:ed:77:64:63:ad:ca:24:f1:c4:
99:ef:69:04:d3:bd:57:3d:9b:53:df:b8:ff:43:fd:
87:71:de:eb:b3:ca:39:e5:28:a7:0f:52:57:6a:1b:
04:88:10:ba:52:5b:e9:7c:eb:ec:74:b4:e4:7c:ad:
4d:7d:c0:2e:15:34:48:4e:88:48:59:51:3c:c8:20:
71:80:54:f0:d2:46:13:37:b2:be:34:b6:45:28:97:
ff:2f:2a:6e:a5:01:b0:f5:a6:20:d3:e1:eb:9d:e2:
50:c4:e6:ee:fd:d4:fa:f6:77:a1:07:3a:c3:54:00:
a0:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:13:98:9C:B1:4F:F4:9B:9E:AB:B4:10:DA:5D:A1:9C:51:ED:B6:E9
X509v3 Authority Key Identifier:
keyid:03:0B:DE:05:A2:CD:80:6A:00:C8:08:42:5E:8B:5C:5D:C9:CF:6C:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AwveBaLNgGoAyAhCXotcXcnPbDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/62bcff-7d96-453e-9399-c76e4b1f4c2c/1/PBOYnLFP9Jueq7QQ2l2hnFHttuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/62bcff-7d96-453e-9399-c76e4b1f4c2c/1/AwveBaLNgGoAyAhCXotcXcnPbDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.43.144.0/22
IPv6:
2a04:9600::/29
Signature Algorithm: sha256WithRSAEncryption
bc:65:2d:3c:18:07:22:5a:72:dc:2d:d8:db:c3:35:8a:15:e3:
52:09:91:f8:df:9c:e7:72:48:38:a0:9e:64:43:0e:d8:3d:95:
d1:1b:e8:33:a6:e8:0a:5c:0e:83:7f:a0:25:c2:4a:d3:2e:58:
2b:31:df:26:9d:b5:b3:53:31:d2:ae:00:42:8b:c5:c1:aa:4e:
26:fd:b7:4e:86:0e:8c:e2:58:50:82:6b:f5:c7:6b:2d:05:56:
a7:07:a6:9c:d0:7f:52:6f:86:cc:51:0e:39:bb:58:b6:9f:bc:
d8:d8:d7:0b:8e:28:6e:3a:36:5e:84:b3:33:58:3f:8c:7f:d4:
a7:7a:2a:86:85:e5:ca:a5:d6:9e:f8:20:ad:a4:eb:7e:db:54:
1c:3d:b4:60:5f:22:e2:f8:d0:e1:60:0a:a9:55:39:11:40:45:
bd:12:ce:3d:0a:ef:12:00:81:08:87:a3:75:d8:13:e6:55:93:
96:03:4a:4b:f1:d7:3c:29:3d:26:3d:84:b7:82:54:06:cc:1e:
59:93:83:c1:ab:40:1e:66:cc:c1:32:ad:dc:91:a0:30:50:e2:
d9:5a:fb:d1:07:f3:48:17:9c:21:ac:f4:20:1a:2c:52:a6:b4:
fe:11:39:aa:e1:8b:5d:81:e8:e5:0b:cb:cb:bb:be:c3:56:7f:
e9:b5:71:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:08:22 2025 by rpki-client