Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/e7ClHW0Diz9NI2-wCOuDxFi7Fwc.roa
File: e7ClHW0Diz9NI2-wCOuDxFi7Fwc.roa (raw, json)
Hash identifier: p7Uo+ytE/LvhYN0UhXOtIJYLZhKm8SII4Qv9NEnRQzE=
Subject key identifier: 7B:B0:A5:1D:6D:03:8B:3F:4D:23:6F:B0:08:EB:83:C4:58:BB:17:07
Certificate issuer: /CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Certificate serial: 09ADE50B
Authority key identifier: 3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/e7ClHW0Diz9NI2-wCOuDxFi7Fwc.roa
Signing time: Sat 01 Jan 2022 14:59:36 +0000
ROA not before: Sat 01 Jan 2022 14:59:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 139.28.24.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 162391307 (0x9ade50b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Validity
Not Before: Jan 1 14:59:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bb0a51d6d038b3f4d236fb008eb83c458bb1707
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:fe:e4:fb:49:1b:cd:07:29:61:76:a9:3c:a3:
78:c9:d4:04:62:45:0d:3f:a6:5a:bf:23:68:df:7b:
0d:dc:18:88:29:bd:31:2b:46:40:3c:2c:7b:b0:c1:
0c:c4:ad:d6:21:cd:aa:78:de:19:6b:71:27:0e:01:
01:d9:e3:44:23:88:16:94:57:f4:ed:28:fe:63:67:
46:fa:dd:f1:bd:de:59:91:1b:4b:8f:c0:13:a7:07:
8c:49:1f:41:a2:c6:9d:8a:85:eb:32:05:76:a6:5e:
3d:01:ac:3f:d1:b8:f5:df:b1:04:7b:51:85:2d:19:
a5:92:1c:2b:01:df:02:90:d8:d2:7a:9c:f6:d5:ea:
b1:a6:80:05:bc:fc:ef:da:98:1e:2a:83:68:77:4e:
b9:95:15:e2:9f:f9:e4:bb:88:a2:46:a1:92:9c:37:
c0:62:44:c6:2a:27:86:9c:24:d1:08:d9:21:99:15:
ca:d8:73:8e:5b:79:98:83:c8:a5:8d:af:80:0f:53:
09:7f:5d:d0:5a:6d:b1:ab:b1:3e:b9:47:31:c7:e5:
0a:81:51:71:2a:a9:70:f3:df:55:b4:52:e7:78:18:
71:7b:78:16:5a:aa:e1:87:e5:bd:1d:73:b9:43:23:
43:6e:16:7f:44:fa:75:eb:08:fc:c9:c7:03:ac:d0:
53:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B0:A5:1D:6D:03:8B:3F:4D:23:6F:B0:08:EB:83:C4:58:BB:17:07
X509v3 Authority Key Identifier:
keyid:3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/e7ClHW0Diz9NI2-wCOuDxFi7Fwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/OuUa1QQPRQOvxx3FAYnEqWTRzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.24.0/22
Signature Algorithm: sha256WithRSAEncryption
83:7d:84:6d:05:79:66:ee:60:18:35:92:a3:1a:ef:26:c5:ef:
98:6a:34:62:c8:46:eb:25:21:d4:95:ca:d5:9e:68:cb:08:e0:
68:9e:3c:8a:9b:fa:b2:87:56:07:5f:d7:41:ea:a7:3e:b6:62:
ad:dd:4f:80:ec:e7:08:fc:a6:3a:7f:68:0d:9b:04:73:9b:cd:
f4:e3:ea:a5:7d:8d:06:8f:f2:8c:a4:5a:25:92:e4:83:fe:d0:
cf:1e:75:9a:d8:3b:b2:42:60:f9:41:38:bf:5c:63:5a:1e:46:
1d:38:98:00:87:d2:ed:3a:1d:bb:82:36:20:79:b7:80:27:2f:
0f:96:4a:97:1d:5a:38:80:29:c3:47:29:c0:f9:67:c9:3f:6a:
37:73:4b:b5:ea:30:49:b7:ba:ca:04:be:e1:ea:1c:27:38:87:
6b:65:69:ea:26:57:6c:ae:36:70:24:3d:61:05:bb:23:33:c7:
98:a4:c0:e2:be:ce:9b:29:65:3b:16:1a:3e:1d:fd:69:e3:c2:
17:36:3e:56:a1:c4:d6:44:52:46:49:ad:d1:78:fd:9d:32:38:
69:32:62:01:65:03:60:f9:18:fe:56:36:30:2e:c6:9b:c8:e4:
33:14:31:a7:4e:37:2d:b4:3c:eb:59:07:7d:dc:fd:9b:0b:8e:
66:ee:64:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:47:57 2025 by rpki-client