Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/sR7EwX-9wsCokDSBqV-ZEE7YVAs.roa
File: sR7EwX-9wsCokDSBqV-ZEE7YVAs.roa (raw, json)
Hash identifier: 16W6UxP0q44FmECl2gyaiSEwbOvdc/CkwXi3PzuQ3lo=
Subject key identifier: B1:1E:C4:C1:7F:BD:C2:C0:A8:90:34:81:A9:5F:99:10:4E:D8:54:0B
Certificate issuer: /CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Certificate serial: 0B39AD9C
Authority key identifier: 3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/sR7EwX-9wsCokDSBqV-ZEE7YVAs.roa
Signing time: Sat 25 Jun 2022 08:11:15 +0000
ROA not before: Sat 25 Jun 2022 08:11:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 139.28.25.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 188329372 (0xb39ad9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3ae51ad5040f4503afc71dc50189c4a964d1cd40
Validity
Not Before: Jun 25 08:11:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b11ec4c17fbdc2c0a8903481a95f99104ed8540b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1a:eb:a6:0c:c9:97:64:28:d3:da:83:39:f1:
46:86:33:e7:cd:91:50:66:0e:35:15:3e:ce:60:3b:
83:7e:75:19:4f:3c:c7:48:d9:0b:8e:87:66:5e:ad:
a3:41:e7:96:c4:60:95:4b:0a:79:67:32:ef:e1:4d:
1d:9c:2c:f6:45:65:a5:b3:3a:1b:3a:dc:f1:4d:0f:
be:6c:bd:f1:be:e8:4c:f3:22:47:90:b4:f1:e4:ce:
5f:c8:79:2d:00:4e:cd:f9:6b:a4:94:5c:f6:ea:b8:
be:19:8c:58:78:b0:bb:59:bd:7a:18:31:aa:9e:92:
3a:e1:5c:05:06:de:01:f9:0b:57:5d:a7:77:40:ce:
3a:06:f6:f7:7b:34:29:3b:8d:e5:53:09:29:a0:b7:
ed:73:10:ee:3e:80:80:9c:bf:98:a5:03:ce:92:63:
1c:d2:08:c5:e6:c0:f2:f1:8f:13:18:7e:59:12:fd:
5f:bd:29:a1:8f:9e:7e:3a:91:0d:e4:39:1e:ad:37:
27:ec:49:ef:c9:f7:b5:72:2a:68:8b:8b:64:bd:81:
43:4c:f9:e7:f0:aa:c0:eb:64:94:e6:ed:44:82:e5:
c9:f2:1b:13:8c:42:b0:1c:33:d1:9d:7c:19:fe:51:
11:64:6d:99:d6:0c:69:b4:80:11:e4:a0:10:80:f7:
dd:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:1E:C4:C1:7F:BD:C2:C0:A8:90:34:81:A9:5F:99:10:4E:D8:54:0B
X509v3 Authority Key Identifier:
keyid:3A:E5:1A:D5:04:0F:45:03:AF:C7:1D:C5:01:89:C4:A9:64:D1:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OuUa1QQPRQOvxx3FAYnEqWTRzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/sR7EwX-9wsCokDSBqV-ZEE7YVAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/09560d-2923-4349-af5c-a583f17082aa/1/OuUa1QQPRQOvxx3FAYnEqWTRzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.25.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:ab:ce:dc:5f:4a:b5:d2:21:3a:8d:4e:56:20:e9:72:b8:a1:
25:30:56:19:f9:9c:a4:e4:93:4e:75:4c:99:b1:95:ee:5b:9f:
0c:22:3c:0c:44:90:65:f8:49:37:6f:d6:e7:a0:90:a8:c6:c5:
19:39:0f:54:cd:cd:de:5a:ff:3e:c8:15:37:63:07:4a:ba:fb:
7a:af:1f:a5:07:3d:23:d6:66:ec:9c:79:3a:eb:62:94:76:ab:
84:aa:66:39:30:8f:68:87:0d:47:60:2e:4c:c6:80:f0:2a:94:
dc:86:6a:6d:89:78:81:e7:fd:04:69:7c:e6:d7:d7:5d:4a:85:
1f:f6:8b:f5:17:64:cc:f4:51:ea:e1:54:61:b7:91:de:31:6c:
28:56:64:38:18:95:6d:9c:03:cf:7a:50:7d:cf:35:14:9d:fc:
39:f2:e2:63:23:01:50:77:37:eb:1d:a9:08:5d:5d:49:da:66:
fb:37:dc:92:bb:e1:a0:b6:f8:b4:41:96:46:37:cb:32:5c:1e:
d4:f9:f8:26:16:db:79:af:5f:ba:e1:5f:a5:90:c4:96:d8:6a:
02:bf:00:2b:98:86:ae:f5:68:da:99:74:5d:cb:96:17:6d:e5:
92:44:89:41:90:f7:55:e4:5c:e7:ff:37:7d:7f:73:fe:7f:8c:
72:0f:0e:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:20 2025 by rpki-client