Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/9759e3-7260-4e0e-9826-4a708d12952b/1/d_S3i_OGbiWrNlEWdHY0PRw02qA.roa
File: d_S3i_OGbiWrNlEWdHY0PRw02qA.roa (raw, json)
Hash identifier: A73KDkFJnCcU8ItKals2TEF7JAue+ISEBkl3NU+RGic=
Subject key identifier: 77:F4:B7:8B:F3:86:6E:25:AB:36:51:16:74:76:34:3D:1C:34:DA:A0
Certificate issuer: /CN=4a4d81d215ed51dfcc3c3bc0e7e7bf154373ad05
Certificate serial: 018A980EA0C8EBE2AF7D52A67B5884F7C5E6
Authority key identifier: 4A:4D:81:D2:15:ED:51:DF:CC:3C:3B:C0:E7:E7:BF:15:43:73:AD:05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sk2B0hXtUd_MPDvA5-e_FUNzrQU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/9759e3-7260-4e0e-9826-4a708d12952b/1/d_S3i_OGbiWrNlEWdHY0PRw02qA.roa
Signing time: Fri 15 Sep 2023 08:56:50 +0000
ROA not before: Fri 15 Sep 2023 08:56:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 216394
IP address blocks: 176.116.6.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:98:0e:a0:c8:eb:e2:af:7d:52:a6:7b:58:84:f7:c5:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a4d81d215ed51dfcc3c3bc0e7e7bf154373ad05
Validity
Not Before: Sep 15 08:56:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77f4b78bf3866e25ab3651167476343d1c34daa0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:13:aa:30:7c:33:cb:c1:83:b6:d4:6c:45:0d:
ea:d7:06:91:1f:0b:de:48:be:47:a2:70:4a:18:6e:
f4:69:76:d2:ce:0c:be:b8:7a:21:30:63:90:c5:0b:
e5:90:dd:e3:bd:58:47:11:f5:44:86:27:5d:b6:9e:
04:1e:6c:de:9e:a3:31:72:e2:88:75:8a:38:0d:80:
ce:6f:24:f8:a6:3e:bb:6b:c9:fe:df:c8:f6:32:36:
98:a9:3e:c1:89:00:47:29:94:28:1b:8c:02:38:46:
d6:c5:a7:6b:0d:b8:00:f2:c3:82:66:0e:05:01:1b:
ff:d6:0b:85:e0:9a:1a:ef:57:70:2e:87:46:d8:40:
b3:d0:49:ec:67:d3:e4:25:79:d0:f7:2e:8f:6f:1f:
5a:00:52:41:19:3d:e9:6a:38:e4:0f:7d:29:3e:f9:
c6:46:a8:05:16:60:50:e8:48:23:14:1b:6f:f4:82:
b7:22:83:a6:96:c8:d8:4c:91:1e:15:0b:ee:6e:0f:
04:75:a7:63:6a:da:9a:9c:40:57:5b:7a:cc:46:2c:
7e:37:52:43:c8:81:41:f2:76:a5:d0:42:35:23:36:
e3:55:1d:ca:5b:69:9e:77:a0:01:f4:15:04:e0:8c:
b2:94:3c:5a:dc:5e:05:81:fc:49:54:24:5d:a9:1e:
3d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F4:B7:8B:F3:86:6E:25:AB:36:51:16:74:76:34:3D:1C:34:DA:A0
X509v3 Authority Key Identifier:
keyid:4A:4D:81:D2:15:ED:51:DF:CC:3C:3B:C0:E7:E7:BF:15:43:73:AD:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sk2B0hXtUd_MPDvA5-e_FUNzrQU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9759e3-7260-4e0e-9826-4a708d12952b/1/d_S3i_OGbiWrNlEWdHY0PRw02qA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9759e3-7260-4e0e-9826-4a708d12952b/1/Sk2B0hXtUd_MPDvA5-e_FUNzrQU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.6.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:64:e5:8a:68:2a:2d:34:f0:9d:f3:e2:58:70:66:3c:e3:48:
bc:9d:0f:19:bb:49:3d:bf:dc:6a:ca:2e:15:2f:6e:46:8d:03:
59:5e:f9:40:3f:51:83:79:b7:77:a1:42:88:30:95:c0:e9:4c:
1b:e7:0f:13:01:de:f1:6d:7a:51:49:b4:5d:fc:f3:39:51:5a:
bf:af:ae:52:1b:80:29:f5:01:2a:6b:f3:23:2e:e5:1b:fe:54:
4c:78:30:3a:fc:f3:68:38:34:34:5e:3d:ef:8e:58:7f:15:29:
7d:e3:8c:a3:42:d7:eb:8a:a2:25:77:8d:f5:16:77:16:8c:f4:
26:47:a3:66:85:ab:42:e0:c9:e5:9d:07:62:f6:57:9f:26:5b:
e4:30:2b:0d:24:6c:1a:f5:9f:07:bd:84:21:c2:71:71:1a:6f:
95:b5:a6:cb:74:13:95:5f:65:2a:4a:e4:74:35:22:c8:29:8b:
99:b2:f0:6b:b9:0b:08:86:31:0f:6f:5f:8b:db:74:ba:7a:03:
17:12:45:b8:3b:f2:33:d3:93:b8:7a:e3:38:2b:d5:8e:af:65:
a7:62:94:8f:7f:38:8c:b6:31:6f:a4:49:cb:c8:77:3f:31:93:
24:68:32:49:20:6b:09:33:b8:1e:56:e0:f8:d7:28:e3:f0:b0:
17:0b:32:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:21:24 2025 by rpki-client