Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/EpX7yhb3wZbrTHS75_n5MESCft0.roa
File: EpX7yhb3wZbrTHS75_n5MESCft0.roa (raw, json)
Hash identifier: YIe3D1FPt9+DssE+tIVU1Hl+4b7RJxw+YuPrLGuo504=
Subject key identifier: 12:95:FB:CA:16:F7:C1:96:EB:4C:74:BB:E7:F9:F9:30:44:82:7E:DD
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 42DE8ED2
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/EpX7yhb3wZbrTHS75_n5MESCft0.roa
Signing time: Wed 04 May 2022 09:36:09 +0000
ROA not before: Wed 04 May 2022 09:36:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61279
IP address blocks: 89.40.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1121881810 (0x42de8ed2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: May 4 09:36:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1295fbca16f7c196eb4c74bbe7f9f93044827edd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:bf:62:c9:e8:6f:c9:79:a6:b0:b7:b2:7a:a2:
87:ef:26:c3:f7:f4:5f:b7:41:d4:8c:d1:e7:8b:c4:
d3:c8:b7:b2:b7:5f:31:df:2a:ff:ec:eb:8a:c3:92:
f9:66:2f:50:a6:66:3f:24:69:a2:c2:e0:e0:75:8a:
62:e5:a5:b8:51:16:97:45:62:51:40:6d:e2:2f:6f:
5b:46:f9:23:9c:2e:16:e5:bf:4c:45:62:38:fe:67:
41:00:a5:8f:c5:d7:87:d7:18:aa:29:a1:a3:88:a1:
4d:2f:6b:22:41:23:b8:2b:61:cb:f3:ed:7b:d1:de:
18:25:1f:37:b5:9a:8f:3f:81:4d:c9:b7:c8:33:e1:
03:db:d9:4c:7f:2c:b6:aa:38:b2:c5:b5:98:8b:ae:
a5:2e:aa:9c:26:eb:91:3b:ff:64:28:dc:00:e6:90:
3f:95:d6:1f:4b:a6:4a:a8:49:3d:74:ff:39:f4:c4:
76:5b:60:19:c6:ab:3a:a2:0d:2d:3d:25:a7:fa:2a:
d4:86:58:50:1c:e4:9a:fb:a7:5c:bf:e4:bc:9b:64:
ea:ed:e9:4e:f7:c1:a6:ea:39:23:5c:92:33:fc:30:
3a:62:db:9a:71:99:15:84:50:b1:9e:d7:de:90:cd:
9c:d4:cd:b6:52:71:c7:0b:ae:c5:64:4d:58:bf:d2:
a4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:95:FB:CA:16:F7:C1:96:EB:4C:74:BB:E7:F9:F9:30:44:82:7E:DD
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/EpX7yhb3wZbrTHS75_n5MESCft0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.40.20.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:62:23:d7:82:66:3c:18:e6:cd:5d:4e:b9:20:49:a4:af:6b:
83:af:34:86:f4:02:64:d3:6a:f1:00:89:68:8f:d7:87:7e:c6:
ab:54:9f:7a:74:49:14:40:9e:aa:53:a7:bb:f5:6a:c4:2b:bf:
6b:fc:f8:6d:d9:7c:33:06:0f:26:a0:00:82:22:2c:46:03:de:
28:2d:ad:6d:d2:58:09:c4:5b:aa:f6:21:7b:4e:ee:e3:e3:b8:
d5:fd:e9:1e:dc:d5:98:ad:1a:85:7c:68:77:ac:ab:00:5c:0b:
d7:34:19:40:08:b0:0a:df:77:8c:6c:32:e2:12:d4:12:72:c0:
4b:1c:89:8f:19:72:aa:0a:40:62:f4:e8:d5:17:02:5b:b6:3d:
74:98:48:9c:fa:3f:9c:85:26:70:95:13:dd:3f:48:f9:63:ed:
97:f1:39:4d:f7:d7:eb:04:f2:5c:ba:d2:ac:d5:d7:2b:f8:ec:
dc:f9:8a:09:d0:f9:ae:a8:8f:4c:04:52:45:92:66:eb:18:49:
e6:0f:83:32:e6:7a:c3:9c:09:4a:b4:a4:67:16:5b:11:4c:da:
ad:73:40:d8:4e:43:3a:ad:6a:97:09:cd:27:d0:61:2b:c2:6e:
2f:9d:93:2e:65:04:d0:9d:6e:bc:7a:b0:5f:bd:94:10:ea:af:
7b:cd:cd:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:36:00 2025 by rpki-client