Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/6453af-df05-4eb8-8c9f-fb2048eb6a4c/1/ekr1JF0s9sbTKSreNRwcwdja_7I.roa
File: ekr1JF0s9sbTKSreNRwcwdja_7I.roa (raw, json)
Hash identifier: 6w4+kxr9+Ssj1d4lX+/ERkwMKQqGHy4CYOCCFsQtEIM=
Subject key identifier: 7A:4A:F5:24:5D:2C:F6:C6:D3:29:2A:DE:35:1C:1C:C1:D8:DA:FF:B2
Certificate issuer: /CN=b04a937aae2c67e50fe10ad9945649f455584d1a
Certificate serial: 035DCD53
Authority key identifier: B0:4A:93:7A:AE:2C:67:E5:0F:E1:0A:D9:94:56:49:F4:55:58:4D:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sEqTeq4sZ-UP4QrZlFZJ9FVYTRo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/6453af-df05-4eb8-8c9f-fb2048eb6a4c/1/ekr1JF0s9sbTKSreNRwcwdja_7I.roa
Signing time: Mon 24 Jan 2022 15:13:24 +0000
ROA not before: Mon 24 Jan 2022 15:13:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50673
IP address blocks: 194.107.76.0/22 maxlen: 22
194.107.77.0/24 maxlen: 24
194.107.76.0/24 maxlen: 24
160.20.152.0/22 maxlen: 22
194.107.79.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56479059 (0x35dcd53)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b04a937aae2c67e50fe10ad9945649f455584d1a
Validity
Not Before: Jan 24 15:13:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7a4af5245d2cf6c6d3292ade351c1cc1d8daffb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f1:13:2e:7c:66:b9:28:30:83:2b:18:01:e7:
ae:ce:2b:39:42:55:71:cb:0b:b6:92:27:95:f1:56:
2f:38:5d:cf:3b:fe:83:ff:81:fa:0e:2d:34:7b:90:
52:aa:b4:90:bd:53:8d:59:04:8e:10:01:ea:cc:ae:
97:2e:96:57:fe:37:93:1f:c6:cf:30:bf:e4:b6:67:
aa:2e:71:57:58:61:60:16:14:82:a0:1c:d5:98:32:
00:36:be:f3:3a:8f:90:97:81:41:77:b0:1d:ae:3b:
1a:fd:ac:bc:61:fa:c3:a0:f3:ba:4a:05:29:06:85:
af:30:e0:78:3e:e3:19:25:37:8e:1b:ca:54:2c:3f:
79:08:29:c6:57:ca:59:08:5d:6a:d7:a6:10:c8:2d:
16:04:f4:8b:c5:cb:f0:ce:9d:92:d1:b3:7a:7b:14:
de:20:7b:6d:83:04:af:9c:7a:8b:60:da:79:8d:a6:
16:4f:26:6b:e8:1e:3a:41:84:5f:5e:b7:81:c4:6b:
7f:99:7f:89:1a:6e:84:9e:da:af:63:03:4d:40:68:
9a:27:67:88:36:36:3e:0f:cb:c8:cc:5b:3c:64:97:
66:9d:7e:93:40:47:95:28:8a:59:f8:e6:fd:48:57:
7a:de:d2:66:56:88:44:82:e2:25:ee:b7:1d:f8:a0:
f4:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:4A:F5:24:5D:2C:F6:C6:D3:29:2A:DE:35:1C:1C:C1:D8:DA:FF:B2
X509v3 Authority Key Identifier:
keyid:B0:4A:93:7A:AE:2C:67:E5:0F:E1:0A:D9:94:56:49:F4:55:58:4D:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sEqTeq4sZ-UP4QrZlFZJ9FVYTRo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6453af-df05-4eb8-8c9f-fb2048eb6a4c/1/ekr1JF0s9sbTKSreNRwcwdja_7I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/6453af-df05-4eb8-8c9f-fb2048eb6a4c/1/sEqTeq4sZ-UP4QrZlFZJ9FVYTRo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.20.152.0/22
194.107.76.0/22
Signature Algorithm: sha256WithRSAEncryption
24:30:77:2e:3c:b8:1c:fb:d7:20:9e:f4:84:9d:19:9f:dd:97:
8d:53:7a:62:e1:92:fe:3e:76:54:99:72:97:f3:c1:65:8e:8a:
f6:9d:9a:8d:07:9e:af:3e:31:49:69:1c:48:41:0d:60:9e:b4:
cd:32:17:55:65:9e:ee:f7:a2:5c:e2:de:69:fa:b3:5d:6a:fd:
64:e6:a0:a0:58:ee:4b:7a:9c:f0:4b:f8:1b:73:5e:56:04:8c:
f7:c8:90:8b:a7:58:07:71:d8:80:c8:b6:b5:89:72:cd:d4:02:
4e:f2:cf:33:24:7b:30:9d:8b:3d:e4:8a:d6:02:95:45:3c:f1:
fe:b8:60:8c:61:57:43:91:15:52:d9:b4:f8:4a:a4:e7:9e:10:
09:e0:24:a1:93:f4:7f:23:1a:ae:19:9f:cd:48:45:95:d4:7c:
41:02:64:f5:1e:79:68:26:81:d0:3c:bd:ce:1e:05:3b:95:ab:
e1:77:13:6c:62:de:f8:f9:aa:3c:47:d4:c8:82:b8:44:e5:40:
bb:3d:3a:e2:e7:b9:e3:46:7d:a7:be:74:db:69:6e:f9:79:52:
16:44:57:d5:5a:e5:5f:f2:58:85:5d:ac:4c:73:88:04:a6:0d:
2b:e2:77:54:75:77:8a:e9:1c:2c:13:5c:4b:ed:10:c0:74:08:
b1:ea:8a:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:18:50 2025 by rpki-client