Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1rvU47bf__v_KrHYYRPHuR8fgjc.roa
File: 1rvU47bf__v_KrHYYRPHuR8fgjc.roa (raw, json)
Hash identifier: HO9MgV76hbMMfAjtcpab0pQMUXJlCX3bhzQB4ONUQns=
Subject key identifier: D6:BB:D4:E3:B6:DF:FF:FB:FF:2A:B1:D8:61:13:C7:B9:1F:1F:82:37
Certificate issuer: /CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Certificate serial: 019424B402DC7B15765E51B6CA011CC2D6D3
Authority key identifier: F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1rvU47bf__v_KrHYYRPHuR8fgjc.roa
Signing time: Thu 02 Jan 2025 01:49:24 +0000
ROA not before: Thu 02 Jan 2025 01:49:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13737
IP address blocks: 176.111.216.0/24 maxlen: 24
2a0e:c80:4::/48 maxlen: 48
2a0f:9980:7::/48 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b4:02:dc:7b:15:76:5e:51:b6:ca:01:1c:c2:d6:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f93ac6cd2240249bba60171f086e9101cc87ca24
Validity
Not Before: Jan 2 01:49:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d6bbd4e3b6dffffbff2ab1d86113c7b91f1f8237
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:49:aa:bc:49:bb:41:d8:e8:69:9d:4d:f3:a7:
a9:bb:1f:14:8d:aa:8b:01:ac:f4:16:3c:7f:c5:5a:
09:19:04:e7:ee:58:8f:e6:b8:53:26:a9:d9:0d:e2:
c8:eb:67:bd:12:c8:0e:58:46:31:61:75:9d:70:98:
19:a8:33:62:62:a4:20:92:ca:d4:d4:af:ce:ff:ef:
76:80:d8:65:fa:2b:db:b9:72:bb:01:62:ba:24:49:
70:ea:09:a0:9a:a0:91:10:e6:50:dd:67:25:3a:15:
dc:42:ba:fe:e2:be:b7:9e:9f:fd:1b:98:7a:ed:a7:
72:4d:97:73:4d:c9:e5:16:86:7a:e0:36:f1:78:f4:
f2:18:76:03:47:7e:c5:57:92:57:7e:a0:bb:3e:e1:
06:74:fe:4f:47:b1:d2:e6:54:15:d2:ee:c8:26:ca:
d7:6f:55:69:69:c5:a4:b2:3c:ca:59:ae:1e:9a:34:
5b:f4:78:f3:1c:6f:28:41:06:08:5a:26:14:fa:60:
aa:5c:42:5f:d1:a6:43:d5:3d:8f:f8:ad:c7:8e:dd:
f3:ba:92:e7:6f:1e:a9:66:7d:33:55:a0:0a:43:b2:
52:d0:90:c4:50:79:b0:a3:77:6f:75:8e:e9:7f:a1:
45:2e:1a:a8:7e:70:7e:dd:65:52:88:4c:fb:08:2a:
f6:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:BB:D4:E3:B6:DF:FF:FB:FF:2A:B1:D8:61:13:C7:B9:1F:1F:82:37
X509v3 Authority Key Identifier:
keyid:F9:3A:C6:CD:22:40:24:9B:BA:60:17:1F:08:6E:91:01:CC:87:CA:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1rvU47bf__v_KrHYYRPHuR8fgjc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/b03213-5e80-4931-81ce-f752d81605fb/1/1-TrGzSJAJJu6YBcfCG6RAcyHyiQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.111.216.0/24
IPv6:
2a0e:c80:4::/48
2a0f:9980:7::/48
Signature Algorithm: sha256WithRSAEncryption
14:9f:cf:89:b4:a2:56:bc:a8:7d:89:7b:f6:8d:6e:b9:2f:c0:
3f:0a:b6:93:79:81:e9:30:2f:38:03:7c:c6:37:40:f5:1c:53:
e6:fc:89:a5:e8:23:88:93:bc:b0:c3:b6:6b:b0:a5:6c:2c:0d:
4f:75:50:28:e0:99:26:1e:74:c2:9d:34:ce:37:95:ec:10:22:
c1:76:22:0d:05:5c:c7:56:c5:84:0a:cc:59:8c:9e:e3:72:30:
cc:24:d1:1e:a3:11:a1:fe:c2:56:ce:e7:c5:c7:47:76:94:6d:
9b:63:0c:94:9c:04:bb:10:a0:81:63:5d:49:35:4e:a8:b1:5f:
4e:f4:a2:63:2b:08:fc:59:d6:76:bd:e4:05:8a:4d:6b:ea:68:
ae:ba:ac:5b:5d:23:46:c4:cf:e3:c3:96:51:03:5d:ec:e5:ab:
f0:08:16:1e:4d:65:c8:f6:1c:1a:63:f5:56:0a:2a:50:d7:2c:
01:d2:ba:22:55:2e:84:7e:a1:c9:6a:d2:ed:81:a0:96:66:64:
4b:88:9e:12:22:f2:43:e9:41:69:82:87:c0:21:35:37:5a:24:
cc:f5:48:4c:ef:a1:31:d1:a2:63:7c:6d:d2:7a:f4:d0:39:a7:
60:7b:06:be:aa:69:2a:f5:32:88:91:1d:85:0e:87:66:f5:c3:
cc:8d:79:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 13:27:21 2025 by rpki-client