Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/Iggomnu-wClZsfICnuzAjL_i_ZY.roa
File: Iggomnu-wClZsfICnuzAjL_i_ZY.roa (raw, json)
Hash identifier: jwSMgftSvsX6GCqAA2gUvAo/+TMPuNFT2UAFAEiEG+g=
Subject key identifier: 22:08:28:9A:7B:BE:C0:29:59:B1:F2:02:9E:EC:C0:8C:BF:E2:FD:96
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 019427B63B2F464C8575B3DE4A424C9354B2
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/Iggomnu-wClZsfICnuzAjL_i_ZY.roa
Signing time: Thu 02 Jan 2025 15:50:41 +0000
ROA not before: Thu 02 Jan 2025 15:50:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211440
IP address blocks: 139.28.172.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b6:3b:2f:46:4c:85:75:b3:de:4a:42:4c:93:54:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Jan 2 15:50:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2208289a7bbec02959b1f2029eecc08cbfe2fd96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:12:f3:bd:a9:6d:d2:bd:f5:7d:8e:38:fa:dc:
40:56:8b:42:9c:2d:6b:30:70:51:08:e7:b5:1e:6e:
6c:13:0f:29:ee:73:56:c0:53:e1:55:ff:2e:4d:10:
90:e4:46:9c:9a:cb:d0:50:de:47:8a:03:3e:52:74:
17:af:cd:4e:82:e1:1a:e4:e9:7b:8d:43:10:72:71:
16:12:bf:59:92:9e:e4:51:af:97:56:ad:4c:39:2c:
42:c6:e9:20:58:d0:86:81:8d:36:93:8c:c2:54:e7:
53:a8:a1:9f:05:6e:8f:7c:01:e9:25:37:e5:ac:ea:
b7:0a:a2:07:74:e4:38:64:24:18:d5:38:c3:a8:22:
6c:c0:08:cf:a1:9b:69:de:f9:13:c0:23:ea:0b:40:
33:c7:9a:95:71:ca:7d:b3:f6:ae:37:39:7a:73:72:
0e:a8:54:68:dc:5c:f0:a0:e6:cf:43:5d:30:1d:69:
13:b9:0a:ef:20:82:61:cd:5b:ab:2f:fd:93:f0:7b:
7e:1c:2d:49:61:31:47:5a:e5:ee:af:b1:7e:65:cb:
66:fd:ec:c1:94:0f:d4:a1:c9:fe:e7:e6:0d:48:13:
53:09:89:da:05:8c:3e:f3:f0:35:c6:79:39:ef:33:
af:42:f0:3e:19:44:4b:57:5f:22:a9:a7:07:e6:4f:
12:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:08:28:9A:7B:BE:C0:29:59:B1:F2:02:9E:EC:C0:8C:BF:E2:FD:96
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/Iggomnu-wClZsfICnuzAjL_i_ZY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.28.172.0/22
Signature Algorithm: sha256WithRSAEncryption
10:d2:fe:d0:d5:ff:b1:30:08:f2:75:d8:80:5f:01:7d:a9:c6:
46:67:c5:a6:8e:88:4f:5c:36:55:b7:79:61:82:dd:15:39:89:
3d:60:e6:45:63:7e:8a:8e:a9:2e:7e:49:7a:aa:2f:d0:7d:f7:
64:d8:ae:ed:22:c4:e6:08:26:a8:bd:3e:f4:48:fa:b9:99:9f:
07:39:f5:e1:ac:fc:ea:6f:69:e7:a0:12:ea:54:3c:9b:2d:46:
a2:92:1f:be:b3:88:90:90:a3:61:1a:a3:2e:05:c0:40:38:36:
72:d1:54:c3:42:99:81:3d:90:73:16:93:44:61:35:9b:79:77:
46:95:77:89:95:0a:e8:31:a8:3b:a3:b6:10:29:23:a9:b3:c4:
bb:bb:af:0d:8c:12:52:6b:3c:b4:ce:51:39:35:98:2b:c3:4d:
33:fe:c8:35:13:98:81:ea:72:54:34:3d:6e:48:23:9a:3d:2b:
86:5b:77:34:8b:ff:b1:cc:e4:cd:62:f8:01:53:c0:ef:03:8f:
7b:10:1a:f7:4f:eb:4f:57:90:d4:58:a3:bc:51:3f:dd:c5:b5:
d2:ec:68:ba:b4:2a:9f:9d:0e:df:ed:70:9b:0c:9a:65:f1:df:
f6:3d:6b:fd:4b:50:2b:bc:a2:77:11:f5:f2:f1:47:b8:38:41:
a1:18:ac:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:12 2025 by rpki-client