Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/l_q7_nQZILjdGEjaTSxiJbxMlSo.roa
File: l_q7_nQZILjdGEjaTSxiJbxMlSo.roa (raw, json)
Hash identifier: lKZ+fA5COg/0qelj4/5A1EMbcM9Wp2Wu+NzlOIQopCE=
Subject key identifier: 97:FA:BB:FE:74:19:20:B8:DD:18:48:DA:4D:2C:62:25:BC:4C:95:2A
Certificate issuer: /CN=49e14bf76f42da4f2ac003a6c69d61c2320e2cd8
Certificate serial: 01878DB28B96642CD1D4293FEA33BBF67E95
Authority key identifier: 49:E1:4B:F7:6F:42:DA:4F:2A:C0:03:A6:C6:9D:61:C2:32:0E:2C:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeFL929C2k8qwAOmxp1hwjIOLNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/l_q7_nQZILjdGEjaTSxiJbxMlSo.roa
Signing time: Mon 17 Apr 2023 05:31:41 +0000
ROA not before: Mon 17 Apr 2023 05:31:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 185.21.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8d:b2:8b:96:64:2c:d1:d4:29:3f:ea:33:bb:f6:7e:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e14bf76f42da4f2ac003a6c69d61c2320e2cd8
Validity
Not Before: Apr 17 05:31:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=97fabbfe741920b8dd1848da4d2c6225bc4c952a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:72:ae:aa:ec:79:6b:34:7f:02:bd:e8:c5:86:
06:ed:48:92:22:2e:19:db:30:a3:a2:e3:d9:f6:7f:
e0:32:ab:1f:7a:6b:99:2f:2e:01:f6:3d:04:a1:2d:
99:10:c4:32:95:87:7e:dc:d9:a2:75:8d:0c:58:f8:
7a:3f:c3:10:a4:14:5a:39:7e:64:22:33:51:f7:67:
d0:b9:1c:89:a0:07:fb:2e:e0:ce:e8:91:c8:a7:28:
29:2c:ea:55:e8:01:e7:18:bc:d8:a2:bb:d5:b7:5c:
56:c1:bf:30:36:ca:cc:b2:f7:51:11:81:b5:fb:8c:
ee:4d:53:b7:58:ed:77:5f:23:54:84:f3:0a:be:f6:
71:f6:ed:01:77:e5:2a:a0:f7:5d:40:a8:15:5a:18:
e7:37:9b:0e:ab:fb:c6:4c:92:41:7f:fd:b2:3d:0a:
12:e3:26:5d:61:f2:4d:53:7c:6d:09:e7:83:5c:9a:
35:c7:2b:71:6f:aa:87:52:e3:f3:9b:0d:98:6a:f9:
37:04:a7:4f:06:00:0d:cb:ae:a2:d1:87:03:67:fe:
4e:23:b6:5e:42:2a:1c:7f:c3:1d:31:d2:30:5c:1d:
6e:d3:38:9e:fa:90:cc:3a:f4:75:d9:d3:e9:d0:fe:
59:22:33:01:32:13:53:5b:38:5d:92:3d:ef:f8:2b:
00:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:FA:BB:FE:74:19:20:B8:DD:18:48:DA:4D:2C:62:25:BC:4C:95:2A
X509v3 Authority Key Identifier:
keyid:49:E1:4B:F7:6F:42:DA:4F:2A:C0:03:A6:C6:9D:61:C2:32:0E:2C:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeFL929C2k8qwAOmxp1hwjIOLNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/l_q7_nQZILjdGEjaTSxiJbxMlSo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9d/56167f-5327-4c88-b4ea-3beccaae336d/1/SeFL929C2k8qwAOmxp1hwjIOLNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.21.131.0/24
Signature Algorithm: sha256WithRSAEncryption
65:4e:2d:42:57:4d:bd:ce:3c:20:77:cd:ec:a6:44:c6:b8:0b:
ef:5d:20:22:32:a2:d4:f7:a6:f2:91:b1:64:01:7c:90:f8:ea:
8b:d9:90:7d:b8:70:0f:33:bf:df:73:e3:fc:94:c9:59:ce:0f:
80:c3:70:bc:7c:07:8d:d4:b6:25:93:2b:20:70:78:4f:3a:8a:
c3:3f:d9:ea:fa:9c:3b:52:99:a2:92:77:b5:c0:8a:f4:17:d0:
06:a5:dc:dd:a2:30:24:ab:df:51:9b:91:64:0a:92:e2:be:54:
48:5f:b0:33:8b:9c:05:e9:c3:3c:12:6a:84:e6:6a:45:e3:45:
10:df:82:76:b5:7c:75:d8:a6:08:b9:a3:56:da:64:3b:a1:a4:
df:9d:9c:9e:ab:fd:9c:4c:33:aa:2b:bd:a0:81:69:24:6a:9f:
36:95:fe:0e:94:83:02:0e:a7:39:67:a2:0a:59:96:b9:20:5b:
b7:2e:f5:84:c9:37:14:ae:dd:9c:67:4e:2b:fc:d1:ed:2d:31:
8e:dc:be:5d:8b:7b:da:be:03:ee:a2:0c:a8:38:8e:03:26:66:
3f:2b:a2:17:91:dd:06:f4:aa:72:a6:e4:55:1b:1e:03:b6:4e:
94:88:08:68:62:a0:8e:39:e6:15:dc:ee:56:75:67:0e:ea:e5:
9c:71:7d:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:21:53 2025 by rpki-client