Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/9a331f-ddab-4d25-a6d7-a35c025fd122/1/cgQOPO4fq5TIXx9EEbEWsiSXyvk.roa
File: cgQOPO4fq5TIXx9EEbEWsiSXyvk.roa (raw, json)
Hash identifier: kIShWqzfeMsrkFtycMTWdwch+ObEu6KmMhGve+FF9wM=
Subject key identifier: 72:04:0E:3C:EE:1F:AB:94:C8:5F:1F:44:11:B1:16:B2:24:97:CA:F9
Certificate issuer: /CN=16779914bbc57b5eb908027a9d68b31017db8a0c
Certificate serial: 01875FBD1D8C3ACCF15939E2E52979DDEF13
Authority key identifier: 16:77:99:14:BB:C5:7B:5E:B9:08:02:7A:9D:68:B3:10:17:DB:8A:0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FneZFLvFe165CAJ6nWizEBfbigw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/9a331f-ddab-4d25-a6d7-a35c025fd122/1/cgQOPO4fq5TIXx9EEbEWsiSXyvk.roa
Signing time: Sat 08 Apr 2023 07:20:42 +0000
ROA not before: Sat 08 Apr 2023 07:20:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211484
IP address blocks: 109.205.190.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:5f:bd:1d:8c:3a:cc:f1:59:39:e2:e5:29:79:dd:ef:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=16779914bbc57b5eb908027a9d68b31017db8a0c
Validity
Not Before: Apr 8 07:20:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=72040e3cee1fab94c85f1f4411b116b22497caf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:64:96:c7:ce:a5:2b:89:9f:96:f5:d2:ad:f5:
d6:63:45:fb:fe:5d:62:1c:04:99:1d:05:9f:e2:1e:
a7:86:e5:67:db:42:67:4f:2e:b7:ad:28:53:f7:d7:
ae:a6:87:09:a8:0c:0f:2a:35:b4:ca:85:55:66:fe:
0c:33:5e:5c:1a:62:ac:8d:8f:c0:c0:17:0e:0a:c5:
e3:61:29:d5:98:19:63:1a:ae:47:c2:48:9f:be:35:
80:32:7f:a6:87:7e:f2:e5:04:f5:2b:83:c6:ae:ce:
9f:e9:98:bf:a4:f4:4b:c3:34:82:92:ad:a1:d7:50:
b3:2f:51:9c:e4:5b:9f:82:ab:d6:db:5f:aa:b0:1d:
42:d3:de:8b:dd:0d:cf:6e:e4:f1:83:f0:62:87:09:
9d:08:63:ad:d4:af:3a:cd:1b:f5:32:c8:46:1f:2f:
45:75:3e:a0:c2:7d:2f:2d:17:02:ae:16:b2:cb:08:
c4:b2:50:19:25:49:93:fa:6d:ca:39:91:b1:ba:7f:
95:27:74:38:f3:d4:72:45:7f:71:e9:cc:3a:b5:84:
15:f1:1e:43:08:30:1f:45:b6:ac:3a:88:2d:b0:79:
ab:d1:d8:e8:7d:cb:c6:f2:d8:36:81:92:6e:5c:2c:
65:92:2d:c4:d0:14:f2:a4:c1:bd:57:98:e5:a2:b4:
c2:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:04:0E:3C:EE:1F:AB:94:C8:5F:1F:44:11:B1:16:B2:24:97:CA:F9
X509v3 Authority Key Identifier:
keyid:16:77:99:14:BB:C5:7B:5E:B9:08:02:7A:9D:68:B3:10:17:DB:8A:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FneZFLvFe165CAJ6nWizEBfbigw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9a331f-ddab-4d25-a6d7-a35c025fd122/1/cgQOPO4fq5TIXx9EEbEWsiSXyvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9a331f-ddab-4d25-a6d7-a35c025fd122/1/FneZFLvFe165CAJ6nWizEBfbigw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.190.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e5:b9:da:a7:55:60:41:53:c7:dc:8d:13:fb:58:ff:4a:c1:
4a:1a:bf:ab:e0:9d:51:e5:8f:38:7d:60:ff:23:c0:08:57:f3:
a1:c8:94:8e:60:03:3a:fc:fd:e4:e7:be:80:72:c3:35:92:a2:
b8:5d:a5:9a:6f:d7:ed:82:1b:8c:ff:ed:32:8b:d9:71:fd:93:
93:b2:c1:d4:d5:f4:b5:5c:43:38:7f:a3:ba:31:7d:d2:93:df:
57:83:bc:23:67:36:c4:15:33:17:ad:50:b6:5d:0d:3c:93:3e:
01:bb:e0:e4:6f:bb:94:70:74:74:f9:06:ce:32:41:dd:ed:c1:
8a:5a:93:18:2a:e2:2a:90:d2:79:42:99:3a:a7:3d:8a:f3:0e:
06:d9:1b:c0:21:0b:d8:bc:af:c2:ac:7a:a2:33:a7:a0:43:86:
58:86:c9:d7:3a:d6:77:90:b3:92:bc:0b:ad:5b:0c:9e:c2:91:
c6:24:6c:a6:c9:1f:d9:cc:bf:23:5a:c6:c1:83:d6:30:cd:96:
b4:c7:c4:b6:4d:22:fd:a4:e6:9b:c5:15:45:ac:d6:47:28:9c:
03:ac:c9:de:65:cc:1c:ed:84:d5:7e:8b:19:7c:aa:a6:e1:5d:
d5:0f:e9:f5:d8:27:1a:da:79:0e:c7:63:cc:4d:1e:b4:20:0d:
50:8d:96:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:23:38 2025 by rpki-client