Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/ac52c3-ca44-4784-b72e-12641f9e6fc0/1/RKkDo4x3eCRHKZeD9yYfIBpsLwU.roa
File: RKkDo4x3eCRHKZeD9yYfIBpsLwU.roa (raw, json)
Hash identifier: sBORviTcM0USSg/QUKXwx/KwApwYSgOWeE3zX+gLQdw=
Subject key identifier: 44:A9:03:A3:8C:77:78:24:47:29:97:83:F7:26:1F:20:1A:6C:2F:05
Certificate issuer: /CN=fec6fb5a467974c977a997c6dda1464805ed379f
Certificate serial: 0186E05BBA3AD4D116556A92FA2C0ACC05C5
Authority key identifier: FE:C6:FB:5A:46:79:74:C9:77:A9:97:C6:DD:A1:46:48:05:ED:37:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_sb7WkZ5dMl3qZfG3aFGSAXtN58.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/ac52c3-ca44-4784-b72e-12641f9e6fc0/1/RKkDo4x3eCRHKZeD9yYfIBpsLwU.roa
Signing time: Tue 14 Mar 2023 13:42:33 +0000
ROA not before: Tue 14 Mar 2023 13:42:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 8075
IP address blocks: 176.116.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:e0:5b:ba:3a:d4:d1:16:55:6a:92:fa:2c:0a:cc:05:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fec6fb5a467974c977a997c6dda1464805ed379f
Validity
Not Before: Mar 14 13:42:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44a903a38c77782447299783f7261f201a6c2f05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:cf:b8:75:93:be:ca:ee:28:82:58:90:f9:d5:
ad:bb:98:83:ca:71:74:c0:03:6b:ed:ba:4d:4f:7a:
c8:43:77:ec:e3:47:c8:1d:87:76:00:cc:82:87:4d:
3e:a2:c8:49:76:a0:b8:e9:cd:1e:77:13:97:13:68:
12:ae:43:6c:99:1b:af:7a:3e:c2:bb:26:65:0e:23:
e8:14:3e:a4:15:19:b9:28:8b:8a:9c:6a:29:12:de:
44:54:f1:3c:34:7d:2e:91:63:98:bf:db:40:dc:c8:
44:2d:7a:cf:25:8f:69:35:40:e2:cd:03:38:d9:03:
3b:50:2b:1d:65:a8:ca:93:12:74:54:98:49:88:fa:
c6:24:4a:35:3e:3d:25:7c:05:a4:61:b9:7b:48:49:
14:60:f8:87:36:1c:c8:7d:37:6e:8a:a7:3b:af:07:
fc:e4:2b:00:b9:4c:18:80:55:5d:0b:fc:23:58:42:
43:58:f8:90:0a:46:a0:12:19:4d:bc:e2:4c:63:12:
e7:ff:57:e5:7e:2b:1e:2e:5f:fb:07:dc:84:28:cd:
eb:5d:a8:35:df:b7:87:61:71:9a:92:93:23:6c:50:
6d:d6:05:7c:2b:a3:d2:21:07:a8:1e:ea:1f:2e:de:
7a:81:af:86:63:91:7d:da:66:2f:a4:04:92:2c:b8:
67:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:A9:03:A3:8C:77:78:24:47:29:97:83:F7:26:1F:20:1A:6C:2F:05
X509v3 Authority Key Identifier:
keyid:FE:C6:FB:5A:46:79:74:C9:77:A9:97:C6:DD:A1:46:48:05:ED:37:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_sb7WkZ5dMl3qZfG3aFGSAXtN58.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/ac52c3-ca44-4784-b72e-12641f9e6fc0/1/RKkDo4x3eCRHKZeD9yYfIBpsLwU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/ac52c3-ca44-4784-b72e-12641f9e6fc0/1/_sb7WkZ5dMl3qZfG3aFGSAXtN58.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.116.123.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:52:1d:d4:8a:bf:b1:2e:53:d1:45:4d:47:d5:35:21:f2:f0:
7d:b2:fe:89:54:c9:ec:f4:83:96:96:a6:79:d4:9e:b1:25:93:
17:90:db:7c:c5:8c:c2:54:19:41:3f:e9:0f:21:10:87:88:90:
1a:9e:ec:e3:41:af:d9:21:3f:56:c5:e6:17:e2:9b:c5:17:73:
6d:76:25:dc:f5:24:3b:c9:34:d2:5e:f9:fb:d2:90:d4:88:ff:
13:4a:eb:a2:f6:f7:67:5f:47:54:95:c2:1c:10:a9:fb:7f:bb:
c4:2f:03:dc:bc:f9:8d:a5:74:27:e1:3d:3f:70:f4:8e:75:92:
ff:0e:b7:e4:18:38:e9:1e:1e:df:95:fb:d4:2c:b3:c6:fc:16:
62:34:80:01:fd:06:0f:bc:49:70:2c:16:d1:a1:23:27:5f:52:
9a:37:ac:49:d4:7c:39:f2:a3:a0:ac:61:09:e9:ab:09:38:5b:
90:51:da:0d:17:9e:dd:d4:50:0c:fc:5f:30:1f:13:ad:77:dc:
30:ec:9e:bc:a9:f5:30:6d:54:4a:e0:16:2e:50:ad:6c:15:c5:
ab:ca:48:ac:f5:ba:60:da:2e:30:1f:78:2b:1e:13:4d:7b:8e:
6c:f7:c3:07:39:45:45:08:bd:ac:95:64:cd:d2:6c:dd:19:09:
92:6e:f9:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:25:59 2025 by rpki-client