Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/ecbbea-9bc4-4bcd-9522-1008204ba6fd/1/r5bwWMpFWHT39IJnWNYdx8Upk3Y.roa
File: r5bwWMpFWHT39IJnWNYdx8Upk3Y.roa (raw, json)
Hash identifier: FRY0XCZcVCoKS5JvH/6Wb6kKQMn1jXLNAXYRA14w5p0=
Subject key identifier: AF:96:F0:58:CA:45:58:74:F7:F4:82:67:58:D6:1D:C7:C5:29:93:76
Certificate issuer: /CN=7545b74cb0f5e0ae08071d34483e16a07e8b0f5d
Certificate serial: 960A5C
Authority key identifier: 75:45:B7:4C:B0:F5:E0:AE:08:07:1D:34:48:3E:16:A0:7E:8B:0F:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dUW3TLD14K4IBx00SD4WoH6LD10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/ecbbea-9bc4-4bcd-9522-1008204ba6fd/1/r5bwWMpFWHT39IJnWNYdx8Upk3Y.roa
Signing time: Sat 01 Jan 2022 03:59:39 +0000
ROA not before: Sat 01 Jan 2022 03:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 176.97.221.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9833052 (0x960a5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7545b74cb0f5e0ae08071d34483e16a07e8b0f5d
Validity
Not Before: Jan 1 03:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af96f058ca455874f7f4826758d61dc7c5299376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:0c:6f:82:f6:09:81:bb:c7:80:07:de:53:6e:
9b:41:11:60:3a:bd:1f:3f:19:9b:aa:c9:bf:01:11:
96:2c:5e:0c:5a:e2:72:57:13:58:bb:95:99:53:3d:
1b:41:56:13:b3:e6:91:3b:58:4d:a1:9d:a0:e3:43:
45:3a:5f:4a:6d:88:5f:d4:2d:ac:39:e8:ea:d5:c2:
0e:00:e9:0e:0f:a4:38:98:33:33:e5:bd:0f:5b:72:
71:eb:bb:5c:5a:55:f8:2b:05:04:6f:e2:83:7e:ff:
c0:50:e3:fc:12:2d:51:48:b3:7c:9e:d3:c6:73:ca:
de:1c:9f:c8:0c:2b:c9:3e:0b:dd:e3:d9:03:ac:c9:
06:ca:0f:ee:20:9e:35:ed:b3:d1:0d:1d:b6:25:cd:
df:4e:bb:96:b9:d4:4f:e2:28:2a:c1:48:6f:b3:3a:
d2:da:88:d2:7b:de:15:16:11:7f:f0:cc:88:4b:21:
05:29:b9:43:61:a4:3c:59:53:4a:9f:36:03:78:36:
0b:dd:fb:24:3b:18:a4:4b:0b:9b:69:55:17:fa:e8:
82:c3:b6:bd:e3:74:70:07:a0:d7:49:48:78:51:cc:
72:2e:ee:7e:6c:43:e5:19:da:d1:e3:fa:e3:8f:76:
98:f3:8e:57:bb:ad:cd:ba:71:51:1b:e1:bc:b0:2d:
6d:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:96:F0:58:CA:45:58:74:F7:F4:82:67:58:D6:1D:C7:C5:29:93:76
X509v3 Authority Key Identifier:
keyid:75:45:B7:4C:B0:F5:E0:AE:08:07:1D:34:48:3E:16:A0:7E:8B:0F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dUW3TLD14K4IBx00SD4WoH6LD10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/ecbbea-9bc4-4bcd-9522-1008204ba6fd/1/r5bwWMpFWHT39IJnWNYdx8Upk3Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/ecbbea-9bc4-4bcd-9522-1008204ba6fd/1/dUW3TLD14K4IBx00SD4WoH6LD10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.221.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:c3:fd:a2:04:bb:8b:e0:42:fe:76:09:1b:00:56:2c:4d:2a:
fe:42:6e:4f:20:69:b9:41:c5:67:51:32:6d:48:8f:b4:77:7e:
65:eb:95:71:e8:d2:3a:e8:6c:99:bd:12:ec:79:5e:cd:9c:f2:
8a:2a:b2:2e:79:af:f6:e9:a2:99:7b:d0:68:65:38:69:e6:81:
28:d2:5e:04:7b:6d:7b:b2:66:b7:04:fb:00:a7:7b:32:e2:5b:
f0:f8:49:ff:17:d6:79:10:84:1f:69:2b:bf:f1:6a:8b:e1:6a:
d5:dd:32:c4:ca:3f:1f:42:8b:06:3e:06:35:86:a6:f6:cb:b3:
b0:a0:96:a5:e4:e6:fb:8a:44:04:75:f2:98:7a:6c:5d:de:23:
69:04:06:5e:5a:dd:05:59:e1:e7:59:ff:74:06:0e:18:50:50:
af:fe:db:dd:04:01:6e:cf:18:07:fb:3a:30:79:44:cc:3b:00:
9d:5e:22:51:08:10:90:38:59:10:8a:4f:60:48:8e:bd:6f:08:
81:89:a9:92:28:14:d7:10:a2:f5:c6:ae:db:e0:90:b0:9c:6c:
42:31:d0:63:03:c7:7e:1e:1e:e9:28:20:3a:e5:04:ab:3d:4a:
fd:5b:f6:c6:c0:c4:86:af:2e:fd:85:84:c1:33:ec:a2:30:7c:
71:ca:7e:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:20 2025 by rpki-client