Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/4X8W2P7e-liBO9Drw4wuslvGaCI.roa
File: 4X8W2P7e-liBO9Drw4wuslvGaCI.roa (raw, json)
Hash identifier: DYAGmOZ4fthN6aMkNdfmUu0jKmhPyW1yq02oShQtix8=
Subject key identifier: E1:7F:16:D8:FE:DE:FA:58:81:3B:D0:EB:C3:8C:2E:B2:5B:C6:68:22
Certificate issuer: /CN=79065ccf1ebe555b3752717e595c275bcad00b4e
Certificate serial: 0185A534E2700F4F6DAB42CF57F194A48E06
Authority key identifier: 79:06:5C:CF:1E:BE:55:5B:37:52:71:7E:59:5C:27:5B:CA:D0:0B:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eQZczx6-VVs3UnF-WVwnW8rQC04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/4X8W2P7e-liBO9Drw4wuslvGaCI.roa
Signing time: Thu 12 Jan 2023 08:59:44 +0000
ROA not before: Thu 12 Jan 2023 08:59:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 194.59.6.0/24 maxlen: 24
194.59.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:a5:34:e2:70:0f:4f:6d:ab:42:cf:57:f1:94:a4:8e:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79065ccf1ebe555b3752717e595c275bcad00b4e
Validity
Not Before: Jan 12 08:59:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e17f16d8fedefa58813bd0ebc38c2eb25bc66822
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:81:ce:3c:68:e3:d0:bd:03:87:aa:66:5a:52:
a1:30:d3:92:2b:48:a5:50:1e:ab:d6:e1:76:c5:7f:
4b:6d:3c:2f:90:c7:8d:ac:12:65:36:1c:e7:83:f9:
08:d8:bb:db:ac:80:59:05:c6:36:f4:97:8a:15:5f:
47:a8:c4:01:d1:4e:43:74:8f:68:f9:55:ef:84:84:
f0:4b:17:85:ad:42:92:88:b5:a7:61:11:37:be:b7:
f4:3f:de:c9:91:de:42:9f:57:27:31:3d:69:c3:30:
4b:98:64:af:c2:45:8b:0b:a2:35:73:26:cf:3c:1b:
0b:5b:5c:17:4b:dc:ee:1a:62:55:02:71:bc:0a:7d:
06:b1:06:f1:a1:18:08:7a:d8:74:a0:eb:9d:f9:b9:
85:14:ef:61:1c:c1:49:81:93:8f:57:82:5b:f6:d0:
b1:8b:1b:f0:75:fb:78:48:45:12:d7:2b:e7:09:15:
99:f1:ba:77:e3:6d:27:d2:9e:62:a2:97:99:6d:c6:
46:ef:ab:d8:f7:1a:1c:cc:e5:6c:9f:c6:2e:69:01:
85:79:b1:ec:9b:64:fc:df:eb:f8:4b:b7:f8:aa:0b:
cb:39:ee:52:fa:39:a8:96:fb:c6:d3:17:f4:3c:28:
4e:75:4f:e3:18:bf:b7:78:7f:ed:4d:4d:c7:62:ca:
5d:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:7F:16:D8:FE:DE:FA:58:81:3B:D0:EB:C3:8C:2E:B2:5B:C6:68:22
X509v3 Authority Key Identifier:
keyid:79:06:5C:CF:1E:BE:55:5B:37:52:71:7E:59:5C:27:5B:CA:D0:0B:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eQZczx6-VVs3UnF-WVwnW8rQC04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/4X8W2P7e-liBO9Drw4wuslvGaCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/be4e31-3dbe-4130-b452-017eb5735b13/1/eQZczx6-VVs3UnF-WVwnW8rQC04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.6.0/23
Signature Algorithm: sha256WithRSAEncryption
8f:2c:6d:17:e1:60:97:1b:08:11:0a:cb:6a:95:84:ac:0f:53:
1d:b6:9c:92:4e:4b:7b:45:e3:be:c1:63:9f:49:00:c5:3d:85:
9f:6e:41:5d:f9:e3:3f:b2:1b:c9:00:ad:66:83:5a:d6:5d:34:
d1:5f:3b:6f:6b:58:a6:0e:ef:de:03:96:14:8f:64:7c:97:fa:
1b:06:b6:67:f8:0e:38:27:b5:b6:e6:05:b5:33:8a:55:cb:23:
90:c7:56:ff:4b:b2:cd:62:b4:18:5d:00:b8:82:f5:3a:22:46:
14:2e:17:6b:2d:08:59:6d:47:0c:68:7d:1c:bc:05:fe:10:99:
00:1b:3f:18:6d:b8:32:56:df:17:7b:e8:38:21:8f:8e:22:df:
5d:b4:b8:d8:34:9c:35:ea:d0:84:71:fc:02:23:1b:a1:c6:77:
9f:c5:ce:72:57:6c:e9:43:d3:42:b1:2d:d7:de:0c:0e:94:6d:
8c:d3:01:df:03:f0:cc:61:1e:78:1f:35:37:e4:55:0a:5f:11:
82:d2:92:d8:17:c8:db:e2:47:98:67:d0:3a:d8:a0:22:93:c4:
1d:e9:8e:eb:10:64:f4:e3:9c:14:81:09:65:a3:2b:93:8a:01:
ca:d5:09:f9:50:1c:9b:5b:26:49:0f:f5:8f:6d:75:84:05:ca:
cd:06:4f:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:03:19 2025 by rpki-client