Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/6Nit0NXceYWrCbhB-AFugcINGfQ.roa
File: 6Nit0NXceYWrCbhB-AFugcINGfQ.roa (raw, json)
Hash identifier: 6Rij9gQ5LyRQmKtUZe20GZNi42jt5Jt4KP17Wl2RL1E=
Subject key identifier: E8:D8:AD:D0:D5:DC:79:85:AB:09:B8:41:F8:01:6E:81:C2:0D:19:F4
Certificate issuer: /CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Certificate serial: 018D16E6B20E6C076D2751A679FDFEA6B18E
Authority key identifier: 42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/6Nit0NXceYWrCbhB-AFugcINGfQ.roa
Signing time: Wed 17 Jan 2024 10:10:33 +0000
ROA not before: Wed 17 Jan 2024 10:10:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43289
IP address blocks: 217.147.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:16:e6:b2:0e:6c:07:6d:27:51:a6:79:fd:fe:a6:b1:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Validity
Not Before: Jan 17 10:10:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=e8d8add0d5dc7985ab09b841f8016e81c20d19f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c5:a3:55:be:7a:50:fe:c9:86:0c:e4:93:2d:
c1:2c:23:2e:67:e8:56:31:ec:26:4d:5a:0c:09:ce:
8a:12:5b:77:e5:a2:c8:cc:f6:23:17:7e:f1:45:79:
8e:81:58:fd:24:44:7b:d5:99:c4:9d:3a:e3:aa:7b:
db:ca:46:69:7a:bd:7a:27:23:db:6a:93:d0:e7:cf:
c3:95:99:ca:12:09:40:97:c6:36:d9:21:7c:70:97:
72:8c:55:d5:c1:ba:95:87:3b:2a:b8:53:6d:25:99:
a0:9d:66:3e:65:4c:4f:0d:2a:6f:56:e9:b6:b9:5a:
de:73:bc:01:69:7c:78:82:da:7e:e4:f9:ec:9f:26:
20:e0:b6:6d:3e:e8:db:11:a6:f6:ff:13:35:97:b3:
e2:60:2c:b8:98:c6:df:9c:08:df:54:09:e4:e2:f6:
be:a9:7d:a8:38:17:7f:d8:68:07:bb:82:5a:da:5d:
5e:c2:30:f6:74:09:a1:f9:f1:15:7c:38:93:d2:a3:
79:df:91:06:fd:70:70:5e:b1:72:a9:06:6e:75:79:
b9:44:bc:37:4e:2e:93:2c:a0:81:0a:6f:a5:d4:21:
f6:93:9c:38:7b:0c:8f:f1:c8:83:ab:de:63:dc:1c:
02:43:42:46:f3:b9:f1:92:15:17:a9:6f:9b:c0:70:
fd:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:D8:AD:D0:D5:DC:79:85:AB:09:B8:41:F8:01:6E:81:C2:0D:19:F4
X509v3 Authority Key Identifier:
keyid:42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/6Nit0NXceYWrCbhB-AFugcINGfQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.167.0/24
Signature Algorithm: sha256WithRSAEncryption
34:ca:ad:b5:8c:ab:4f:f6:23:fa:e2:08:eb:9e:d0:90:a1:47:
06:2f:c5:6a:33:78:a9:c5:85:f0:57:56:ce:2e:a6:c9:85:4b:
d9:9c:87:dd:f0:34:26:32:57:40:fe:a8:57:50:c4:68:b5:09:
16:90:6d:67:d6:34:23:6f:36:33:55:bd:53:47:22:fe:2b:3b:
61:6c:46:49:09:a3:03:8a:e5:ac:c5:9f:dc:9b:5c:26:ea:17:
2a:e3:61:6d:82:aa:62:f9:b1:52:2e:28:26:a8:6b:85:47:eb:
35:f9:04:c9:f8:04:1d:83:04:05:4d:f8:c0:45:68:41:f1:36:
df:cc:29:8a:be:2c:c6:d7:2c:94:98:0f:5c:6d:4d:e9:af:00:
b0:97:f7:e8:b0:97:25:ab:1c:24:fd:73:1f:d1:65:30:b6:13:
10:66:12:bc:b5:74:da:ce:0b:33:4f:b9:17:a9:48:52:f5:c5:
69:f4:34:63:52:da:7d:4d:c5:f1:51:17:a5:ab:39:b4:24:3d:
98:a2:55:20:f6:ef:96:a3:4a:c2:d5:b8:08:04:c7:04:82:ce:
f3:5d:0f:ff:d0:7a:4c:9f:f4:34:24:ce:ed:1f:44:1d:57:22:
f6:5d:49:5e:43:dd:7c:38:71:92:fb:e2:54:37:cf:1f:69:b9:
e2:28:92:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:50 2025 by rpki-client