Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/HU72BiZLJlVGRQkO9x9I_uGxf8g.roa
File: HU72BiZLJlVGRQkO9x9I_uGxf8g.roa (raw, json)
Hash identifier: 6bSoBys72Dki1M/xx4ZYI9xwzONjOKfxyyAfvCjsmZM=
Subject key identifier: 1D:4E:F6:06:26:4B:26:55:46:45:09:0E:F7:1F:48:FE:E1:B1:7F:C8
Certificate issuer: /CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Certificate serial: 01896D0DC75A82B301B6C3989DBFE157F93D
Authority key identifier: 42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/HU72BiZLJlVGRQkO9x9I_uGxf8g.roa
Signing time: Wed 19 Jul 2023 07:29:26 +0000
ROA not before: Wed 19 Jul 2023 07:29:26 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209155
IP address blocks: 217.147.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:6d:0d:c7:5a:82:b3:01:b6:c3:98:9d:bf:e1:57:f9:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Validity
Not Before: Jul 19 07:29:26 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=1d4ef606264b26554645090ef71f48fee1b17fc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fa:5d:99:a6:09:9c:aa:0d:72:4c:35:81:69:
ec:f4:8d:fa:11:86:0e:c1:2d:a4:7b:39:b4:9c:52:
42:ee:43:07:57:3c:d9:d1:b2:30:38:bc:ef:3b:ac:
ec:f0:ee:80:3e:a3:fa:1d:01:b1:e9:83:02:f8:1e:
1f:07:b4:08:2b:eb:b3:cd:73:4d:8e:7e:d5:3a:74:
89:06:86:51:8f:80:cb:60:a2:fd:7c:74:c5:56:fe:
ab:20:2d:f6:19:0d:84:b5:08:68:95:85:1f:7b:20:
bb:d5:f6:ea:7d:cd:ce:94:55:8f:ba:93:85:e2:cf:
9e:cd:86:23:35:36:51:87:f6:fe:1a:6b:3b:8c:30:
67:bb:dc:af:1d:a7:35:b3:b4:09:46:4f:37:c0:ac:
fa:ba:25:2c:c2:ec:6b:bf:82:9f:1e:f3:e9:c1:05:
03:7e:76:44:80:18:bd:3e:11:97:19:db:80:ae:44:
94:72:a0:9d:6b:c7:3b:6c:f1:bb:94:c9:c8:97:c9:
a7:06:68:09:ce:f2:82:dc:40:a5:1c:d2:48:2e:c4:
02:75:c6:60:b8:9e:15:58:58:42:e5:29:8a:81:d4:
37:cf:fd:85:09:19:8e:0a:c5:f4:5f:29:38:69:a9:
56:f1:51:7e:39:9b:b1:7c:cc:8d:8f:cd:ff:98:e9:
e0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:4E:F6:06:26:4B:26:55:46:45:09:0E:F7:1F:48:FE:E1:B1:7F:C8
X509v3 Authority Key Identifier:
keyid:42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/HU72BiZLJlVGRQkO9x9I_uGxf8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.172.0/24
Signature Algorithm: sha256WithRSAEncryption
cc:86:f7:c9:48:8b:f8:ca:b3:a1:2d:1b:9d:f5:da:d1:24:77:
0a:a5:35:a0:55:ad:cf:11:f7:82:86:66:d8:8b:8c:bc:bc:ed:
89:6c:06:b9:21:11:6f:bc:e7:ea:ec:f0:e7:5c:60:4b:86:34:
7a:2b:22:46:98:e5:2d:cf:0d:2d:56:0b:41:1f:66:7d:45:7e:
f7:68:ba:16:28:a6:e5:01:ed:80:44:4e:b6:a3:89:ed:f3:17:
b3:4b:26:77:59:b1:0f:22:45:f8:4c:c0:29:02:9c:b8:d0:02:
76:64:5c:9e:44:a6:da:95:e7:53:56:df:7b:dd:5d:57:8e:b9:
07:d3:ff:86:14:35:ba:6c:83:54:33:09:5e:e8:dc:7f:b6:b1:
00:fd:37:fc:5d:64:0f:86:d7:43:07:d8:c1:93:e6:ba:5d:82:
09:5d:90:f7:82:65:e6:4b:75:da:55:85:0a:0b:01:3f:93:45:
05:70:a1:c3:0f:20:dd:be:46:f0:d2:a9:0f:d5:91:7a:8d:82:
1f:95:b5:c2:49:72:fa:a2:e3:63:f1:b6:f0:64:e1:e4:7b:ca:
83:71:5b:8e:99:a5:fb:65:65:48:b6:87:75:3c:df:74:64:e6:
07:01:e4:f0:ab:50:de:d2:9e:b4:b9:51:f0:98:8c:04:f3:18:
47:0b:ef:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:44 2025 by rpki-client