Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/PO8trWuK9Y4jw9bjYrU746ETGUg.roa
File: PO8trWuK9Y4jw9bjYrU746ETGUg.roa (raw, json)
Hash identifier: P10FAFB/m2JlhCkHE3weLtSrpBC0Te6ZW8TWQdp7wJs=
Subject key identifier: 3C:EF:2D:AD:6B:8A:F5:8E:23:C3:D6:E3:62:B5:3B:E3:A1:13:19:48
Certificate issuer: /CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Certificate serial: 03E18BC9
Authority key identifier: 42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/PO8trWuK9Y4jw9bjYrU746ETGUg.roa
Signing time: Sat 01 Jan 2022 03:59:19 +0000
ROA not before: Sat 01 Jan 2022 03:59:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20853
IP address blocks: 217.147.172.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65113033 (0x3e18bc9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Validity
Not Before: Jan 1 03:59:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cef2dad6b8af58e23c3d6e362b53be3a1131948
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8e:4c:02:df:6c:70:bc:61:40:0a:49:17:f4:
e3:5e:cb:55:80:e6:fc:27:2e:bb:ef:0e:62:ec:fc:
39:e9:ee:4c:f4:8f:64:12:d6:7b:94:20:58:a3:f9:
71:8a:e3:e0:1b:37:0e:4b:48:74:63:17:40:c2:4e:
e4:b7:c1:ab:e5:96:17:8f:a6:30:45:bd:d0:87:d1:
fd:49:38:de:2d:8d:76:cb:79:78:52:19:21:ba:84:
52:f8:4d:53:04:be:4f:5b:99:b6:d9:f0:3b:45:7b:
56:42:78:26:c7:a0:b5:5f:f1:6c:5b:a3:e5:a6:b4:
18:06:a6:73:38:52:37:e6:00:10:23:7a:00:41:1a:
5d:90:af:4b:b9:b3:a6:57:32:fc:bb:a2:1f:fa:74:
73:a4:48:a8:8d:df:be:d7:ad:bc:90:d9:f2:ba:c2:
b7:88:2f:a5:33:82:28:40:42:5d:3a:e2:da:56:36:
d5:a9:82:d8:6e:76:90:80:3a:b6:ad:4a:07:a8:e7:
d0:0d:95:fa:83:89:88:c7:bd:04:1c:b3:87:0a:dd:
da:97:69:0d:6e:91:bf:70:7c:ae:4d:90:83:75:76:
d1:c4:d8:01:7e:42:95:e3:9c:22:17:de:1a:8b:9b:
99:95:8e:9b:a8:fa:fa:d4:e8:1f:42:2f:48:24:8b:
8b:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:EF:2D:AD:6B:8A:F5:8E:23:C3:D6:E3:62:B5:3B:E3:A1:13:19:48
X509v3 Authority Key Identifier:
keyid:42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/PO8trWuK9Y4jw9bjYrU746ETGUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.172.0/24
Signature Algorithm: sha256WithRSAEncryption
68:4c:ce:42:98:4d:99:ba:bb:7a:72:9a:3c:0f:78:71:3b:43:
d3:95:ad:49:70:19:7f:f4:f9:c0:8d:ab:86:9e:62:30:71:6b:
5d:dc:1a:e7:0c:43:58:b2:93:cc:08:f3:b5:33:45:fa:04:20:
cf:34:87:a6:6b:d6:e6:32:49:bd:62:11:a6:25:69:82:58:78:
4d:67:15:f1:4b:94:86:94:45:9f:ed:85:c4:ce:ed:57:69:53:
3d:6c:c9:31:e1:f3:6e:7c:41:a5:17:ab:8c:cf:0a:3e:47:31:
19:c9:82:fb:98:59:2d:4b:28:c2:12:04:de:3a:a2:9e:6c:32:
94:a7:2b:13:1b:5f:07:c5:c4:06:3a:d8:40:b1:be:07:57:09:
de:c9:9f:ce:c8:c8:bb:19:d2:90:d3:4f:47:bd:59:4d:6d:2d:
92:2b:a3:ba:c2:bc:e1:5b:d3:ec:c4:d5:60:86:11:89:fc:f9:
88:ff:73:ca:e7:27:ac:42:47:4b:f6:ec:64:2d:c2:c1:83:23:
1e:9e:e0:b3:ca:fc:89:fa:13:2f:9d:55:e1:4e:13:71:ac:7d:
6d:f8:b5:e7:f1:10:b1:8b:4a:90:4a:45:61:42:4b:f6:f3:d3:
33:b3:84:10:f7:d3:f9:49:1d:7e:98:bd:ec:43:ab:25:ea:98:
42:c5:48:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:31:26 2025 by rpki-client