Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/X-N7jRFfM32AnlmcLBjCrJwOFxA.roa
File: X-N7jRFfM32AnlmcLBjCrJwOFxA.roa (raw, json)
Hash identifier: gawv6Dwm05wzHqvDdbDQRVQ4G28EkccVozZBA9vIOPs=
Subject key identifier: 5F:E3:7B:8D:11:5F:33:7D:80:9E:59:9C:2C:18:C2:AC:9C:0E:17:10
Certificate issuer: /CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Certificate serial: 018C1866D4AB8108B1561EC612F327F69AEE
Authority key identifier: 42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/X-N7jRFfM32AnlmcLBjCrJwOFxA.roa
Signing time: Wed 29 Nov 2023 00:07:21 +0000
ROA not before: Wed 29 Nov 2023 00:07:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 215976
IP address blocks: 217.147.169.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:18:66:d4:ab:81:08:b1:56:1e:c6:12:f3:27:f6:9a:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Validity
Not Before: Nov 29 00:07:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5fe37b8d115f337d809e599c2c18c2ac9c0e1710
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:0d:3e:6e:c7:83:93:91:8c:17:04:9b:6e:d7:
34:0d:d7:e9:85:9a:6f:a7:6e:dd:0d:f8:8f:cc:7c:
39:7f:b9:cd:9a:95:f0:ba:bf:11:2d:2b:e5:13:4b:
cd:38:bc:6a:fd:ad:f8:57:84:85:76:06:6e:c1:ea:
dd:46:cd:42:06:0d:8c:8b:7c:f6:89:5f:93:d8:27:
b2:c5:40:3c:48:c5:57:ae:08:95:9f:eb:ff:23:00:
9f:0b:6a:35:8d:62:41:45:83:25:fa:68:ba:12:77:
c9:b8:28:78:8f:ff:a0:98:26:9b:9c:87:d3:f2:43:
da:54:f7:b9:42:e3:97:9d:e5:89:67:c0:2e:b0:19:
8f:91:2e:5b:2c:ee:61:89:b5:4f:7c:ed:8b:1a:9f:
77:74:ea:e0:7c:d4:66:6a:88:c9:06:64:eb:af:11:
b0:a5:18:9a:61:18:f5:b5:14:33:7c:33:b8:f5:0c:
5c:16:c0:1f:d6:7f:e3:87:83:f0:79:a4:5c:13:6f:
d5:d2:27:5f:55:1b:80:3c:5f:96:fe:c2:b2:63:2c:
85:e5:94:45:0b:1b:69:07:1f:3f:bf:e9:1d:2e:b0:
a9:40:37:9e:77:2c:1b:db:6f:a4:d1:0a:07:7c:5d:
79:64:df:9e:d9:f4:86:af:74:6b:f5:1b:8c:93:95:
86:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:E3:7B:8D:11:5F:33:7D:80:9E:59:9C:2C:18:C2:AC:9C:0E:17:10
X509v3 Authority Key Identifier:
keyid:42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/X-N7jRFfM32AnlmcLBjCrJwOFxA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.169.0/24
Signature Algorithm: sha256WithRSAEncryption
d5:0e:c6:ab:7d:2c:7d:1a:5f:9c:e2:10:62:75:e4:7c:8e:ea:
5e:51:95:43:a3:9f:11:10:b8:cf:64:5a:ad:95:11:86:6f:da:
03:51:e2:a7:c0:e8:d6:48:71:28:9f:58:02:0b:90:88:6d:01:
2f:ed:5a:37:a9:66:6f:08:c5:4b:eb:89:7f:cf:48:c2:e4:60:
25:52:c1:d0:bb:9c:d9:d7:d1:63:29:c1:9e:08:09:32:41:e1:
63:5d:d3:2b:d8:1d:f4:6a:94:85:96:06:d4:33:b9:21:43:ab:
76:21:d3:16:00:57:a8:2f:7d:2b:6b:5e:11:29:66:f0:54:21:
7a:8d:4f:96:e2:bd:a5:cf:33:3d:94:09:c4:f9:42:48:4a:0d:
7e:58:c5:2b:4c:a1:2d:0c:35:b0:dd:92:bd:a7:10:3e:90:a6:
d4:35:6c:42:3b:da:f5:fe:9a:7b:84:a6:a1:09:ed:87:f2:26:
6c:f5:5e:37:aa:6b:a3:be:cf:80:b4:d9:42:b1:02:9d:c8:c5:
6f:dd:d6:04:37:4f:25:bb:ef:20:dc:1a:f3:96:c7:19:e9:c7:
64:42:0a:89:a9:13:fb:9d:d0:2b:93:1b:d8:e9:c1:b3:d3:87:
21:0f:45:2f:fd:77:de:3d:3a:af:29:f9:4b:8e:a5:36:57:ad:
de:20:3c:97
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYwYZtSrgQixVh7GEvMn9pruMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQyZjhhYjJiYTI0ODc5ZTQ1YzQ0NTQ4NmZjZWIyMWFmNDY2
NTZkNWEwHhcNMjMxMTI5MDAwNzIxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZmUzN2I4ZDExNWYzMzdkODA5ZTU5OWMyYzE4YzJhYzljMGUxNzEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQ0+bseDk5GMFwSbbtc0DdfphZpv
p27dDfiPzHw5f7nNmpXwur8RLSvlE0vNOLxq/a34V4SFdgZuwerdRs1CBg2Mi3z2
iV+T2CeyxUA8SMVXrgiVn+v/IwCfC2o1jWJBRYMl+mi6EnfJuCh4j/+gmCabnIfT
8kPaVPe5QuOXneWJZ8AusBmPkS5bLO5hibVPfO2LGp93dOrgfNRmaojJBmTrrxGw
pRiaYRj1tRQzfDO49QxcFsAf1n/jh4PweaRcE2/V0idfVRuAPF+W/sKyYyyF5ZRF
CxtpBx8/v+kdLrCpQDeedywb22+k0QoHfF15ZN+e2fSGr3Rr9RuMk5WGCQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF/je40RXzN9gJ5ZnCwYwqycDhcQMB8GA1UdIwQY
MBaAFEL4qyuiSHnkXERUhvzrIa9GZW1aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvUXZpcks2SkllZVJjUkZTR19Pc2hyMFpsYlZvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC9jMTdjNWQtNzU0My00NDBmLTg3OGYt
MTc2OWZlZjZiZTk2LzEvWC1ON2pSRmZNMzJBbmxtY0xCakNySndPRnhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC9jMTdjNWQtNzU0My00NDBmLTg3OGYtMTc2OWZlZjZiZTk2
LzEvUXZpcks2SkllZVJjUkZTR19Pc2hyMFpsYlZvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA2ZOpMA0G
CSqGSIb3DQEBCwUAA4IBAQDVDsarfSx9Gl+c4hBideR8jupeUZVDo58RELjPZFqt
lRGGb9oDUeKnwOjWSHEon1gCC5CIbQEv7Vo3qWZvCMVL64l/z0jC5GAlUsHQu5zZ
19FjKcGeCAkyQeFjXdMr2B30apSFlgbUM7khQ6t2IdMWAFeoL30ra14RKWbwVCF6
jU+W4r2lzzM9lAnE+UJISg1+WMUrTKEtDDWw3ZK9pxA+kKbUNWxCO9r1/pp7hKah
Ce2H8iZs9V43qmujvs+AtNlCsQKdyMVv3dYEN08lu+8g3BrzlscZ6cdkQgqJqRP7
ndArkxvY6cGz04chD0Uv/XfePTqvKflLjqU2V63eIDyX
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:59 2025 by rpki-client