Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/q-c1mLn6aeNGua8p0W0IFmrW6VI.roa
File: q-c1mLn6aeNGua8p0W0IFmrW6VI.roa (raw, json)
Hash identifier: DBD/1CWSebs4ZIHcr+YI00sh3ZQ01Szgnx7lYt4EhYI=
Subject key identifier: AB:E7:35:98:B9:FA:69:E3:46:B9:AF:29:D1:6D:08:16:6A:D6:E9:52
Certificate issuer: /CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Certificate serial: 01856BE5B3EEB5606CA67508DA0750EC0393
Authority key identifier: 42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/q-c1mLn6aeNGua8p0W0IFmrW6VI.roa
Signing time: Sun 01 Jan 2023 05:54:53 +0000
ROA not before: Sun 01 Jan 2023 05:54:53 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207305
IP address blocks: 217.147.171.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:b3:ee:b5:60:6c:a6:75:08:da:07:50:ec:03:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Validity
Not Before: Jan 1 05:54:53 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=abe73598b9fa69e346b9af29d16d08166ad6e952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:9f:53:a4:e6:4a:d1:09:f4:00:cc:14:f7:38:
50:37:a7:35:f5:69:67:89:33:43:57:29:02:88:71:
ae:53:a8:c1:8f:f0:f2:47:af:97:8d:c2:25:d2:27:
04:6a:1a:e8:b0:c1:4b:d7:bc:7b:58:a9:d5:f4:28:
f6:1c:c0:c7:25:9d:a3:38:37:11:74:d8:1e:00:5b:
5b:30:f7:0e:40:bf:99:06:75:2e:05:5f:74:a2:1c:
7f:2d:5a:25:54:5c:de:b8:68:c0:27:5e:d9:a7:89:
1c:6e:ab:f6:a3:38:b2:3d:d7:9d:9d:53:12:c6:00:
79:df:7f:59:ff:dd:f4:b2:4b:be:1a:36:a2:00:e6:
b1:07:b4:65:ba:44:f9:28:6a:87:64:30:d0:72:d8:
af:0a:90:f5:9d:8b:af:78:80:d0:bc:04:be:e5:17:
4d:9c:56:58:93:b8:93:4a:59:19:b1:f5:e5:63:10:
7a:a7:3c:a5:ef:f4:10:87:48:bd:f9:25:df:3e:c2:
fe:c2:a9:05:2a:39:8d:45:20:8d:7e:8e:7f:1a:73:
fc:b2:b6:70:58:cd:57:f5:f3:2b:20:7f:b3:3c:0c:
22:3b:07:b6:ee:76:c1:63:6a:ca:98:6a:03:33:1c:
82:a4:a5:57:27:ab:db:42:22:52:7b:56:18:07:df:
77:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:E7:35:98:B9:FA:69:E3:46:B9:AF:29:D1:6D:08:16:6A:D6:E9:52
X509v3 Authority Key Identifier:
keyid:42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/q-c1mLn6aeNGua8p0W0IFmrW6VI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.171.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:35:2c:8a:d7:7f:f4:9e:c2:cb:bb:fd:a9:24:b1:70:50:f3:
b2:14:6b:35:6f:49:8e:fc:cd:a4:24:28:97:e7:7f:5b:52:63:
e3:56:a4:cd:e6:25:87:4f:67:1b:41:a5:30:5f:fe:31:ed:d6:
7d:ba:dd:11:88:64:2f:53:4d:07:57:9d:48:8f:63:85:98:45:
e6:31:c8:17:3f:8f:20:9b:ba:5a:79:e0:7c:24:8c:60:04:0f:
9d:8e:01:c1:29:c6:1b:3e:b2:b7:c1:47:b6:59:67:63:8d:47:
8d:1b:50:68:12:08:e9:dc:47:ee:71:68:7b:dd:2b:5e:71:1b:
73:8f:de:5f:26:64:da:e2:c5:10:a3:79:32:41:6f:ed:f1:4e:
6b:0b:72:06:63:b3:08:25:a4:2a:ff:a7:62:22:12:60:03:b5:
d3:a5:4c:fb:6f:9f:7d:c2:89:b7:29:2a:9e:b1:8c:05:2b:d3:
c1:1f:72:b6:9b:93:3c:5e:19:ac:05:fe:a4:99:6e:4f:6f:7a:
ea:26:22:d1:17:51:33:fa:89:21:b5:77:d4:e3:bd:89:d2:f6:
2b:d3:95:07:3c:55:b6:4c:e2:77:8b:39:3c:f8:0b:52:ab:3a:
46:82:87:dc:18:41:82:6e:df:15:e0:65:78:09:49:4a:43:b0:
0c:42:f0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:29:58 2025 by rpki-client