Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/urYsZygwd03mjMhE_CJjB_HV2tY.roa
File: urYsZygwd03mjMhE_CJjB_HV2tY.roa (raw, json)
Hash identifier: vhXlZDnW2dKp/U3NigoKX2oGrMh/Uno28iPSMQcR6BU=
Subject key identifier: BA:B6:2C:67:28:30:77:4D:E6:8C:C8:44:FC:22:63:07:F1:D5:DA:D6
Certificate issuer: /CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Certificate serial: 0190A9C9D20BA1EC8B4234D719A922D954D5
Authority key identifier: 42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/urYsZygwd03mjMhE_CJjB_HV2tY.roa
Signing time: Sat 13 Jul 2024 01:51:34 +0000
ROA not before: Sat 13 Jul 2024 01:51:34 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 834
IP address blocks: 217.147.168.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:90:a9:c9:d2:0b:a1:ec:8b:42:34:d7:19:a9:22:d9:54:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42f8ab2ba24879e45c445486fceb21af46656d5a
Validity
Not Before: Jul 13 01:51:34 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=bab62c672830774de68cc844fc226307f1d5dad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d6:c5:61:ba:c7:e7:9e:a8:57:ea:15:16:dd:
24:f0:77:a6:26:cc:7e:9c:7a:74:14:30:05:63:d4:
d5:78:fa:fd:bb:73:7e:f4:26:95:68:f9:60:67:49:
2e:f3:bd:57:5b:95:b2:79:58:13:74:21:54:06:a2:
06:c1:01:c6:3b:8c:10:fa:e2:41:08:a9:5b:36:76:
5c:6c:df:34:fb:5b:65:c9:64:eb:a5:4c:90:0e:0e:
b0:f6:62:d8:92:0e:cc:40:3c:38:90:db:13:5b:45:
c0:30:f0:2b:66:5c:d0:58:6c:39:6c:ad:99:4a:e4:
d4:35:8c:be:3b:6d:14:14:cb:e3:c4:db:fd:e2:fa:
ac:dc:cf:aa:0e:c5:3e:c2:40:40:3e:91:17:ad:62:
37:52:1a:21:4b:9e:87:0e:46:f0:b8:36:77:cc:bd:
03:16:f2:0d:76:18:1f:a0:e0:20:38:81:1e:2c:ec:
de:89:c6:c7:44:4e:9a:02:f0:f8:72:94:78:eb:cd:
be:54:d3:0a:63:69:65:13:71:45:be:9f:01:43:21:
69:6d:72:bf:45:e7:79:ab:48:cf:d0:db:b9:7d:13:
d4:d9:ed:12:70:9f:35:f4:6e:c2:6f:00:64:52:80:
e0:29:a5:d3:ea:3e:d4:a9:ca:aa:47:54:dd:e7:29:
89:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:B6:2C:67:28:30:77:4D:E6:8C:C8:44:FC:22:63:07:F1:D5:DA:D6
X509v3 Authority Key Identifier:
keyid:42:F8:AB:2B:A2:48:79:E4:5C:44:54:86:FC:EB:21:AF:46:65:6D:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QvirK6JIeeRcRFSG_Oshr0ZlbVo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/urYsZygwd03mjMhE_CJjB_HV2tY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c17c5d-7543-440f-878f-1769fef6be96/1/QvirK6JIeeRcRFSG_Oshr0ZlbVo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.147.168.0/24
Signature Algorithm: sha256WithRSAEncryption
9d:72:59:3b:62:65:ec:d5:64:1c:04:f6:f9:89:ca:be:f8:54:
1a:60:60:a4:70:d4:16:19:69:9d:b7:0e:9c:e2:04:94:d4:0f:
af:8f:1f:53:2f:aa:96:19:93:17:23:ed:fb:59:76:ad:9c:ca:
7f:8e:84:ef:6d:f0:54:c2:08:3a:78:0b:1b:1e:30:06:f0:60:
2c:07:10:24:e1:d2:6c:08:fa:79:f2:9a:75:98:13:5e:91:00:
5e:22:c3:a3:00:21:9b:2f:f7:9e:a3:e2:7c:1a:56:b0:38:32:
25:7a:b7:51:57:7e:bc:77:da:c4:9c:7d:41:04:4a:65:dc:d7:
3d:41:50:61:90:53:4b:d9:56:66:96:e0:8d:9b:f7:c1:48:41:
68:39:bc:34:f0:bf:06:df:2c:f6:2f:85:78:2b:3a:b1:91:1d:
d0:18:59:af:be:2a:56:d5:20:56:6f:a3:76:6d:7b:b1:8a:23:
e0:47:24:f7:a6:57:58:2c:f6:bf:ae:53:c8:66:5f:9c:17:2c:
75:a0:7a:76:36:b6:92:38:40:a0:c5:5b:b1:46:a2:ee:51:2e:
ea:d4:b5:55:8f:e6:4e:0f:5b:92:75:08:4b:16:1a:d3:45:d6:
77:e4:89:6a:d4:e3:80:67:01:e0:34:e9:bc:b6:a6:6a:c1:d7:
f2:b6:4c:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:13 2025 by rpki-client