Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/ffa703-b462-4022-9e1e-6d704cda0eb9/1/RL61Wihu3FfrJvAcLQETg6_c2GM.roa
File: RL61Wihu3FfrJvAcLQETg6_c2GM.roa (raw, json)
Hash identifier: SqOyWluS+yRsBoTlCsEe+Iikl+D01fZcrbTx5NJ4QoE=
Subject key identifier: 44:BE:B5:5A:28:6E:DC:57:EB:26:F0:1C:2D:01:13:83:AF:DC:D8:63
Certificate issuer: /CN=787054b167aa98841cdc2c4ba2b86139ab988e7d
Certificate serial: 0185734CC991FAC20DDE25625E505B18237F
Authority key identifier: 78:70:54:B1:67:AA:98:84:1C:DC:2C:4B:A2:B8:61:39:AB:98:8E:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eHBUsWeqmIQc3CxLorhhOauYjn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/ffa703-b462-4022-9e1e-6d704cda0eb9/1/RL61Wihu3FfrJvAcLQETg6_c2GM.roa
Signing time: Mon 02 Jan 2023 16:24:50 +0000
ROA not before: Mon 02 Jan 2023 16:24:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 30742
IP address blocks: 2.59.32.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:73:4c:c9:91:fa:c2:0d:de:25:62:5e:50:5b:18:23:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=787054b167aa98841cdc2c4ba2b86139ab988e7d
Validity
Not Before: Jan 2 16:24:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=44beb55a286edc57eb26f01c2d011383afdcd863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:3b:c4:34:27:4e:c0:3c:52:2c:ce:d0:3c:d5:
37:d3:13:9c:64:95:32:90:90:1a:1c:dd:73:f1:76:
de:61:c4:a0:83:48:e0:2b:9e:26:4c:49:ae:0f:c7:
b8:18:03:ec:cb:11:bc:f7:f0:67:d8:69:96:1c:81:
d8:2f:7d:ef:6a:0c:ef:1d:75:bc:e1:d8:9f:8a:81:
c6:e3:e3:1b:5d:fe:97:46:a8:6e:b3:9a:94:81:9e:
93:df:0d:04:05:9f:44:34:c7:96:64:82:9a:ed:55:
97:4f:57:90:b8:ea:35:9f:bb:a5:a4:86:2c:f3:38:
6e:71:35:ce:92:c4:b4:b9:59:92:da:06:f3:f0:57:
23:cd:d7:05:4a:b1:14:f1:14:75:27:ae:88:c1:78:
9b:19:2f:29:d0:f1:04:9d:5e:b2:97:21:ea:91:07:
dc:89:7d:95:50:87:cf:33:3e:4e:a2:2a:b8:c9:90:
3d:3d:db:a5:97:b7:92:0f:78:61:9e:84:f8:9d:6f:
89:b9:cd:b6:48:e2:02:b7:86:3a:01:fd:41:88:8d:
ed:ed:34:5d:3d:a2:22:90:30:10:52:f7:5e:a0:00:
29:8f:aa:58:70:ac:c7:b9:07:79:6d:6b:d0:dd:dc:
e7:7b:79:4b:25:7c:d3:72:3f:bd:ea:4f:bd:52:42:
d4:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:BE:B5:5A:28:6E:DC:57:EB:26:F0:1C:2D:01:13:83:AF:DC:D8:63
X509v3 Authority Key Identifier:
keyid:78:70:54:B1:67:AA:98:84:1C:DC:2C:4B:A2:B8:61:39:AB:98:8E:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eHBUsWeqmIQc3CxLorhhOauYjn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/ffa703-b462-4022-9e1e-6d704cda0eb9/1/RL61Wihu3FfrJvAcLQETg6_c2GM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/ffa703-b462-4022-9e1e-6d704cda0eb9/1/eHBUsWeqmIQc3CxLorhhOauYjn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.32.0/22
Signature Algorithm: sha256WithRSAEncryption
2f:3d:57:01:08:d7:e3:ce:a1:7d:bb:45:dd:0b:f9:94:73:7e:
32:5e:41:60:51:d5:53:c6:fa:70:08:c3:15:8a:0e:30:12:e0:
fd:74:6e:cb:1c:33:67:8c:74:10:9d:41:4b:08:0e:31:7b:61:
de:02:bb:ff:c9:2b:79:0b:80:13:77:4e:4d:25:d0:42:69:a5:
81:bc:34:2a:34:6b:2d:77:9a:14:78:4a:4d:b7:0a:d8:90:0f:
71:a2:e9:7f:48:af:d5:33:d7:e2:57:9c:88:83:65:40:b1:9f:
01:9f:9e:ba:79:ea:0a:6d:45:a3:0f:a9:88:8e:58:ba:d0:3e:
3d:f7:7e:a6:71:12:3b:64:f3:56:1f:9c:fb:c7:1e:7b:3c:09:
5d:13:9e:07:02:e7:f3:46:70:82:e0:d8:45:dd:c6:cd:e9:d2:
41:1f:29:d2:3c:65:ad:73:10:30:2b:bc:1a:26:f3:6f:77:5d:
23:a8:88:5f:34:5d:28:86:e3:38:a3:8b:ca:6c:c4:4a:0c:cd:
d7:04:37:9c:15:7e:3b:a0:41:56:67:a1:54:f7:d2:b1:6e:72:
2e:d7:53:81:2d:12:ef:70:b2:a6:71:9d:17:bb:ea:c8:6a:df:
39:c0:eb:71:ec:41:86:fd:05:de:02:c9:f8:d1:c3:71:a2:51:
cc:53:c3:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:24 2025 by rpki-client