Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/dXIXe8fZDLCH8RqcXCY6cRDuwng.roa
File: dXIXe8fZDLCH8RqcXCY6cRDuwng.roa (raw, json)
Hash identifier: 46BHyaJxg8Z8022GpO9c74gg1oBTl4LQmxApeCJq2oA=
Subject key identifier: 75:72:17:7B:C7:D9:0C:B0:87:F1:1A:9C:5C:26:3A:71:10:EE:C2:78
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 01878F7A7AF3CE4C3C1DD8989CE84C0A97C7
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/dXIXe8fZDLCH8RqcXCY6cRDuwng.roa
Signing time: Mon 17 Apr 2023 13:49:41 +0000
ROA not before: Mon 17 Apr 2023 13:49:41 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204916
IP address blocks: 217.196.97.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:8f:7a:7a:f3:ce:4c:3c:1d:d8:98:9c:e8:4c:0a:97:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: Apr 17 13:49:41 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7572177bc7d90cb087f11a9c5c263a7110eec278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:df:8c:92:8b:da:a0:fe:ac:44:51:f1:89:75:
83:e7:70:10:34:fb:9a:0a:0c:b4:a5:c3:95:7a:37:
f5:ba:8f:b6:73:07:d1:04:c5:30:b6:27:11:72:59:
cf:d0:c4:98:69:61:cd:09:70:e8:6e:37:a9:36:c5:
fb:26:5c:5b:06:6e:ec:b7:14:94:7a:40:1a:00:37:
c9:7a:36:a2:04:37:4a:12:3a:e8:dc:e9:7b:2c:ec:
cd:22:cb:b3:d7:e5:5f:c6:76:44:6c:b8:d6:b5:1c:
6d:ee:44:6b:8d:ad:eb:c1:5d:a1:51:0a:9a:07:a3:
68:a5:2c:61:23:90:72:18:ff:52:ba:1a:5f:63:26:
3d:3a:79:59:83:3c:47:30:ad:a5:fb:10:7e:53:32:
5f:bd:4b:a5:64:6d:14:44:c5:99:e3:aa:81:65:56:
fd:2a:b3:62:43:6b:41:b5:22:6d:35:66:b2:4d:9b:
ba:af:49:93:03:67:86:5b:3e:34:8b:13:a2:6f:f7:
b4:d0:7d:84:a7:0f:44:0c:b8:ab:40:11:5c:76:2e:
d5:e0:53:ee:db:8f:2c:b4:9b:ed:e2:8b:6d:08:9b:
05:12:f2:7b:dc:0c:75:d4:2d:50:8f:a8:b9:d3:06:
dd:ac:30:b4:7b:ea:b5:a3:ec:01:e2:63:aa:f3:51:
43:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:72:17:7B:C7:D9:0C:B0:87:F1:1A:9C:5C:26:3A:71:10:EE:C2:78
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/dXIXe8fZDLCH8RqcXCY6cRDuwng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.196.97.0/24
Signature Algorithm: sha256WithRSAEncryption
81:50:e5:76:58:77:8e:65:94:26:11:c5:3c:f1:be:d2:7b:20:
c9:4c:ac:fd:60:cc:46:c9:cb:81:fc:0c:66:b0:96:bc:13:19:
ee:22:dc:9c:82:ee:d8:b3:c0:3f:ec:1e:49:c7:59:03:1d:70:
77:6a:4e:c3:1a:e6:ff:23:ad:aa:24:29:4b:d5:0e:5e:67:20:
1b:15:3d:d2:0f:4a:e7:08:fc:84:06:e7:3b:d5:d9:21:ed:06:
d8:0f:d9:f1:d7:42:29:5e:b8:b0:33:84:0a:f1:25:3e:39:6a:
c6:31:4a:cd:82:a7:e3:ab:eb:d0:3e:9c:d2:da:e4:51:a7:20:
08:f3:44:bf:47:73:9a:71:18:44:5c:4e:11:5c:a8:ce:12:b3:
38:57:c8:5f:bc:7f:1a:0e:d9:c3:11:b8:42:c3:54:a7:d5:d7:
cf:6f:ec:0f:f5:6a:81:9b:b8:95:ec:6a:d8:d1:02:e3:2c:e6:
34:f6:3a:12:e3:bb:0f:33:e4:13:ec:29:10:45:b7:76:f2:57:
cf:ed:34:b9:47:77:23:54:ad:7a:49:79:75:75:84:82:bb:e6:
7d:9f:29:b8:ae:bf:0a:d9:c1:28:74:d4:ab:0c:d1:5e:c2:14:
b0:08:df:cf:be:d3:78:0e:15:e1:98:b5:88:51:97:b7:f7:d8:
6c:37:e2:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:30:13 2025 by rpki-client