Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/DxC22GRWWqDsI_thLn2VypUWqGM.roa
File: DxC22GRWWqDsI_thLn2VypUWqGM.roa (raw, json)
Hash identifier: MGKLurnZ/rIYHZE/cfa/dP3CybvJPtYlZVdTldY/zcA=
Subject key identifier: 0F:10:B6:D8:64:56:5A:A0:EC:23:FB:61:2E:7D:95:CA:95:16:A8:63
Certificate issuer: /CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Certificate serial: 018C3B336BE78DE89EC0A0E35BFCBB3E4748
Authority key identifier: FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/DxC22GRWWqDsI_thLn2VypUWqGM.roa
Signing time: Tue 05 Dec 2023 18:17:54 +0000
ROA not before: Tue 05 Dec 2023 18:17:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211772
IP address blocks: 217.28.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:3b:33:6b:e7:8d:e8:9e:c0:a0:e3:5b:fc:bb:3e:47:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Validity
Not Before: Dec 5 18:17:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f10b6d864565aa0ec23fb612e7d95ca9516a863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:8f:c9:2c:ee:2b:62:13:02:5c:fc:ba:ed:29:
54:58:89:a9:47:ea:0a:bd:cc:05:4d:d6:3a:ba:55:
b4:c6:8b:27:43:3a:15:5a:90:2d:0b:ae:99:62:05:
a3:13:99:10:25:98:75:36:c9:bd:83:44:7d:f0:68:
d4:c7:54:62:ef:76:dd:7e:0a:61:f2:b8:bb:1f:1f:
8c:31:4a:d9:55:a5:7a:05:86:9f:84:fd:14:03:42:
d8:df:62:ec:96:78:64:04:15:c2:33:3a:9e:ac:15:
2a:6f:c3:c5:1e:39:c5:c9:98:4f:0e:18:c6:01:18:
4d:a1:bb:00:c3:d1:b8:e0:62:57:7a:5d:78:ca:0e:
56:cc:ee:4a:d9:b3:50:1b:c6:49:da:76:45:7e:de:
93:68:b6:f9:d7:b3:1b:69:5c:b2:68:57:92:b8:9b:
a0:4b:81:69:27:5d:d3:10:06:c9:25:19:e0:ca:48:
f8:11:ca:e2:2f:e8:4f:8f:c7:09:57:0b:86:67:3e:
fb:b4:28:bb:43:7d:63:a9:79:2f:4e:57:7c:c2:d3:
4a:2c:47:7c:d2:72:b7:e0:06:c8:dc:a4:ab:fc:bc:
c2:e4:7a:32:8c:1e:bc:55:08:d8:fa:00:32:92:82:
80:2b:05:43:35:ea:46:81:46:28:39:1e:4e:27:2d:
8b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:10:B6:D8:64:56:5A:A0:EC:23:FB:61:2E:7D:95:CA:95:16:A8:63
X509v3 Authority Key Identifier:
keyid:FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/DxC22GRWWqDsI_thLn2VypUWqGM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.130.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:30:8c:da:11:23:a8:a6:5b:9f:2d:b2:20:56:bd:bd:4d:7b:
e3:0d:b9:3c:c1:c2:db:49:e8:85:29:39:54:a4:94:18:6c:29:
74:f5:66:80:4d:da:5b:14:d9:ad:0e:2a:5d:2f:78:a3:05:2c:
af:c5:84:dc:0a:90:1e:62:c8:ae:95:b5:06:04:80:47:ae:16:
27:c3:6f:34:66:0b:41:d9:55:64:ed:23:59:d5:fb:c4:38:69:
e3:b2:90:fa:e6:25:f1:96:01:f8:6b:95:42:f7:3f:78:f5:02:
9e:7a:ae:61:71:33:8e:99:fc:68:ef:f3:04:06:72:d5:10:7c:
5c:e3:7d:a9:52:f6:8a:56:a2:4b:99:06:e1:80:85:a6:6d:9b:
4a:17:08:55:8e:47:72:3f:44:d4:08:46:c5:e3:0a:df:1a:df:
1d:44:fc:33:20:a3:f7:fd:c3:a3:df:19:c3:63:38:ba:1a:48:
b1:24:b0:1b:d8:19:34:fd:91:87:f8:3f:dc:40:d3:f3:6c:b7:
aa:ab:d0:42:d6:a9:e7:d6:8a:65:fa:7e:0a:be:88:55:9f:23:
57:02:6c:41:a3:f1:04:1f:5f:c3:58:62:57:b1:33:62:d2:42:
69:d8:6d:a6:f3:cd:29:7c:06:2d:1f:c4:e9:5e:be:76:1a:ad:
d0:31:cf:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:46:45 2025 by rpki-client