Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/h_53X8HQBIaPsjtYpc5EQc-Pf1Y.roa
File: h_53X8HQBIaPsjtYpc5EQc-Pf1Y.roa (raw, json)
Hash identifier: ISq+cCypLGVDczQ3G59Py2+xnywZoxiHbscrYdOhJXA=
Subject key identifier: 87:FE:77:5F:C1:D0:04:86:8F:B2:3B:58:A5:CE:44:41:CF:8F:7F:56
Certificate issuer: /CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Certificate serial: 01848EDEC998AA0BEEF1BCFEEBF25C9D2979
Authority key identifier: FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/h_53X8HQBIaPsjtYpc5EQc-Pf1Y.roa
Signing time: Sat 19 Nov 2022 07:51:15 +0000
ROA not before: Sat 19 Nov 2022 07:51:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209260
IP address blocks: 217.28.130.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8e:de:c9:98:aa:0b:ee:f1:bc:fe:eb:f2:5c:9d:29:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb29cf23fc9ce6e2b8c39323d270ce52e8938702
Validity
Not Before: Nov 19 07:51:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87fe775fc1d004868fb23b58a5ce4441cf8f7f56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d2:10:48:1a:5f:df:e2:14:d2:ef:9f:8e:fe:
9b:0c:d2:3b:27:1e:54:be:3c:10:7d:a6:e8:2f:11:
5b:27:59:55:06:d7:d1:31:97:be:62:f1:02:9a:88:
e1:53:35:f5:f2:cc:5c:5c:7f:67:04:df:4f:af:6c:
4f:dc:ce:ec:37:98:e8:21:61:ca:b2:a0:ef:3d:8c:
15:02:ac:3f:36:52:cc:37:27:4b:e6:af:38:50:c7:
ae:2e:97:3c:dd:e5:51:f5:53:75:7e:e5:11:7f:e3:
d7:e0:00:8a:ad:bc:16:52:ca:3b:93:4a:c2:88:e5:
4b:38:cf:31:c4:c3:bc:1c:8b:0f:28:ed:b3:c3:a6:
fa:4c:3f:bf:0e:3f:40:24:6a:23:f9:aa:6d:47:d7:
6b:33:93:64:d4:4d:f0:79:83:0c:26:8a:cc:80:1c:
e0:2a:6b:96:62:e8:b9:b8:96:0d:d6:41:be:d9:91:
7b:a0:3c:43:7b:62:78:f0:de:6b:e5:1f:44:7d:b9:
4c:fd:c1:73:8a:44:75:41:cd:86:9a:c7:4a:cc:ae:
a9:43:02:7b:de:4f:3c:b3:7a:db:0a:0d:af:89:0c:
cf:b3:e6:b1:b1:6a:2c:24:c0:44:7b:b8:6a:fe:47:
f8:93:22:35:c7:aa:b5:16:d0:30:9c:7f:34:40:67:
a0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:FE:77:5F:C1:D0:04:86:8F:B2:3B:58:A5:CE:44:41:CF:8F:7F:56
X509v3 Authority Key Identifier:
keyid:FB:29:CF:23:FC:9C:E6:E2:B8:C3:93:23:D2:70:CE:52:E8:93:87:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/h_53X8HQBIaPsjtYpc5EQc-Pf1Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/9fd003-06f7-45d8-a5dd-076bf02dcdd9/1/1-ynPI_yc5uK4w5Mj0nDOUuiThwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.28.130.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:cf:a6:d6:35:35:db:bc:18:8c:36:de:a3:8b:c7:a7:8e:d9:
b2:53:f6:32:40:47:6c:a8:7c:fd:04:5b:dc:ee:db:ae:ff:8c:
2d:3b:53:e9:ee:c3:ae:06:eb:9a:71:bc:e9:0a:74:73:9f:7a:
57:a8:af:56:3e:f6:48:45:91:e2:14:94:36:49:45:cb:7a:83:
39:e9:6d:a3:f4:67:3d:73:f3:da:b8:74:6d:91:78:bd:12:b9:
b0:1b:49:be:bd:d2:83:56:ea:6f:e7:71:36:14:19:62:3e:2c:
57:36:94:4b:7b:ba:f1:dc:18:5c:df:1b:35:87:a7:d1:f5:b5:
be:e5:a4:58:60:57:d0:0e:fa:b2:d3:2c:46:69:48:8e:9c:09:
e9:7b:91:06:d8:bf:4d:e2:b9:24:81:91:99:4c:db:ee:70:3b:
61:63:ff:39:ab:d8:21:ce:5f:85:e6:4d:cd:4a:03:b3:96:9c:
b0:7a:7f:cc:2f:d0:24:6c:ef:db:df:3e:86:2b:37:d0:f8:8e:
df:41:16:7f:e4:80:d1:ef:02:de:b0:1e:15:01:e4:da:11:e9:
3f:83:41:29:87:50:43:c0:3c:53:12:87:6c:26:13:b1:14:9e:
98:44:9b:35:a2:d4:94:40:6e:41:9d:90:e1:69:2c:03:2e:bd:
01:bc:07:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:16:39 2025 by rpki-client