Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/d5dc90-f0ef-4729-8456-aab422df21e2/1/NO6TDqKYvUL65jCvrwluu37OpOw.roa
File: NO6TDqKYvUL65jCvrwluu37OpOw.roa (raw, json)
Hash identifier: TcltT4zQpm5gap8wBR9uo5U+XzZYTMz1yEtA31qEMO4=
Subject key identifier: 34:EE:93:0E:A2:98:BD:42:FA:E6:30:AF:AF:09:6E:BB:7E:CE:A4:EC
Certificate issuer: /CN=c2ddf62aad77743167ee4f414969642c8b128c6d
Certificate serial: 01856D416D5B464A9CB39273823A8E79B618
Authority key identifier: C2:DD:F6:2A:AD:77:74:31:67:EE:4F:41:49:69:64:2C:8B:12:8C:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wt32Kq13dDFn7k9BSWlkLIsSjG0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/d5dc90-f0ef-4729-8456-aab422df21e2/1/NO6TDqKYvUL65jCvrwluu37OpOw.roa
Signing time: Sun 01 Jan 2023 12:14:42 +0000
ROA not before: Sun 01 Jan 2023 12:14:42 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 198401
IP address blocks: 176.126.118.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:41:6d:5b:46:4a:9c:b3:92:73:82:3a:8e:79:b6:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c2ddf62aad77743167ee4f414969642c8b128c6d
Validity
Not Before: Jan 1 12:14:42 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=34ee930ea298bd42fae630afaf096ebb7ecea4ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:a6:c9:56:81:28:4e:5d:20:f3:81:6d:ab:cc:
b4:79:73:08:13:0e:fa:d6:c0:a2:ac:28:6f:18:f5:
ab:9b:ea:b1:a8:9c:41:a3:a6:96:d8:25:fe:fe:c0:
3d:c0:17:13:c8:35:d2:3f:9e:46:fa:ed:a6:80:29:
3b:6b:d2:d9:0c:64:72:27:fd:30:55:b8:47:37:65:
76:e8:65:ab:39:14:aa:63:f9:6f:ec:ac:5e:46:1a:
f7:d4:c1:0c:be:86:67:61:3f:6c:30:ae:72:59:ee:
42:23:7b:04:a2:e2:1e:a3:f2:a7:5e:66:46:97:e0:
59:73:39:e1:47:95:71:12:ee:76:06:bb:46:f8:09:
27:7d:ba:d8:5c:7e:5f:3d:5d:85:71:3b:06:16:5e:
cf:26:6e:2a:e6:24:15:f7:29:4e:61:f8:48:64:6b:
ad:e8:83:ed:4a:da:10:2b:3a:a0:74:57:7a:63:a4:
5f:f3:2b:c4:32:60:d4:e2:d8:c3:67:be:19:9d:3f:
d6:80:60:bc:a8:f9:71:b1:48:b7:66:b8:58:cd:1d:
89:0b:a9:66:75:2e:75:18:56:62:17:90:26:71:dc:
3e:df:12:f1:73:76:ca:8a:03:25:69:e0:76:cf:54:
98:27:a5:13:6c:b6:61:2c:86:70:5d:55:80:da:16:
81:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:EE:93:0E:A2:98:BD:42:FA:E6:30:AF:AF:09:6E:BB:7E:CE:A4:EC
X509v3 Authority Key Identifier:
keyid:C2:DD:F6:2A:AD:77:74:31:67:EE:4F:41:49:69:64:2C:8B:12:8C:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wt32Kq13dDFn7k9BSWlkLIsSjG0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d5dc90-f0ef-4729-8456-aab422df21e2/1/NO6TDqKYvUL65jCvrwluu37OpOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/d5dc90-f0ef-4729-8456-aab422df21e2/1/wt32Kq13dDFn7k9BSWlkLIsSjG0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.118.0/24
Signature Algorithm: sha256WithRSAEncryption
11:37:bd:09:aa:53:b9:43:a7:b9:74:8c:ca:d8:a5:18:21:53:
b3:f7:e1:64:26:ce:91:e2:11:12:d1:2b:8c:5b:04:e2:2f:21:
6f:a6:fb:06:19:3b:b7:a8:86:c4:d3:00:77:75:e4:ce:3c:00:
c4:69:27:29:b9:b8:de:a7:87:3e:4a:04:93:78:9a:2e:ce:35:
7f:50:ab:ff:c8:46:7b:a2:1e:33:a8:82:09:75:d3:37:a7:f4:
19:48:b8:43:3a:76:27:22:37:55:55:bc:b8:62:67:a2:c8:05:
e6:4a:e4:db:3f:0f:95:1c:d3:80:d1:e1:eb:c8:5f:fc:33:c1:
90:94:6f:18:66:fd:b2:c6:2e:b8:d6:58:ad:45:0a:6f:04:3f:
3c:cc:99:a1:4a:c1:53:85:8a:8c:21:61:e9:b9:c0:08:5d:5a:
bd:c2:a4:95:45:82:86:4f:a1:83:6b:b5:7c:8b:5b:8e:3f:58:
ec:16:ea:0a:ef:03:b8:1d:ea:46:73:46:f3:99:e4:64:a8:09:
9e:18:08:53:54:61:dd:a6:b6:ed:60:81:09:32:4e:65:b1:1f:
18:04:f2:5f:02:0d:d2:02:a1:76:7c:d4:7d:dd:d6:de:9b:60:
5f:07:51:ca:04:d7:3d:8a:d5:ff:dc:f6:4b:6b:dd:0d:72:56:
9c:a4:3c:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 03:40:18 2025 by rpki-client