Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/77f84a-0c87-4eab-bf2f-03972ccce6c1/1/eRlLfyEzbcQUnYzzYbXN3Tm_wAg.roa
File: eRlLfyEzbcQUnYzzYbXN3Tm_wAg.roa (raw, json)
Hash identifier: yyLm0nBaPo2A9AmENayUGCcsdN7G6Rlhs0uLrORY6+w=
Subject key identifier: 79:19:4B:7F:21:33:6D:C4:14:9D:8C:F3:61:B5:CD:DD:39:BF:C0:08
Certificate issuer: /CN=532a146d89e626e507e7ef7963add35a6eb72352
Certificate serial: 0183F4F5C8967BBA6C00E66369D0A8C81D59
Authority key identifier: 53:2A:14:6D:89:E6:26:E5:07:E7:EF:79:63:AD:D3:5A:6E:B7:23:52
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UyoUbYnmJuUH5-95Y63TWm63I1I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/77f84a-0c87-4eab-bf2f-03972ccce6c1/1/eRlLfyEzbcQUnYzzYbXN3Tm_wAg.roa
Signing time: Thu 20 Oct 2022 10:34:51 +0000
ROA not before: Thu 20 Oct 2022 10:34:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 194.63.145.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f4:f5:c8:96:7b:ba:6c:00:e6:63:69:d0:a8:c8:1d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=532a146d89e626e507e7ef7963add35a6eb72352
Validity
Not Before: Oct 20 10:34:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79194b7f21336dc4149d8cf361b5cddd39bfc008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:af:5c:a7:00:28:65:e0:d1:74:ba:65:a8:2d:
b5:ea:84:39:6f:ef:cc:9a:c5:4d:b9:54:44:41:90:
86:bd:aa:45:cc:0d:65:d0:af:9c:ac:b1:b5:a8:44:
9f:9b:16:e5:5d:e9:6c:ee:08:f4:9b:48:c8:af:63:
95:f2:24:63:d7:6c:90:51:55:60:a8:46:ae:25:83:
df:51:94:14:cc:e4:c1:16:63:e6:9e:5e:26:07:09:
e0:97:b6:cf:af:98:7b:02:e6:fb:c1:ea:f9:31:00:
ae:1a:7b:90:b2:2d:83:9e:51:2a:95:74:a8:bd:4f:
a3:25:73:3c:01:cf:ed:a5:d4:d9:c1:5d:41:4f:a8:
68:08:06:73:6d:28:6b:1c:9b:ec:1b:3e:9b:9e:e0:
16:fd:8f:36:79:9c:87:e3:ab:2c:29:1b:72:1f:3a:
75:82:03:61:4c:d3:e7:b5:a5:7a:e3:01:16:b8:68:
51:05:77:df:dc:8f:58:78:97:f8:49:39:f2:74:e1:
04:a1:5c:b3:31:58:31:37:2d:f5:45:fa:9a:2a:6b:
bb:e1:9f:68:a9:00:8a:03:a5:55:a4:5e:bf:4f:89:
98:56:93:d4:28:da:53:42:7d:bd:28:cc:05:80:26:
3b:27:47:0c:cc:43:39:e6:3c:be:0e:1f:64:bb:4e:
a5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:19:4B:7F:21:33:6D:C4:14:9D:8C:F3:61:B5:CD:DD:39:BF:C0:08
X509v3 Authority Key Identifier:
keyid:53:2A:14:6D:89:E6:26:E5:07:E7:EF:79:63:AD:D3:5A:6E:B7:23:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UyoUbYnmJuUH5-95Y63TWm63I1I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/77f84a-0c87-4eab-bf2f-03972ccce6c1/1/eRlLfyEzbcQUnYzzYbXN3Tm_wAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/77f84a-0c87-4eab-bf2f-03972ccce6c1/1/UyoUbYnmJuUH5-95Y63TWm63I1I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.63.145.0/24
Signature Algorithm: sha256WithRSAEncryption
90:57:9d:5a:06:79:52:f3:e0:21:ce:a9:4d:71:a2:a2:f1:67:
cd:8a:53:49:bd:ec:5b:96:5f:87:6d:47:b8:0e:02:0f:6b:d2:
77:bc:4a:42:2b:c8:aa:86:88:1e:5a:c6:3f:29:d1:2f:e0:18:
85:f7:78:e3:b2:76:14:20:dd:6a:26:ae:3c:d8:46:3b:b3:d6:
1a:c8:50:47:08:4d:07:a9:9f:2d:d7:71:0c:8d:78:5e:d7:70:
6e:1d:47:98:d4:c3:52:5e:50:d2:f1:58:70:df:df:0e:8f:bc:
3a:e8:8e:aa:5c:1d:55:b0:2e:ca:41:f8:36:e7:39:eb:0a:4c:
9a:69:47:0c:af:f8:d4:70:d4:33:30:dc:a2:7e:78:6e:4e:a0:
ee:36:24:82:a2:8a:df:2a:41:09:1d:89:a9:93:ea:20:40:41:
66:d5:e8:d5:1d:7f:80:2b:95:a2:35:6a:f8:cc:76:56:68:af:
a0:88:85:d8:06:1c:58:77:1c:7b:30:df:41:03:ac:e3:69:97:
f0:72:80:b7:eb:75:ca:5e:c4:fc:7b:e9:70:1a:f5:24:9d:f4:
67:71:69:a7:49:3b:28:58:c7:7f:3f:97:09:29:02:51:ce:e9:
c6:99:52:c4:a3:da:ee:5f:ae:13:6b:f6:48:21:91:af:1b:99:
9e:14:62:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:59:21 2025 by rpki-client