Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/IGqmIqt0TONON_v0JOKbZkqM8OY.roa
File: IGqmIqt0TONON_v0JOKbZkqM8OY.roa (raw, json)
Hash identifier: SjrCdfYDBw2bbBFAcd+JcBITP8pvvr1UMGm0L7+u6SE=
Subject key identifier: 20:6A:A6:22:AB:74:4C:E3:4E:37:FB:F4:24:E2:9B:66:4A:8C:F0:E6
Certificate issuer: /CN=679a75debd65359a45317f203f11a321e14b2f2c
Certificate serial: 018B1E67C1444CE0C84D5FB124948E5009E7
Authority key identifier: 67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/IGqmIqt0TONON_v0JOKbZkqM8OY.roa
Signing time: Wed 11 Oct 2023 11:03:18 +0000
ROA not before: Wed 11 Oct 2023 11:03:18 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61317
IP address blocks: 94.176.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:1e:67:c1:44:4c:e0:c8:4d:5f:b1:24:94:8e:50:09:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=679a75debd65359a45317f203f11a321e14b2f2c
Validity
Not Before: Oct 11 11:03:18 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=206aa622ab744ce34e37fbf424e29b664a8cf0e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ac:e8:94:8c:b2:12:2d:15:cb:91:08:b1:07:
59:8e:bf:a0:d5:a4:84:8e:54:af:3e:3b:be:73:df:
77:d3:e9:f4:71:94:d8:b7:da:85:7c:42:77:51:92:
e4:40:c9:14:f4:e6:d4:f1:15:f6:c3:ff:6e:43:82:
3c:ec:38:9c:9c:e7:45:ae:ac:cc:37:62:72:c8:9f:
ac:1b:f1:07:62:5e:a7:a6:c1:04:25:97:98:0c:fe:
01:c8:49:c0:a4:8c:41:1c:34:c4:2e:05:84:a8:f1:
bb:01:19:c6:4f:94:f3:31:40:15:ad:e9:b7:8f:a1:
ed:0d:d1:e7:7c:7d:4d:48:72:bc:50:ef:c4:59:20:
58:6d:0b:c9:ea:5f:05:3e:98:96:81:cd:39:ab:11:
f0:36:69:e3:39:8f:96:c6:c6:39:3a:e4:da:1a:ec:
ed:54:d1:12:9d:bc:3b:22:72:6a:f1:f5:a2:41:0c:
81:4a:06:82:b9:84:25:ee:35:91:13:eb:61:0c:ca:
98:16:5e:f6:43:37:71:06:6a:b1:f5:5d:1b:cf:a0:
3d:11:b7:77:56:49:34:93:38:5c:af:08:65:d6:f8:
4a:22:5c:94:b5:6f:1a:e8:21:b2:18:e4:8e:90:7c:
28:5f:93:ae:c5:76:8b:13:5a:f7:09:fb:8e:64:01:
3b:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:6A:A6:22:AB:74:4C:E3:4E:37:FB:F4:24:E2:9B:66:4A:8C:F0:E6
X509v3 Authority Key Identifier:
keyid:67:9A:75:DE:BD:65:35:9A:45:31:7F:20:3F:11:A3:21:E1:4B:2F:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z5p13r1lNZpFMX8gPxGjIeFLLyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/IGqmIqt0TONON_v0JOKbZkqM8OY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/7a39b1-1d1c-4919-b19c-3eebe7196972/1/Z5p13r1lNZpFMX8gPxGjIeFLLyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.176.96.0/24
Signature Algorithm: sha256WithRSAEncryption
17:6b:6e:fd:7a:d4:df:de:90:0a:87:6e:85:e8:6d:ee:f1:95:
35:62:1c:c9:1b:af:3a:a5:3c:98:ae:bc:16:6d:7e:0f:fa:c9:
d6:79:7b:62:96:e6:91:eb:1a:14:e3:9f:bd:de:b9:37:10:c0:
82:d5:d4:90:55:e0:44:c2:82:1a:ff:1b:95:7d:81:ea:16:bb:
50:29:6e:03:c6:97:dc:be:73:3a:89:77:6e:c2:52:c1:84:ee:
98:7b:9b:9e:22:09:25:4e:19:7e:89:9e:8e:36:e7:b9:75:79:
70:d4:12:42:e4:7b:90:16:0c:92:67:6b:5d:a0:a2:18:0a:81:
3d:89:74:af:40:5f:42:3d:58:21:f8:ce:7f:d8:76:17:66:39:
a8:74:94:18:7e:41:39:10:a3:a8:42:2b:75:82:f4:45:4b:55:
88:7b:c9:ec:7a:09:aa:9f:c8:e6:8f:33:b1:f7:e4:8f:84:60:
f9:d5:bf:0f:51:cc:1b:fb:66:76:4c:71:72:83:40:19:26:df:
57:6e:30:78:3d:4f:d6:f3:5f:6e:59:d7:d6:02:cf:a5:1e:9d:
1a:d5:d0:84:5d:36:0f:d7:d7:02:20:f1:ee:99:5c:31:e5:b0:
0b:f1:51:09:51:c1:fc:7d:ea:d4:b3:2e:a5:08:5c:b3:cc:91:
1d:b6:4b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:13 2025 by rpki-client