Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/80353d-4f22-4d94-bead-dd20e2994cd0/1/1P9fVQVtxSb2G4sWpvSG7bw0bpw.roa
File: 1P9fVQVtxSb2G4sWpvSG7bw0bpw.roa (raw, json)
Hash identifier: 6VyhtcepI1NTxHwb+zyOQuM2NICKUmki0vqcGxvdoCg=
Subject key identifier: D4:FF:5F:55:05:6D:C5:26:F6:1B:8B:16:A6:F4:86:ED:BC:34:6E:9C
Certificate issuer: /CN=aba10057bcd00762eef43823c030e7e32d572241
Certificate serial: 019424B39FFFF1A12D4DA1287FA7DB188A30
Authority key identifier: AB:A1:00:57:BC:D0:07:62:EE:F4:38:23:C0:30:E7:E3:2D:57:22:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q6EAV7zQB2Lu9DgjwDDn4y1XIkE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/80353d-4f22-4d94-bead-dd20e2994cd0/1/1P9fVQVtxSb2G4sWpvSG7bw0bpw.roa
Signing time: Thu 02 Jan 2025 01:48:59 +0000
ROA not before: Thu 02 Jan 2025 01:48:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 401305
IP address blocks: 160.202.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:9f:ff:f1:a1:2d:4d:a1:28:7f:a7:db:18:8a:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aba10057bcd00762eef43823c030e7e32d572241
Validity
Not Before: Jan 2 01:48:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d4ff5f55056dc526f61b8b16a6f486edbc346e9c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:7b:ac:78:b9:6e:5f:ff:88:6f:dc:6b:c2:b1:
c8:4c:17:b4:c5:19:c4:3b:95:e2:59:55:55:c7:34:
6f:b7:91:ff:f0:bf:70:ef:51:56:6e:65:b2:49:33:
5e:8a:2a:ce:b6:63:61:71:47:4a:13:f7:d8:ae:04:
85:70:93:d6:9b:f5:95:6e:6e:7a:81:3b:55:78:9f:
da:01:b1:37:ca:43:df:39:6d:40:57:bb:63:5c:01:
a1:35:1f:20:29:fb:f3:c5:63:3c:00:7f:d5:5a:e9:
08:81:ef:95:2a:a4:4c:04:d5:f0:f6:2c:b3:46:25:
fb:27:f8:b1:a7:45:1f:b5:07:f6:68:20:aa:87:0a:
63:de:0f:bf:9f:8d:68:90:f1:ae:3f:70:46:d5:b2:
53:4f:64:36:a3:85:34:25:a8:39:c4:e2:4b:cb:ab:
7b:47:f2:a9:b5:d6:8d:82:a0:1a:eb:92:9e:b8:d5:
10:43:72:91:04:a6:cc:d9:5e:2b:a8:7b:d5:5c:e5:
3a:f0:ba:22:5d:f3:0a:9c:44:bb:63:fa:6b:3c:46:
9c:dc:4e:e5:2b:67:98:90:ac:c3:0c:94:c3:22:e0:
47:90:af:48:fe:02:23:77:e4:9e:db:da:64:24:05:
32:b3:a3:5b:f1:cc:e8:68:92:c4:28:89:68:43:84:
49:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FF:5F:55:05:6D:C5:26:F6:1B:8B:16:A6:F4:86:ED:BC:34:6E:9C
X509v3 Authority Key Identifier:
keyid:AB:A1:00:57:BC:D0:07:62:EE:F4:38:23:C0:30:E7:E3:2D:57:22:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6EAV7zQB2Lu9DgjwDDn4y1XIkE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/80353d-4f22-4d94-bead-dd20e2994cd0/1/1P9fVQVtxSb2G4sWpvSG7bw0bpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/80353d-4f22-4d94-bead-dd20e2994cd0/1/q6EAV7zQB2Lu9DgjwDDn4y1XIkE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.202.20.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:a3:a9:bd:2a:81:de:e1:4f:29:7a:0f:60:30:5b:50:09:bb:
3c:3b:b9:b6:bf:01:03:77:98:c9:52:65:ae:0e:a8:11:dc:1e:
59:2c:58:09:e0:d2:63:6e:54:13:59:84:58:12:20:16:49:4c:
6a:89:9e:d0:87:9e:6b:83:2f:ca:13:d6:bc:81:24:11:09:94:
9a:39:99:cf:85:87:45:67:3c:a3:f7:5f:33:bb:88:a2:18:26:
12:dd:df:27:33:4e:82:9b:1c:b2:74:a3:ec:32:f7:1f:07:ff:
68:9d:c8:c2:fd:45:0d:d3:e3:48:b5:9b:72:8f:83:61:85:c8:
c7:88:ad:a0:98:22:85:99:eb:a6:83:05:85:8d:d5:cc:33:d6:
20:df:88:68:27:cd:1b:5b:d1:03:a8:8e:7e:f8:e4:38:43:39:
8e:17:24:98:da:c0:bd:7b:c9:5f:92:e0:90:43:a8:98:9c:bb:
94:c4:12:fe:5f:22:9c:37:3a:46:f2:86:2d:c2:c1:bd:98:bf:
50:f9:6c:46:c4:f3:81:cf:17:64:58:e4:c3:27:5a:2a:8e:38:
c3:01:2b:eb:71:98:c0:78:65:a1:38:49:c0:47:e1:bb:8d:d8:
1d:91:25:f9:d3:b1:00:13:fd:fb:fd:78:1f:b8:04:7d:78:d0:
9f:c1:2e:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:23:48 2025 by rpki-client