Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b4b509-4a06-4bc4-9384-53e410825676/1/BRhWfmPxqFrGq_vWa7FrMOSFT14.roa
File: BRhWfmPxqFrGq_vWa7FrMOSFT14.roa (raw, json)
Hash identifier: eRM1Cw1wVJfhwfQ9fruasY1Q7bw9mEaQzMsm/PM+dBc=
Subject key identifier: 05:18:56:7E:63:F1:A8:5A:C6:AB:FB:D6:6B:B1:6B:30:E4:85:4F:5E
Certificate issuer: /CN=4dbc0c0633cbef2e97fceac797633d4912f76f96
Certificate serial: 018570D510CE30FB57E91A32AA5CE46F9B64
Authority key identifier: 4D:BC:0C:06:33:CB:EF:2E:97:FC:EA:C7:97:63:3D:49:12:F7:6F:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TbwMBjPL7y6X_OrHl2M9SRL3b5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b4b509-4a06-4bc4-9384-53e410825676/1/BRhWfmPxqFrGq_vWa7FrMOSFT14.roa
Signing time: Mon 02 Jan 2023 04:54:49 +0000
ROA not before: Mon 02 Jan 2023 04:54:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 211415
IP address blocks: 217.198.187.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:d5:10:ce:30:fb:57:e9:1a:32:aa:5c:e4:6f:9b:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dbc0c0633cbef2e97fceac797633d4912f76f96
Validity
Not Before: Jan 2 04:54:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0518567e63f1a85ac6abfbd66bb16b30e4854f5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:58:80:18:68:b7:45:e3:50:b0:34:8c:73:1f:
47:29:17:c2:34:66:11:3c:29:43:a8:d1:db:eb:30:
69:c7:fe:45:9f:c8:c7:b1:8c:69:bc:ab:af:68:b2:
6e:5c:05:91:ab:3e:04:7e:4c:d9:dd:f0:98:9d:a3:
de:7d:f7:bc:3f:8a:40:7e:01:9a:03:9a:b1:d5:4b:
ff:02:bc:44:83:e5:7c:04:3a:d6:6f:c6:e9:42:e0:
b9:ec:bd:f1:38:c4:b4:e6:fa:86:ed:b0:b6:1a:cb:
2e:a7:0b:3b:24:8a:12:23:b3:b5:35:1d:81:62:c6:
80:9f:cc:0e:f9:85:24:2e:56:da:80:0e:6b:59:20:
77:bd:0c:ab:96:9a:3d:04:62:b7:2b:92:8f:30:bc:
4e:e1:9f:bf:73:78:d5:a5:24:0d:2c:05:cf:d5:d2:
c7:35:a7:bc:77:e2:d0:e5:69:88:fb:ef:43:55:66:
4d:bc:a9:68:dd:3b:9a:04:4f:66:8c:99:07:48:fa:
5b:22:72:70:db:db:55:6d:60:46:69:af:89:86:f9:
1c:08:ad:2c:55:d3:1f:9d:ca:e0:6a:8f:7b:d1:1e:
30:ca:bc:0f:bc:6b:a8:da:5b:72:c1:3d:73:32:14:
ad:66:b4:9f:d4:c7:52:1a:c9:ab:b0:ab:11:83:63:
1e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:18:56:7E:63:F1:A8:5A:C6:AB:FB:D6:6B:B1:6B:30:E4:85:4F:5E
X509v3 Authority Key Identifier:
keyid:4D:BC:0C:06:33:CB:EF:2E:97:FC:EA:C7:97:63:3D:49:12:F7:6F:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TbwMBjPL7y6X_OrHl2M9SRL3b5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b4b509-4a06-4bc4-9384-53e410825676/1/BRhWfmPxqFrGq_vWa7FrMOSFT14.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b4b509-4a06-4bc4-9384-53e410825676/1/TbwMBjPL7y6X_OrHl2M9SRL3b5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.187.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:29:c0:fb:ea:14:76:ba:63:28:f5:e5:b0:e2:5e:0c:f9:19:
e3:d4:0b:a2:6a:56:5f:e4:a9:6d:7e:ab:2a:36:98:5e:56:4c:
43:4b:56:3e:dc:00:b7:20:b2:e3:2a:89:d3:71:73:a2:1b:53:
c3:78:06:da:79:d6:6e:ab:4d:fd:b7:5d:70:f2:6f:f0:cb:e7:
67:77:eb:5a:e3:d3:d6:da:db:81:eb:e2:c1:48:81:2d:a6:36:
bd:14:74:19:e0:4d:a2:73:86:38:16:a0:fb:65:89:fb:71:5f:
62:25:40:c5:50:12:f5:d8:b8:5d:25:6d:0a:bc:15:ef:d2:4c:
08:65:87:49:a0:80:24:5c:55:ee:34:01:14:8f:30:0c:12:85:
8e:8c:02:2c:70:29:e3:6e:5e:54:31:f2:7d:cd:8c:ae:ce:4c:
29:73:e9:b6:93:2d:16:08:8d:2e:2c:b2:d1:fa:2a:75:7f:c5:
0d:50:59:a4:a4:61:7f:ce:c2:42:cc:f1:d7:34:50:be:cf:54:
45:3e:ef:86:2a:06:be:f4:e6:f1:a4:94:4c:31:fe:e9:c5:40:
56:16:d1:f5:03:a5:68:f4:7d:81:ab:5c:a8:fc:f3:20:f8:60:
d9:62:dc:61:f5:de:8f:49:ee:cd:2c:e1:6b:a7:08:82:af:64:
eb:c2:fd:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:42 2025 by rpki-client