Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/gi7oi3qS2BdZmMrxLmwmTP__tHM.roa
File: gi7oi3qS2BdZmMrxLmwmTP__tHM.roa (raw, json)
Hash identifier: hm6rYCXyN2DSAAP9bvKeOZz10rFts5Gfe+aWqp4kSpU=
Subject key identifier: 82:2E:E8:8B:7A:92:D8:17:59:98:CA:F1:2E:6C:26:4C:FF:FF:B4:73
Certificate issuer: /CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Certificate serial: 018BDCFC42AFE9218BC0BA51C9923C3A2032
Authority key identifier: EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/gi7oi3qS2BdZmMrxLmwmTP__tHM.roa
Signing time: Fri 17 Nov 2023 11:13:21 +0000
ROA not before: Fri 17 Nov 2023 11:13:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 57523
IP address blocks: 109.196.166.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:dc:fc:42:af:e9:21:8b:c0:ba:51:c9:92:3c:3a:20:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eebbf317e5faf5ef02c9cce79527d5e74b8abcc5
Validity
Not Before: Nov 17 11:13:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=822ee88b7a92d8175998caf12e6c264cffffb473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:a1:c5:d6:18:41:7d:1c:f8:31:39:c0:da:2f:
d2:4d:86:c7:d8:ae:8e:b9:37:2f:69:09:65:e6:cf:
71:e8:88:89:80:ea:8a:78:7a:21:c4:6a:d2:ec:9e:
84:43:54:bd:a2:77:03:dc:e5:54:00:e1:a1:b1:45:
b7:6f:d1:8c:6e:6d:d5:16:91:aa:e9:16:4f:04:18:
03:04:1c:e1:aa:37:db:23:97:29:ce:fb:31:a6:d4:
64:fa:61:39:de:fb:64:61:7b:ee:47:39:33:9b:cc:
98:9f:f5:1b:8e:a7:d9:71:75:e3:6e:71:51:4c:04:
43:0d:02:b7:48:62:bf:c3:77:95:03:6f:aa:fe:c8:
ab:e0:f8:24:4a:65:d5:e9:83:80:c4:ce:83:14:39:
ce:fc:35:a3:20:c3:8c:46:ff:41:34:12:de:67:6b:
13:e0:bf:82:8e:84:95:17:c4:39:50:f0:e6:fa:c7:
eb:51:47:14:73:2e:e9:a0:bf:c4:4b:23:0a:66:c5:
9c:6b:79:ab:ac:6a:ee:3a:a0:00:9f:15:1e:e5:fa:
10:c0:bb:a7:6c:b2:70:19:82:25:e7:4a:fc:39:3f:
f3:80:c9:35:d4:b9:7c:e6:e0:7c:5e:7c:21:d2:56:
36:79:e6:55:2e:5e:44:98:21:20:57:d9:87:ee:0b:
88:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:2E:E8:8B:7A:92:D8:17:59:98:CA:F1:2E:6C:26:4C:FF:FF:B4:73
X509v3 Authority Key Identifier:
keyid:EE:BB:F3:17:E5:FA:F5:EF:02:C9:CC:E7:95:27:D5:E7:4B:8A:BC:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7rvzF-X69e8CycznlSfV50uKvMU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/gi7oi3qS2BdZmMrxLmwmTP__tHM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/6dec63-b9d9-480b-aeb3-6fe9bf60561c/1/7rvzF-X69e8CycznlSfV50uKvMU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.196.166.0/23
Signature Algorithm: sha256WithRSAEncryption
61:95:27:16:2e:b8:d4:6e:f6:75:0a:a9:5b:14:00:39:37:3c:
54:79:61:5c:08:50:96:63:2c:dc:a1:c3:c0:d6:1a:71:38:2e:
6a:ab:8e:1b:df:b6:d0:11:fb:09:b9:70:9d:cd:30:a6:ff:3f:
20:6c:76:e7:80:e9:8d:30:5b:16:5a:e6:a3:93:b7:f6:d1:8c:
9e:a7:79:6b:9b:a1:50:e3:af:aa:33:85:f5:3a:1e:29:68:2b:
3f:e5:75:fc:d6:5a:02:12:52:2c:27:d5:23:8b:83:6f:60:2b:
2e:d2:ec:d8:e1:ce:d5:f0:19:9c:4d:44:60:87:fa:47:48:9c:
ca:76:9e:9b:7c:e3:16:03:b8:8d:cb:39:87:b8:c4:6b:05:46:
23:94:4f:a5:e9:32:2b:32:26:55:9f:64:eb:d7:ac:4e:0a:ce:
a9:6a:7a:87:10:e7:bf:0d:ef:78:e6:2d:ae:49:11:ec:7c:bc:
88:01:21:a2:2c:fe:49:f6:a3:ac:4f:da:59:86:8c:99:99:d5:
22:97:3c:3b:be:ae:42:4c:8a:a0:91:8c:2b:bc:b9:c8:a1:a7:
5b:2a:5a:70:94:cb:dc:1b:c9:94:f6:65:16:da:ea:f0:81:6d:
7a:9f:8f:2f:3f:0a:5b:c3:dc:8c:f1:e8:4c:42:11:f6:7e:cf:
1f:00:75:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:27:44 2025 by rpki-client