Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/d9afe7-cada-44b6-a5e7-0015ccc12cc7/1/BQf71Me-u5BSrqoZ6oVBIErXyUY.roa
File: BQf71Me-u5BSrqoZ6oVBIErXyUY.roa (raw, json)
Hash identifier: +srWlfTDyMJRfIuPI+vHs9PNS9vYOLPCuDF2U2gLSIg=
Subject key identifier: 05:07:FB:D4:C7:BE:BB:90:52:AE:AA:19:EA:85:41:20:4A:D7:C9:46
Certificate issuer: /CN=350fe20ebfc7545827957087cc721cc6f3b6db35
Certificate serial: 01856F66C1041B038A8AA328C8C42A94F37A
Authority key identifier: 35:0F:E2:0E:BF:C7:54:58:27:95:70:87:CC:72:1C:C6:F3:B6:DB:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQ_iDr_HVFgnlXCHzHIcxvO22zU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/d9afe7-cada-44b6-a5e7-0015ccc12cc7/1/BQf71Me-u5BSrqoZ6oVBIErXyUY.roa
Signing time: Sun 01 Jan 2023 22:14:43 +0000
ROA not before: Sun 01 Jan 2023 22:14:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48031
IP address blocks: 176.97.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:66:c1:04:1b:03:8a:8a:a3:28:c8:c4:2a:94:f3:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=350fe20ebfc7545827957087cc721cc6f3b6db35
Validity
Not Before: Jan 1 22:14:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0507fbd4c7bebb9052aeaa19ea8541204ad7c946
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fe:cb:02:8f:29:d0:98:e8:a7:06:c7:8b:a4:
45:cd:4e:5c:2f:68:1c:2b:51:4c:13:47:08:c2:8f:
57:bd:9e:27:19:eb:78:68:8e:17:d7:42:30:cc:17:
61:97:15:6c:14:9e:00:98:83:4e:ba:c1:32:c0:28:
e0:84:19:81:3e:df:98:3b:6c:c7:07:4f:f4:4a:46:
d5:91:8f:74:7d:fd:6d:44:e7:fb:ca:a6:14:41:af:
47:0c:0c:1e:01:1a:31:6b:c8:68:cc:13:d8:e8:66:
c3:e0:29:e2:59:83:3d:6e:9e:46:be:a3:45:ee:de:
9c:a3:d9:8d:31:e5:ae:92:ef:51:9d:f3:47:2f:b6:
57:a7:7b:bb:b5:1d:52:ef:5f:00:b5:5e:62:41:ae:
a1:dc:b3:f3:a5:e8:f0:dc:54:d8:88:f3:83:da:5f:
e4:e8:25:b2:11:44:19:14:03:c7:74:6c:20:1f:a9:
3d:fc:0b:f4:45:2d:a7:f6:d5:de:ae:4e:01:dc:b1:
64:3d:47:c0:08:45:6d:54:77:e6:92:2f:5c:21:b5:
c2:5d:e5:38:b1:ec:99:44:d5:d5:50:fa:90:9d:f9:
49:66:fe:c8:4a:ce:d4:2c:93:81:07:ca:d3:7c:b6:
97:c0:f2:ea:81:4a:a1:74:67:1d:e0:a6:38:88:f5:
82:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:07:FB:D4:C7:BE:BB:90:52:AE:AA:19:EA:85:41:20:4A:D7:C9:46
X509v3 Authority Key Identifier:
keyid:35:0F:E2:0E:BF:C7:54:58:27:95:70:87:CC:72:1C:C6:F3:B6:DB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQ_iDr_HVFgnlXCHzHIcxvO22zU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/d9afe7-cada-44b6-a5e7-0015ccc12cc7/1/BQf71Me-u5BSrqoZ6oVBIErXyUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/d9afe7-cada-44b6-a5e7-0015ccc12cc7/1/NQ_iDr_HVFgnlXCHzHIcxvO22zU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.203.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:1e:0e:3f:30:23:d6:c5:f8:0a:ae:08:7b:ca:2c:61:09:88:
cb:7e:23:3f:6a:9d:af:5a:97:bf:10:87:28:f0:b2:62:06:23:
d6:31:2a:dd:a8:3d:16:1c:2f:c7:71:11:eb:ea:b0:b7:27:ed:
24:c7:7c:3b:3b:29:61:b3:50:28:57:6b:2b:fd:56:4b:dc:b8:
72:ba:eb:53:95:c3:b9:8c:21:e4:33:1a:5d:fe:fb:41:24:04:
09:c7:66:e7:fa:e3:79:2d:34:d9:8f:99:2f:44:42:db:db:c6:
6e:54:6a:4a:d9:68:eb:bb:2a:55:9f:09:dc:d7:89:18:8c:79:
25:9f:56:6f:16:19:c3:c5:64:4e:e5:ef:4d:d5:bc:87:52:68:
de:36:9c:b3:c5:13:4b:07:ba:d7:f4:b8:3b:fa:b2:be:f5:26:
b6:6f:82:af:45:3f:9d:3d:a2:94:52:c5:81:af:33:06:c9:78:
84:18:92:a5:b7:d0:e2:0e:e4:94:aa:3e:87:f2:6f:45:75:94:
c7:c7:46:65:bc:12:b1:97:40:40:69:73:bd:f2:72:b8:33:6d:
84:8a:4c:b6:24:ff:c8:6b:2c:78:0f:42:64:05:81:6a:41:c4:
9b:d4:bc:4c:46:bf:9f:db:1d:a6:7e:65:ea:7e:47:05:3b:a6:
9c:9a:bb:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:49 2025 by rpki-client