Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c1/d9afe7-cada-44b6-a5e7-0015ccc12cc7/1/bBH2IrcYfCHzBTtY6f5jC4vUiFU.roa
File: bBH2IrcYfCHzBTtY6f5jC4vUiFU.roa (raw, json)
Hash identifier: eb9o9NZDfZEJHef54YNjz1udcQs3fx+ezlFl/3Vw+Ns=
Subject key identifier: 6C:11:F6:22:B7:18:7C:21:F3:05:3B:58:E9:FE:63:0B:8B:D4:88:55
Certificate issuer: /CN=350fe20ebfc7545827957087cc721cc6f3b6db35
Certificate serial: 9D13DE
Authority key identifier: 35:0F:E2:0E:BF:C7:54:58:27:95:70:87:CC:72:1C:C6:F3:B6:DB:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQ_iDr_HVFgnlXCHzHIcxvO22zU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c1/d9afe7-cada-44b6-a5e7-0015ccc12cc7/1/bBH2IrcYfCHzBTtY6f5jC4vUiFU.roa
Signing time: Sat 01 Jan 2022 00:50:31 +0000
ROA not before: Sat 01 Jan 2022 00:50:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48031
IP address blocks: 176.97.203.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10294238 (0x9d13de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=350fe20ebfc7545827957087cc721cc6f3b6db35
Validity
Not Before: Jan 1 00:50:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c11f622b7187c21f3053b58e9fe630b8bd48855
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ac:8c:e0:8a:db:f9:5e:da:92:af:68:b7:a1:
6a:70:39:4e:88:cc:e8:51:49:5b:48:08:c6:9f:f1:
b7:d4:05:a5:fc:8a:08:92:fa:7f:d4:00:51:1c:4f:
d6:ec:d8:61:98:52:5c:cf:14:3e:61:83:af:ac:43:
22:5e:87:81:c8:56:04:a6:ed:f2:31:36:4a:b2:39:
79:3d:0e:bc:4f:20:b5:90:06:14:82:fb:29:d3:7c:
1b:d7:e6:75:78:53:05:ad:f6:2a:a4:fb:82:d6:20:
13:19:cd:9e:df:22:ca:28:27:9e:f4:25:63:17:79:
21:18:a8:5d:fb:cf:0d:3c:04:0d:5d:57:e1:28:c3:
c2:8f:4a:02:8f:46:71:00:40:f1:d7:de:2d:89:bf:
15:af:ff:97:d9:6e:ec:44:eb:07:98:67:98:9d:2f:
0d:f6:8e:be:c1:1f:a8:4b:48:2a:c4:d0:28:9a:45:
0a:db:96:f4:2f:0d:58:f5:45:e0:ef:06:85:10:6e:
f6:68:cd:89:66:57:6d:c0:e8:eb:3d:18:6f:b7:e6:
2e:86:a3:fe:57:a4:d6:f9:b7:c9:50:b3:9c:6e:02:
95:ff:80:49:25:97:16:e4:94:c4:44:dd:54:fc:a9:
8e:55:c1:4d:a6:af:65:bb:80:3e:db:7c:21:74:1e:
65:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:11:F6:22:B7:18:7C:21:F3:05:3B:58:E9:FE:63:0B:8B:D4:88:55
X509v3 Authority Key Identifier:
keyid:35:0F:E2:0E:BF:C7:54:58:27:95:70:87:CC:72:1C:C6:F3:B6:DB:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQ_iDr_HVFgnlXCHzHIcxvO22zU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/d9afe7-cada-44b6-a5e7-0015ccc12cc7/1/bBH2IrcYfCHzBTtY6f5jC4vUiFU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/d9afe7-cada-44b6-a5e7-0015ccc12cc7/1/NQ_iDr_HVFgnlXCHzHIcxvO22zU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.203.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:f7:d8:0b:93:33:dd:96:01:54:c4:6e:6f:08:71:e9:e9:a4:
e8:a1:f8:ff:f2:65:50:f8:37:a1:51:c1:8e:65:f3:33:d3:af:
15:3c:de:bb:52:76:b8:57:e0:d3:9f:83:09:fc:8b:a3:f2:72:
b7:7c:dd:00:10:f6:6c:72:1a:d2:ce:e3:60:d1:78:b2:ab:08:
d5:cc:47:0b:08:aa:35:80:9c:18:8b:6e:0a:53:8d:94:12:89:
6e:a4:fe:30:5f:ba:45:b0:22:1c:39:3d:48:01:20:5a:90:cb:
1d:56:84:e5:a5:14:ad:9b:18:3f:43:6e:f5:eb:51:f5:cf:de:
e5:67:71:ea:a4:cc:7e:b7:5e:f6:3d:9f:09:4d:ce:86:f2:bb:
fe:3f:0e:f6:5e:6d:4e:b3:a5:f3:1b:62:73:03:29:bc:06:e7:
2e:3a:55:41:95:b5:49:4e:08:8c:5d:aa:9f:f2:4e:23:43:20:
96:4a:cb:bd:99:b4:18:83:a3:28:59:41:18:0c:b4:6a:f9:00:
45:c6:da:a2:48:78:64:1b:69:24:3b:d4:7f:70:23:f5:94:16:
17:3d:94:b3:80:1c:6d:88:64:1f:bf:fb:15:97:4c:44:67:ea:
f1:b2:94:25:53:45:aa:a8:fc:ba:8c:e5:27:30:c7:24:8b:11:
81:1e:57:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:50:28 2025 by rpki-client