Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/tBB9Mr6ouk5HPeujsw6ls6q_bao.roa
File: tBB9Mr6ouk5HPeujsw6ls6q_bao.roa (raw, json)
Hash identifier: ajHBlcdqDsB6gnuBRateuEb67Mxhe3b21IiMuFeJuIA=
Subject key identifier: B4:10:7D:32:BE:A8:BA:4E:47:3D:EB:A3:B3:0E:A5:B3:AA:BF:6D:AA
Certificate issuer: /CN=1c963e3d22847d466c262c20878c2780d8840003
Certificate serial: 01920FF071AD5D602BC25EE6C3F0F52CA89F
Authority key identifier: 1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/tBB9Mr6ouk5HPeujsw6ls6q_bao.roa
Signing time: Fri 20 Sep 2024 14:57:48 +0000
ROA not before: Fri 20 Sep 2024 14:57:48 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 214304
IP address blocks: 185.176.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:0f:f0:71:ad:5d:60:2b:c2:5e:e6:c3:f0:f5:2c:a8:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c963e3d22847d466c262c20878c2780d8840003
Validity
Not Before: Sep 20 14:57:48 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b4107d32bea8ba4e473deba3b30ea5b3aabf6daa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d5:ac:93:e2:b9:49:ea:8a:97:d1:76:9a:2f:
74:9a:29:15:37:f5:6b:1e:fe:6b:f7:d9:c1:ad:d0:
dd:69:75:83:fb:43:47:55:2c:a9:ec:3b:7a:29:0a:
42:bd:a5:90:be:c7:84:ac:9f:57:75:6c:43:40:ca:
98:75:b1:8a:e2:8e:64:07:aa:ea:39:73:71:87:5f:
93:8e:59:ba:c3:cf:4b:1e:ba:b9:65:ca:1b:7a:c0:
50:83:2f:eb:bc:c4:24:4e:9f:87:9c:9f:c6:d9:3a:
d2:69:0e:75:53:20:8c:e0:b4:5b:f8:2c:5f:47:1a:
03:6e:d4:76:03:1f:16:c5:5a:5b:9d:11:74:09:78:
62:6d:12:0c:e6:01:b2:b8:b1:49:75:24:06:7f:73:
5c:fa:43:52:04:ce:9e:07:0b:fb:ef:15:a5:38:1a:
08:90:82:14:a0:d3:26:6b:c3:f4:67:3d:04:f0:7f:
c3:b4:69:1e:79:21:31:b7:a8:92:6d:9f:6d:19:8b:
8e:21:b4:47:f9:1b:1e:a9:ce:0d:e4:cd:72:9d:c4:
dd:8c:e4:49:58:fe:2e:8f:b6:da:2e:cb:d6:3d:2c:
66:31:e6:f1:20:dd:08:d2:3d:59:0c:e9:c6:2a:3a:
65:64:ad:c2:8d:a8:cc:b1:46:7f:6f:fe:4f:30:85:
0a:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:10:7D:32:BE:A8:BA:4E:47:3D:EB:A3:B3:0E:A5:B3:AA:BF:6D:AA
X509v3 Authority Key Identifier:
keyid:1C:96:3E:3D:22:84:7D:46:6C:26:2C:20:87:8C:27:80:D8:84:00:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HJY-PSKEfUZsJiwgh4wngNiEAAM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/tBB9Mr6ouk5HPeujsw6ls6q_bao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/38f128-ea82-4555-b514-143967a8fe08/1/HJY-PSKEfUZsJiwgh4wngNiEAAM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.176.92.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:08:ae:89:84:7f:6c:42:61:a0:ca:36:df:8a:18:96:08:ed:
af:01:c1:94:74:73:59:05:ac:65:cb:fd:56:3f:ac:3e:6b:97:
cd:b2:9b:68:40:55:43:96:b8:cd:ce:72:a3:a6:69:3b:8a:55:
a5:5c:04:05:76:a7:2f:2b:4f:43:77:95:c5:1a:51:7e:5a:f7:
e2:b2:ac:88:6e:9a:62:82:5f:08:07:b0:16:15:ca:80:b3:08:
e9:eb:00:3f:84:0c:b0:a5:c8:2b:34:1e:2d:2f:49:68:31:70:
f2:48:e1:39:18:9e:dd:26:18:e4:e9:d3:97:44:0d:24:dd:f0:
30:8b:de:64:9c:a3:b9:05:67:a2:f8:db:f2:a9:0b:fc:0d:db:
4d:03:aa:c2:47:cb:89:b1:7a:7a:aa:cf:f3:d0:46:ef:3f:80:
d8:3c:a2:7d:1f:09:ce:5c:d7:47:fa:23:46:d2:20:d0:8d:26:
cc:ea:f8:ef:75:4f:43:5b:2f:25:96:5b:73:4f:05:97:5d:8e:
3b:e4:fc:2f:21:2a:8f:8b:ef:d5:72:42:98:17:6c:7d:eb:b7:
e9:0f:bd:b8:42:d6:71:68:46:44:ef:24:c1:90:ea:94:cd:de:
81:9e:f0:09:70:9d:18:15:88:64:ed:a3:08:71:58:39:f0:8e:
78:5a:d8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:23:29 2025 by rpki-client