Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/bc2e97-3b11-49ad-b730-47936f8662be/1/i5HtH77911-g5PhVvvSzFI2PBpY.roa
File: i5HtH77911-g5PhVvvSzFI2PBpY.roa (raw, json)
Hash identifier: aXC0Goh996rBMEAT+wydit6yUgWZcT5lgMSb3YavPdU=
Subject key identifier: 8B:91:ED:1F:BE:FD:D7:5F:A0:E4:F8:55:BE:F4:B3:14:8D:8F:06:96
Certificate issuer: /CN=ed0c0ff3b474e760e8474a2c3d0eedb5be5398a6
Certificate serial: 018326EB624E0540364C37FDAB6AD01E97B5
Authority key identifier: ED:0C:0F:F3:B4:74:E7:60:E8:47:4A:2C:3D:0E:ED:B5:BE:53:98:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7QwP87R052DoR0osPQ7ttb5TmKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/bc2e97-3b11-49ad-b730-47936f8662be/1/i5HtH77911-g5PhVvvSzFI2PBpY.roa
Signing time: Sat 10 Sep 2022 10:21:43 +0000
ROA not before: Sat 10 Sep 2022 10:21:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39855
IP address blocks: 5.253.226.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:26:eb:62:4e:05:40:36:4c:37:fd:ab:6a:d0:1e:97:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ed0c0ff3b474e760e8474a2c3d0eedb5be5398a6
Validity
Not Before: Sep 10 10:21:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b91ed1fbefdd75fa0e4f855bef4b3148d8f0696
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:26:16:b0:51:69:16:91:18:d2:25:23:e6:4a:
fc:dd:cc:ff:66:88:4a:b4:c6:6a:47:ab:9e:fb:67:
f0:df:61:04:ab:cb:a3:93:96:a7:cd:31:49:61:80:
1d:c1:60:bc:5f:1a:f9:31:e7:4b:ee:fd:05:68:3b:
96:b6:0d:ba:22:51:a8:04:62:b7:24:65:39:e2:32:
b4:5a:a3:78:e4:17:d4:1c:be:da:a5:f3:cd:5f:a0:
a2:9a:4b:f2:9a:a8:6e:b5:80:76:c6:e9:04:5e:85:
d8:94:60:c5:ee:70:1b:65:12:a7:63:05:24:be:ee:
49:7c:47:ea:45:6a:22:e9:33:d3:0d:bc:ac:6f:35:
33:9e:ef:e6:17:ca:3c:51:d9:d4:02:30:e9:f2:0a:
75:cb:b6:c9:d7:35:99:c5:5b:e3:e8:6c:bf:87:1f:
e3:25:27:5c:ea:6e:10:f9:6b:f4:73:23:e0:cc:89:
76:f3:47:7a:8d:47:dc:ed:1d:bf:df:0a:da:a1:a1:
38:12:25:e2:b3:92:4b:f5:bd:ca:cb:0a:c8:d2:c9:
a3:20:af:53:34:15:7a:86:02:f7:01:ff:f7:ef:e3:
3d:f1:b6:dc:20:cd:c3:8d:ec:75:b2:23:8d:03:86:
51:61:22:cd:58:23:d6:d3:f5:31:66:77:7e:80:66:
41:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:91:ED:1F:BE:FD:D7:5F:A0:E4:F8:55:BE:F4:B3:14:8D:8F:06:96
X509v3 Authority Key Identifier:
keyid:ED:0C:0F:F3:B4:74:E7:60:E8:47:4A:2C:3D:0E:ED:B5:BE:53:98:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7QwP87R052DoR0osPQ7ttb5TmKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/bc2e97-3b11-49ad-b730-47936f8662be/1/i5HtH77911-g5PhVvvSzFI2PBpY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/bc2e97-3b11-49ad-b730-47936f8662be/1/7QwP87R052DoR0osPQ7ttb5TmKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.226.0/24
Signature Algorithm: sha256WithRSAEncryption
43:c8:19:80:2b:48:39:1d:a3:ba:25:8c:d6:d8:06:a1:4d:01:
8e:ce:e2:db:6a:68:65:74:34:fd:0d:88:c1:86:27:59:57:cd:
e8:4a:5d:b1:e7:f9:7f:3c:22:82:08:eb:43:d9:3a:10:72:08:
05:58:3e:85:05:b0:f4:65:6f:10:1a:81:87:49:55:92:b9:e0:
2a:b4:c6:5d:a0:48:1a:27:f1:a8:35:25:54:a0:65:01:91:70:
80:0d:3a:56:51:30:41:f9:1b:66:99:db:6c:5f:be:2d:88:e2:
32:c8:82:c9:ac:12:ce:22:7b:a4:3c:a9:0b:46:1c:4e:74:7a:
14:0b:d5:9f:b6:0b:77:39:72:9e:04:76:57:6f:50:f3:70:5e:
58:3b:ec:ac:9f:cd:98:de:c3:48:05:26:99:ad:73:e7:b9:20:
e2:07:d8:4e:b1:70:1a:16:51:8b:e7:3e:97:ab:88:f5:c7:5c:
26:d4:23:e6:e9:40:b5:60:33:18:5a:8e:30:4e:b5:90:95:ad:
66:2a:8f:39:f7:4b:b5:d6:f9:9e:88:bc:e4:0a:af:4f:70:60:
a8:20:e5:d7:d8:c2:ad:b3:c3:ec:4d:37:f4:20:70:a4:cc:f1:
a8:25:5e:76:8d:1a:02:13:1b:fd:40:23:7b:fd:74:44:c9:25:
2e:63:fd:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:34:01 2025 by rpki-client