Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/STMeHdcRelLXHuz0XA2ZrlxkOfo.roa
File: STMeHdcRelLXHuz0XA2ZrlxkOfo.roa (raw, json)
Hash identifier: xctjghfROSEtHLzk7gqelYxtcJeTH+HaafmMd/Bhkno=
Subject key identifier: 49:33:1E:1D:D7:11:7A:52:D7:1E:EC:F4:5C:0D:99:AE:5C:64:39:FA
Certificate issuer: /CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Certificate serial: 019421B24660D5F5D3E47D0C5CBC548AA0E0
Authority key identifier: 05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/STMeHdcRelLXHuz0XA2ZrlxkOfo.roa
Signing time: Wed 01 Jan 2025 11:48:39 +0000
ROA not before: Wed 01 Jan 2025 11:48:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13628
IP address blocks: 217.79.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:46:60:d5:f5:d3:e4:7d:0c:5c:bc:54:8a:a0:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f3e160172ecc75c8cab1bae271be3ebf407a80
Validity
Not Before: Jan 1 11:48:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=49331e1dd7117a52d71eecf45c0d99ae5c6439fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6d:b4:f5:a3:70:21:3a:8a:f0:c7:89:2e:75:
c2:67:17:8d:bb:09:d1:b6:6b:41:83:80:40:e9:41:
75:6f:2c:fa:3e:8c:0c:40:b1:7c:62:6e:de:f8:10:
30:22:6b:3d:a0:50:24:08:01:42:79:65:b8:56:53:
02:99:d4:d0:4a:6b:5c:0e:74:2a:48:60:c8:ab:f6:
9d:c6:97:69:5a:75:d3:71:ec:a1:93:74:de:27:68:
2a:f7:d2:ab:69:58:62:97:43:3a:bc:9c:6e:8c:3a:
ae:06:2d:16:f8:35:5c:d1:cc:47:40:23:d3:33:2f:
e6:5b:2b:eb:6d:e7:bf:a2:d5:3b:c0:df:3f:67:12:
67:4e:e4:be:d4:4a:2e:3d:a9:ad:f5:33:36:3b:cc:
64:fd:8e:35:9a:0e:ac:19:d6:0d:8d:91:90:0a:4e:
99:b3:65:ea:46:1a:5c:40:62:90:f1:15:af:dd:14:
4d:0c:d0:42:39:52:b2:2e:e6:b9:ad:ac:f7:2d:72:
b6:0d:3c:c9:f0:2c:ab:e7:0c:01:02:bd:a5:09:2b:
9f:73:b7:15:ff:d4:e9:fd:97:10:5d:b3:ab:aa:72:
eb:02:01:d4:f1:7d:a0:30:92:bb:2c:42:a6:10:4d:
3f:26:21:01:8e:96:17:c6:a9:91:32:29:d2:f9:0e:
ab:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:33:1E:1D:D7:11:7A:52:D7:1E:EC:F4:5C:0D:99:AE:5C:64:39:FA
X509v3 Authority Key Identifier:
keyid:05:F3:E1:60:17:2E:CC:75:C8:CA:B1:BA:E2:71:BE:3E:BF:40:7A:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfPhYBcuzHXIyrG64nG-Pr9AeoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/STMeHdcRelLXHuz0XA2ZrlxkOfo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/aa8b46-9645-4620-8479-5d560989cf7b/1/BfPhYBcuzHXIyrG64nG-Pr9AeoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.79.175.0/24
Signature Algorithm: sha256WithRSAEncryption
45:6c:83:7e:09:d0:35:6a:9b:16:e9:6a:b4:76:ad:c2:35:90:
c8:d0:46:6e:50:87:bc:40:7f:ce:55:f3:a0:55:dd:fb:a5:53:
46:15:0a:3e:40:ae:50:a7:4e:d4:be:2d:37:0f:e6:25:bb:d1:
ab:e5:94:f2:79:ff:d2:b1:81:ea:dc:d7:0b:ca:98:38:5f:21:
5f:c1:3f:13:1a:a9:eb:cd:c5:85:30:d5:5e:e7:4b:34:43:8b:
54:f9:28:81:38:9b:a1:90:3a:39:a3:91:8a:97:80:47:c3:0c:
6c:ae:34:6c:69:e2:4f:40:ab:50:5a:81:96:f9:ec:5d:45:f7:
bd:9f:2a:d8:49:c8:8c:13:29:0f:97:de:8f:d3:f9:bb:21:63:
55:ff:1e:08:c2:6a:ac:77:c5:1b:6f:c0:f9:d3:92:1d:96:86:
05:6f:05:28:99:da:e3:a9:79:69:62:03:fb:ec:24:c9:f6:0a:
aa:4a:a7:5a:8d:4d:40:56:a6:7c:03:b1:67:a9:f0:e5:7a:ba:
0e:d3:ee:d0:ce:18:0c:d7:72:de:52:97:c4:db:f0:77:c7:fc:
33:f5:24:79:c4:a7:a9:9f:a3:7c:57:f1:b2:fd:70:51:19:a6:
87:5b:70:07:cb:f1:f2:26:5b:30:99:dc:2c:37:d5:8c:4a:78:
5e:44:06:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 05:29:51 2025 by rpki-client