Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/Et4ByCB9u3pe694U3bex1ONTgaE.roa
File: Et4ByCB9u3pe694U3bex1ONTgaE.roa (raw, json)
Hash identifier: gAuINp1RqIsSdEg11fG1WGhkTfC5Yt5GwZyTLilVqDc=
Subject key identifier: 12:DE:01:C8:20:7D:BB:7A:5E:EB:DE:14:DD:B7:B1:D4:E3:53:81:A1
Certificate issuer: /CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Certificate serial: 0324324D
Authority key identifier: 44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/Et4ByCB9u3pe694U3bex1ONTgaE.roa
Signing time: Wed 16 Mar 2022 13:05:35 +0000
ROA not before: Wed 16 Mar 2022 13:05:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 2.58.64.0/23 maxlen: 23
2.58.66.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52703821 (0x324324d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Validity
Not Before: Mar 16 13:05:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12de01c8207dbb7a5eebde14ddb7b1d4e35381a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:c5:46:fe:ab:b7:1a:6b:65:1b:1b:49:74:cd:
7c:63:fd:2a:db:c5:b8:00:35:48:f6:d9:6d:f5:66:
0c:ec:98:fb:95:75:6f:57:20:28:12:ca:5e:e3:8b:
d1:1e:0d:ee:49:a0:aa:eb:9f:02:d6:1b:e4:0a:0a:
0d:39:d7:1a:1e:a0:3c:7f:62:53:9d:c0:61:f7:dd:
38:97:fb:d2:67:50:3a:a9:f3:c9:63:20:66:38:a7:
11:bb:8d:57:0b:1f:4c:5d:7d:9d:02:76:58:a2:a1:
07:c0:53:cb:39:fa:0a:d3:f5:74:0c:fc:8b:24:94:
40:13:a1:43:47:2c:56:6e:62:d2:b8:95:95:2c:93:
80:51:77:fc:4e:09:ce:3a:c2:ec:b0:1a:0d:d6:1e:
13:3e:d2:ea:04:b6:0e:46:98:8d:ba:72:67:39:51:
19:72:41:40:af:98:59:d8:ef:b1:41:c4:d2:e0:7e:
d4:43:3f:77:a7:0f:cf:c5:4f:5b:f0:a2:cd:32:95:
69:6a:e9:6a:3b:05:fb:7e:1e:6d:a1:42:9e:c0:92:
52:0e:d5:61:3e:03:3b:9b:ec:7e:ad:fe:be:1b:d8:
5f:ea:2f:9c:87:26:97:7b:7e:e1:ee:ed:92:01:3e:
15:dc:b1:43:28:b3:26:cd:cf:39:c3:4c:e8:92:82:
47:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:DE:01:C8:20:7D:BB:7A:5E:EB:DE:14:DD:B7:B1:D4:E3:53:81:A1
X509v3 Authority Key Identifier:
keyid:44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/Et4ByCB9u3pe694U3bex1ONTgaE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/RHTPPi-okrX90_MNyCde4QYuHQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.64.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:00:e3:9c:fe:68:3f:ca:45:95:3b:ec:df:65:21:38:8c:ea:
ab:4d:2e:53:c0:aa:b1:3d:87:81:84:2e:0e:64:6f:db:2c:71:
3e:cf:59:a0:6b:ff:3c:e9:50:57:9f:6d:9d:13:5f:e9:19:d5:
6a:85:cc:68:f1:ee:f5:cd:b9:c3:46:37:72:f8:43:b0:c3:94:
fb:ee:b5:e1:51:32:5b:20:04:0b:06:d2:1b:7a:d8:12:d7:02:
8a:2d:31:7b:7f:29:b9:84:6a:e1:01:f6:0a:2e:d5:68:16:28:
d1:1a:26:34:1d:88:c8:8c:a3:cd:78:ac:f6:15:14:b3:3c:04:
fc:11:e4:c6:80:7d:c5:88:27:c5:e1:bd:ac:89:aa:27:07:95:
d0:05:38:0b:7c:99:db:8a:4e:f8:54:a4:f2:35:f5:23:9c:32:
58:bf:13:e1:b0:e6:e2:3c:aa:56:bc:b4:0e:aa:7e:30:2b:6a:
23:99:e9:38:b8:35:d9:11:72:04:e8:4d:b1:77:42:30:8d:c0:
77:c5:ba:ba:0d:4e:12:32:4c:54:f4:e8:f9:e9:32:9a:84:05:
74:96:d6:d4:df:54:75:6f:da:df:77:1b:e1:99:57:1e:7e:d6:
2a:32:ab:f2:e9:92:5a:1d:24:9d:45:f9:a1:ff:f0:65:98:93:
c5:6b:69:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:21:21 2025 by rpki-client