Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/yEu7mX2TdvBr2cpAd3Jr4tusMlw.roa
File: yEu7mX2TdvBr2cpAd3Jr4tusMlw.roa (raw, json)
Hash identifier: nSn4UUF2OofVbg7Cr+nBizZPdZs0XCBSTPE9S1rHdNk=
Subject key identifier: C8:4B:BB:99:7D:93:76:F0:6B:D9:CA:40:77:72:6B:E2:DB:AC:32:5C
Certificate issuer: /CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Certificate serial: 033AB598
Authority key identifier: 44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/yEu7mX2TdvBr2cpAd3Jr4tusMlw.roa
Signing time: Fri 25 Mar 2022 12:54:33 +0000
ROA not before: Fri 25 Mar 2022 12:54:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 2.58.64.0/23 maxlen: 23
2.58.66.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54179224 (0x33ab598)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4474cf3e2fa892b5fdd3f30dc8275ee1062e1d06
Validity
Not Before: Mar 25 12:54:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c84bbb997d9376f06bd9ca4077726be2dbac325c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5a:3e:b9:be:3e:86:1a:40:46:09:e7:6b:c2:
8b:3d:33:99:a0:99:a5:d2:38:fd:49:7a:5c:7e:4e:
3c:51:e1:ed:a1:f2:1c:39:f5:9c:65:e6:51:74:fd:
99:c0:58:6e:be:7c:6a:5a:38:2d:81:67:32:d4:c5:
25:2b:c4:f7:28:da:90:4d:3a:d9:cd:5c:17:ae:66:
25:fd:d6:7e:9f:27:58:30:fd:be:15:e0:43:50:25:
f2:62:d9:53:14:fa:40:bd:47:0e:ab:23:59:f0:f3:
ad:43:fa:87:49:69:7f:5e:9b:65:6e:37:48:8d:92:
2f:ae:c6:83:61:24:9e:3a:ee:01:df:28:df:c6:44:
ea:c3:89:d0:73:12:52:5d:33:26:be:8e:89:b7:55:
6c:2e:b8:18:86:62:ff:af:1e:72:a8:39:d5:fa:aa:
e8:12:2f:7d:b6:41:fd:db:e2:de:27:a2:5b:a8:51:
5e:a9:27:fd:97:6e:72:08:8c:bc:4d:7c:7f:1b:69:
de:0f:3f:df:73:3c:81:80:69:28:f1:8c:1a:c5:43:
b4:72:7a:e1:2a:25:6c:47:c9:4a:26:a2:fb:2e:50:
77:a0:f0:d3:49:0e:d9:00:66:15:40:16:a3:00:27:
06:2d:b9:7d:48:c1:29:ff:da:76:d0:de:c0:f9:0a:
b8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:4B:BB:99:7D:93:76:F0:6B:D9:CA:40:77:72:6B:E2:DB:AC:32:5C
X509v3 Authority Key Identifier:
keyid:44:74:CF:3E:2F:A8:92:B5:FD:D3:F3:0D:C8:27:5E:E1:06:2E:1D:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RHTPPi-okrX90_MNyCde4QYuHQY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/yEu7mX2TdvBr2cpAd3Jr4tusMlw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/e20ba1-6ae8-4b43-a709-7545c04e1578/1/RHTPPi-okrX90_MNyCde4QYuHQY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.64.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:4d:2c:8f:f9:e5:cf:9b:4c:bb:fa:80:f7:69:56:86:15:9c:
65:9b:16:9a:33:25:e6:0d:5d:26:52:78:1c:2e:9d:78:b3:d4:
7f:62:28:8e:f5:ad:61:52:af:fd:35:e4:b1:5b:6c:68:a1:ee:
6f:4f:70:07:8d:77:bd:39:c8:7d:73:4f:37:da:e7:e6:c9:47:
96:83:bd:27:11:5b:7a:50:7d:a9:b7:3f:98:f2:9b:c0:44:b2:
2d:f5:de:13:a5:87:9c:05:6a:2b:17:c9:89:a0:71:15:e6:c5:
5a:61:91:c9:68:a4:24:06:7b:cd:eb:f4:1c:9d:fb:9a:a4:63:
4b:2b:49:32:9f:d8:71:1b:f9:68:79:e8:0c:a1:3d:13:6e:2b:
18:89:f8:51:3f:82:96:59:e9:cc:21:f7:ce:50:aa:23:54:ac:
1c:c6:fd:dc:76:d0:3c:7f:7a:af:46:0e:05:00:d1:0a:7d:81:
26:23:3e:04:5c:45:3b:9e:35:24:4b:15:db:82:37:f8:05:72:
e9:db:47:03:34:fa:03:86:ac:9f:ce:0d:70:9f:37:40:a2:3c:
a7:5c:6f:3c:82:9f:86:12:a5:fb:af:99:fc:17:a9:7f:e1:75:
3f:ae:fa:a5:15:e8:19:4c:92:3f:7b:f5:6d:8e:a4:0d:19:b8:
54:3e:20:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 11:12:12 2025 by rpki-client