Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/qJ7eOyX5AXTqhnwVaG30m2B9Zds.roa
File: qJ7eOyX5AXTqhnwVaG30m2B9Zds.roa (raw, json)
Hash identifier: BkoRu67NojORwsdqvZbmiXnzrVDucNuZkBC3jk48U90=
Subject key identifier: A8:9E:DE:3B:25:F9:01:74:EA:86:7C:15:68:6D:F4:9B:60:7D:65:DB
Certificate issuer: /CN=b12caece23c6adf6917039293e25baaa906ce556
Certificate serial: 16D166FD
Authority key identifier: B1:2C:AE:CE:23:C6:AD:F6:91:70:39:29:3E:25:BA:AA:90:6C:E5:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sSyuziPGrfaRcDkpPiW6qpBs5VY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/qJ7eOyX5AXTqhnwVaG30m2B9Zds.roa
Signing time: Sat 01 Jan 2022 01:52:55 +0000
ROA not before: Sat 01 Jan 2022 01:52:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201583
IP address blocks: 84.40.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 382822141 (0x16d166fd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b12caece23c6adf6917039293e25baaa906ce556
Validity
Not Before: Jan 1 01:52:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a89ede3b25f90174ea867c15686df49b607d65db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:dc:12:57:6a:a0:d0:eb:b3:9a:0c:99:00:0e:
f7:3e:0a:1f:c6:d1:3c:09:25:2d:d9:b2:d6:2c:de:
6e:56:2a:4b:b1:47:42:02:99:10:11:3a:56:5f:83:
56:82:e0:b2:fa:4b:d8:47:83:ed:41:ef:26:12:6d:
f0:76:51:27:20:7f:aa:ed:44:30:08:fa:a9:33:e9:
e9:b6:bb:a1:64:0d:6e:ec:dc:38:91:7a:d0:ea:90:
c2:82:6f:fe:46:92:b8:3b:78:51:42:eb:37:d2:24:
ce:db:a7:08:0f:b2:d0:f9:ba:32:8f:02:2b:3a:0d:
6a:74:30:f6:92:33:8d:56:66:6f:4f:bb:0f:51:1d:
3b:b8:cf:34:13:87:e4:7c:a9:dc:4f:b2:61:c3:fa:
4f:2f:f0:14:85:a1:db:48:e6:36:a3:6f:22:2a:f3:
c8:07:f4:63:56:13:9a:3c:36:0a:46:eb:e8:35:cd:
b1:7c:45:67:19:fa:a0:86:b1:46:c4:c2:fc:44:34:
2a:9e:59:ac:34:5c:02:36:74:4a:c5:a8:79:27:1d:
f3:a2:1b:2d:6e:83:d0:a8:4b:55:ad:29:51:4d:fa:
f3:01:64:f7:93:41:8e:f3:4d:c5:88:05:f1:85:5a:
2e:1d:72:a4:f0:c5:e7:20:71:2f:c3:d3:ac:f1:cf:
1e:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:9E:DE:3B:25:F9:01:74:EA:86:7C:15:68:6D:F4:9B:60:7D:65:DB
X509v3 Authority Key Identifier:
keyid:B1:2C:AE:CE:23:C6:AD:F6:91:70:39:29:3E:25:BA:AA:90:6C:E5:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sSyuziPGrfaRcDkpPiW6qpBs5VY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/qJ7eOyX5AXTqhnwVaG30m2B9Zds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/28cd48-6a7c-4d05-b4b9-87aa5a2dd122/1/sSyuziPGrfaRcDkpPiW6qpBs5VY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.40.114.0/24
Signature Algorithm: sha256WithRSAEncryption
77:8f:2d:da:d5:95:c2:e7:01:9f:b7:61:46:7f:b1:01:c4:d5:
d0:53:10:dd:e1:6f:cf:a2:f0:5d:43:8b:85:ee:59:cb:47:68:
7c:aa:49:54:40:d4:70:28:da:64:c4:3c:78:f1:f1:00:b0:3b:
83:9c:92:e9:6b:94:ce:a4:f5:6e:c9:ab:79:7d:f3:fe:27:9c:
33:c7:32:49:d6:b8:38:88:3d:59:0c:c8:41:45:fa:03:c8:7f:
87:e7:56:c5:11:af:50:f8:a6:42:f2:96:4f:4c:9e:e6:ac:82:
46:56:1f:8a:6a:94:75:af:5f:59:6b:1f:84:ca:28:3a:ce:1e:
c8:ae:c0:31:35:2a:cc:25:fd:5d:c1:19:5a:61:93:ad:36:2e:
77:da:d4:a3:45:5c:d1:21:47:6d:6b:f6:d9:17:25:3f:ad:a7:
e8:de:29:89:b2:b3:77:09:29:ec:41:70:76:83:f3:d6:8f:b7:
6f:72:57:dc:c6:40:ce:b7:c8:b8:f5:82:85:06:d3:ef:0c:20:
ac:3d:c6:bf:50:61:06:2f:3a:9a:61:e8:8e:ed:b8:c7:b6:11:
d2:2c:0b:a4:8b:53:01:c2:08:b0:95:41:8f:5e:f8:c6:7f:8e:
8a:c7:a0:f4:0e:79:a6:12:aa:bb:02:fa:78:e8:f6:e9:87:ae:
c5:dc:ed:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:43:00 2025 by rpki-client