Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/fa9411-134e-4dea-8a19-b03415cf0daf/1/sP-kcAbPU8Fx3FDnNp9k6ADai9w.roa
File: sP-kcAbPU8Fx3FDnNp9k6ADai9w.roa (raw, json)
Hash identifier: V8N5wRJLnnDeYE3U6J340bWdWPyXCrvJtlkHEpjnQ74=
Subject key identifier: B0:FF:A4:70:06:CF:53:C1:71:DC:50:E7:36:9F:64:E8:00:DA:8B:DC
Certificate issuer: /CN=9eab815ad03a0ee7df1689744fc43e69c9916f23
Certificate serial: 01824B6ABF2AA280C7CEFE74796EAC3956C3
Authority key identifier: 9E:AB:81:5A:D0:3A:0E:E7:DF:16:89:74:4F:C4:3E:69:C9:91:6F:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nquBWtA6DuffFol0T8Q-acmRbyM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/fa9411-134e-4dea-8a19-b03415cf0daf/1/sP-kcAbPU8Fx3FDnNp9k6ADai9w.roa
Signing time: Fri 29 Jul 2022 19:24:23 +0000
ROA not before: Fri 29 Jul 2022 19:24:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399587
IP address blocks: 188.119.68.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:4b:6a:bf:2a:a2:80:c7:ce:fe:74:79:6e:ac:39:56:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eab815ad03a0ee7df1689744fc43e69c9916f23
Validity
Not Before: Jul 29 19:24:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0ffa47006cf53c171dc50e7369f64e800da8bdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c8:cf:ab:84:ea:25:cf:ce:fe:8b:47:a1:3f:
07:0b:14:1e:c1:6c:3f:0d:b4:29:d8:49:d8:7d:f1:
4a:ee:d0:05:44:ea:72:bb:d0:49:07:b6:35:08:d6:
3e:ba:3d:de:6d:5e:57:93:13:5d:e5:25:63:6d:9e:
72:04:15:fe:b7:b1:ed:29:f7:37:d4:19:c7:1a:2f:
c9:e9:b0:6b:6b:fb:35:9f:61:c1:8b:a6:a9:9d:0d:
e0:fb:24:28:75:1d:e7:bd:4a:c7:2b:8f:5e:d0:d4:
48:9d:0f:df:34:42:6b:91:fa:e9:0a:fa:39:4c:b2:
48:8b:07:cd:8f:bb:34:82:bc:ee:e4:39:47:f2:00:
63:41:c7:61:48:3f:4b:05:d6:aa:83:57:bd:f4:ab:
41:f2:8b:e9:11:c7:cd:5c:6f:cd:43:eb:19:85:bb:
8b:be:13:4d:21:cb:ef:6c:b7:cf:2f:9f:98:96:3d:
85:2b:20:bf:41:9c:b9:05:ad:e0:91:70:f0:23:52:
72:27:9e:d6:b7:c8:40:2d:d9:79:cc:e9:66:8e:03:
e7:c6:8b:58:67:97:ee:45:cc:33:e4:30:78:24:09:
0a:1c:93:02:26:3c:7d:de:5c:b8:ef:c0:d7:d3:89:
21:2d:0e:a2:c7:04:65:f2:f2:d2:c5:b1:0d:0a:e5:
96:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:FF:A4:70:06:CF:53:C1:71:DC:50:E7:36:9F:64:E8:00:DA:8B:DC
X509v3 Authority Key Identifier:
keyid:9E:AB:81:5A:D0:3A:0E:E7:DF:16:89:74:4F:C4:3E:69:C9:91:6F:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nquBWtA6DuffFol0T8Q-acmRbyM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/fa9411-134e-4dea-8a19-b03415cf0daf/1/sP-kcAbPU8Fx3FDnNp9k6ADai9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/fa9411-134e-4dea-8a19-b03415cf0daf/1/nquBWtA6DuffFol0T8Q-acmRbyM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
188.119.68.0/22
Signature Algorithm: sha256WithRSAEncryption
62:5b:7b:84:8a:d6:cf:1c:8c:3b:38:17:00:84:bb:f8:3d:f6:
f1:89:29:89:7e:cd:d0:19:56:82:86:32:2c:3c:21:37:d7:01:
12:e2:27:46:dd:f1:cf:17:66:60:0f:4d:14:54:67:58:eb:05:
f5:9b:52:1f:63:13:0e:24:8f:ff:d9:9c:f6:33:2e:5b:21:7f:
6f:d0:cb:bd:dc:2e:5f:e1:85:48:24:ee:88:8a:3c:52:b5:cd:
e8:9d:4f:93:90:bf:5d:47:f0:5d:aa:7e:ec:12:36:be:0a:d5:
df:7e:6f:0b:fc:58:08:8c:56:92:d5:fb:42:71:39:bc:19:bb:
ce:90:2c:59:01:be:34:e7:1e:71:52:18:1b:7f:8a:60:e3:6a:
d0:46:e2:7c:4b:05:78:f6:47:ef:02:5f:47:97:12:60:d6:9b:
77:6b:9e:ee:e0:f6:62:54:19:60:cf:c8:e9:80:b7:4c:1c:93:
2f:0d:17:2a:27:41:87:12:8f:4e:7f:97:83:21:54:62:f0:e8:
e8:5a:c6:42:54:9d:2d:3d:54:48:d1:43:7b:38:f5:f8:60:7e:
1a:ca:02:64:ee:d1:97:9e:b6:16:a4:36:8d:66:f8:2d:a3:dc:
73:d2:48:19:85:2f:af:fc:80:5d:01:79:d5:66:60:57:e9:44:
3d:1a:0e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:14:11 2025 by rpki-client