Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/0016VjgeEpF1LboOS_dUiIm0lsk.roa
File: 0016VjgeEpF1LboOS_dUiIm0lsk.roa (raw, json)
Hash identifier: 5GbQrM7mFiq5Ih+o939KXh7ADnzctAmZsrPbyCOWVYE=
Subject key identifier: D3:4D:7A:56:38:1E:12:91:75:2D:BA:0E:4B:F7:54:88:89:B4:96:C9
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 01856CCB02CD581BE6AB3980F2CE6F2A9680
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/0016VjgeEpF1LboOS_dUiIm0lsk.roa
Signing time: Sun 01 Jan 2023 10:05:21 +0000
ROA not before: Sun 01 Jan 2023 10:05:21 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 200559
IP address blocks: 192.71.41.0/24 maxlen: 24
192.71.40.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:cb:02:cd:58:1b:e6:ab:39:80:f2:ce:6f:2a:96:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 10:05:21 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d34d7a56381e1291752dba0e4bf7548889b496c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:57:09:55:46:b5:e2:96:1c:97:32:85:b5:76:
2a:9e:dc:88:50:14:73:79:78:e8:31:63:a4:a4:42:
c8:05:fd:69:ad:d7:da:08:ab:08:46:44:5c:5b:7e:
38:62:66:ea:ba:77:61:ab:95:95:2c:d6:d7:67:b4:
d5:c0:cb:b3:39:8d:0f:64:ec:e0:4d:83:7f:d0:4b:
ec:05:b3:89:11:28:67:72:96:91:34:ba:e3:a1:44:
96:79:af:c9:cb:84:b8:5c:70:5a:0f:00:f7:a7:5b:
a3:0b:aa:3c:54:21:d3:8c:97:07:29:7b:c1:80:fb:
25:6f:c2:82:b2:bc:84:ae:f2:ca:d6:cc:20:52:df:
5b:08:08:5d:73:84:83:be:fb:79:73:a7:1d:52:78:
45:37:83:25:26:7b:fe:7b:44:2d:d9:ec:ce:6d:e6:
43:81:21:58:cb:a0:85:22:43:e9:9e:90:4e:48:9d:
21:d3:cc:a6:ca:67:f5:80:cd:26:f1:a6:f5:9d:67:
55:4c:3f:10:e6:2b:bf:b7:20:f9:88:74:7d:ba:52:
b6:02:e2:7e:a1:8d:5a:a1:07:0c:5c:6e:24:00:24:
05:c9:d6:cd:24:3b:f6:c2:96:ef:2b:c2:75:82:92:
2e:8c:e6:4d:71:ea:eb:21:31:26:0b:b2:e1:07:6f:
61:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:4D:7A:56:38:1E:12:91:75:2D:BA:0E:4B:F7:54:88:89:B4:96:C9
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/0016VjgeEpF1LboOS_dUiIm0lsk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.40.0/23
Signature Algorithm: sha256WithRSAEncryption
0b:b8:32:0a:5e:f6:5b:ac:8c:dd:05:fd:eb:3f:29:e4:cb:03:
bb:3f:22:56:62:66:2c:af:cf:95:7b:36:cf:50:79:7e:e7:a8:
bd:4f:c5:33:51:7d:fd:b8:13:d6:eb:7e:a9:bf:2e:70:d6:b5:
f8:52:74:53:a0:cb:62:23:19:c9:bb:67:01:21:3a:20:c4:cf:
ca:1a:90:48:af:c2:e6:12:49:57:ff:3a:f7:19:bb:7e:10:dd:
77:e0:ae:ac:95:86:1a:81:f0:c1:2c:24:2f:8d:b0:4d:2e:f9:
ff:b7:f9:33:fe:6c:98:ed:5d:f1:12:2f:36:16:78:4d:f8:ad:
d2:cb:e7:e9:44:fa:2e:bd:3d:37:e8:74:de:33:f1:18:a2:25:
c2:31:6e:f9:f0:6c:33:d1:0b:bc:df:64:0d:00:9b:2b:89:b0:
84:f9:ac:95:e3:53:03:3f:4c:dd:82:16:d6:16:9c:ff:79:99:
0d:bb:28:13:e1:86:5a:d6:50:fe:54:8c:c4:1a:fe:57:cf:7e:
a4:5c:6e:90:bf:de:f3:56:08:c8:34:a4:1b:4f:2b:16:56:79:
de:79:3f:9f:7e:62:a3:ea:83:11:8b:26:cb:a6:fd:b0:55:8c:
fa:f9:99:43:e7:4e:a3:bc:2d:4e:56:3d:1f:d8:7e:61:ac:17:
b2:4f:18:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:09 2025 by rpki-client