Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/4JgCKS4sGgFT-Px_Q6pyZ2ZT4o8.roa
File: 4JgCKS4sGgFT-Px_Q6pyZ2ZT4o8.roa (raw, json)
Hash identifier: tjzmsb8w0b3/5JjLaGZLwJe+GmM0mnIivBzWvlNdeQY=
Subject key identifier: E0:98:02:29:2E:2C:1A:01:53:F8:FC:7F:43:AA:72:67:66:53:E2:8F
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 42760374
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/4JgCKS4sGgFT-Px_Q6pyZ2ZT4o8.roa
Signing time: Sat 01 Jan 2022 14:03:18 +0000
ROA not before: Sat 01 Jan 2022 14:03:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51452
IP address blocks: 192.71.254.0/23 maxlen: 23
192.71.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1115030388 (0x42760374)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 1 14:03:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e09802292e2c1a0153f8fc7f43aa72676653e28f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:76:fd:93:2d:93:f1:70:f9:0b:eb:12:ef:2f:
38:e8:5c:e1:2e:a6:b4:54:e9:a4:fb:3a:e2:43:08:
58:bf:f0:6b:48:21:b9:bb:cf:48:19:3f:40:91:c5:
9d:c3:24:ba:d6:52:cb:7a:92:fa:9c:dd:3e:cb:99:
a3:4a:c1:7c:47:5b:e2:bd:9c:7c:12:af:24:bf:b3:
e3:c2:92:1c:c5:4e:da:a8:8f:c8:18:37:e8:e7:2a:
f9:cf:6a:99:cc:2c:1c:b9:41:59:66:93:cf:ec:0b:
97:2c:41:92:dc:c9:ed:c9:7c:47:a8:be:c4:d2:ce:
74:f3:00:1f:66:17:f2:06:cd:1b:e3:ad:0f:00:4e:
e5:b0:a3:d9:3a:69:e6:f7:2c:fc:cf:6d:97:59:5c:
d1:7e:af:61:49:f0:8a:59:2a:80:3e:b2:b4:9c:4d:
be:5a:51:0d:0e:9c:0a:3a:96:e8:8c:b8:73:0e:73:
97:6a:a5:00:9f:47:44:30:e6:54:e7:44:13:90:14:
13:d1:b4:00:f2:7e:ac:aa:84:7a:f3:2e:87:08:6d:
3f:09:f6:aa:31:d6:54:4f:8c:d0:45:2d:64:4b:74:
c6:24:3b:cf:48:49:84:3f:63:be:a0:41:e9:f0:07:
ef:84:28:81:f8:be:07:70:62:39:05:fa:6e:89:f9:
d5:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:98:02:29:2E:2C:1A:01:53:F8:FC:7F:43:AA:72:67:66:53:E2:8F
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/4JgCKS4sGgFT-Px_Q6pyZ2ZT4o8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.71.254.0/23
Signature Algorithm: sha256WithRSAEncryption
12:9b:80:73:5f:75:99:1b:e4:d2:df:10:97:0d:df:86:0d:54:
5f:8e:1f:35:d9:59:27:11:4a:25:19:a7:65:be:f5:f3:77:f2:
80:c0:9f:77:55:07:b0:5e:a3:d8:94:3b:13:f7:20:14:c9:63:
79:90:12:07:75:9d:5e:a2:69:3c:9d:e7:bc:ff:74:8c:1d:62:
a1:bd:5f:60:05:4f:6c:8d:22:62:dc:62:27:d5:32:eb:78:fe:
bf:24:38:78:0a:47:de:19:bf:59:c7:da:ab:31:09:54:1f:53:
04:07:0f:d3:e1:64:24:b6:e4:a8:37:9d:c7:e7:b5:e8:6f:97:
40:84:db:cf:a8:7b:0a:29:d4:7b:f4:0d:c6:b2:83:4c:a5:4f:
08:66:d1:9d:55:9f:48:9a:f0:a5:40:e3:24:a4:42:b2:be:02:
23:84:b1:1f:a7:97:77:35:1d:c0:bc:ca:f6:44:a4:31:31:de:
bc:e6:d7:34:22:85:c8:f7:52:e5:d5:1e:45:b1:1c:40:45:1f:
98:55:fe:4b:18:71:54:50:0b:1d:ec:28:07:72:a0:fa:57:67:
94:4d:93:b9:87:ca:c9:9d:1b:21:25:11:27:54:05:44:c4:44:
5a:4d:b3:47:c4:b3:2c:15:5b:59:5d:3f:02:b3:c1:38:bb:f5:
8d:9d:4a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:02:02 2025 by rpki-client