Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/rhoyc--6HcJ4dFZEVLxo7tzR5uo.roa
File: rhoyc--6HcJ4dFZEVLxo7tzR5uo.roa (raw, json)
Hash identifier: 0uBC6O6AAZdzN/hLZ+EYLI8tijz+amQMtAzVDVudmhI=
Subject key identifier: AE:1A:32:73:EF:BA:1D:C2:78:74:56:44:54:BC:68:EE:DC:D1:E6:EA
Certificate issuer: /CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Certificate serial: 019427485352DBA7FFFC5989A45B32504A0E
Authority key identifier: 21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/rhoyc--6HcJ4dFZEVLxo7tzR5uo.roa
Signing time: Thu 02 Jan 2025 13:50:38 +0000
ROA not before: Thu 02 Jan 2025 13:50:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39870
IP address blocks: 192.36.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:53:52:db:a7:ff:fc:59:89:a4:5b:32:50:4a:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2135c7f571eefeb67404ab6c45fd475551adaf1b
Validity
Not Before: Jan 2 13:50:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ae1a3273efba1dc27874564454bc68eedcd1e6ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:73:27:dc:ee:65:73:01:9d:37:f1:8a:c1:8c:
6c:72:84:59:64:f2:94:06:da:63:56:7a:fd:fe:bd:
24:f8:64:58:e6:2e:81:e6:13:b3:65:61:07:60:14:
8b:37:2e:4b:25:cf:42:76:19:26:8e:6f:3b:26:56:
4c:7c:c4:40:04:f1:01:51:71:c6:98:b2:fc:50:20:
0c:5d:b6:2f:06:2b:a4:9e:2e:95:5c:3f:19:4e:d3:
1b:24:2c:cb:4c:3e:fb:00:de:57:40:96:ea:14:0e:
dc:42:67:af:13:70:31:cd:73:ca:78:c6:d7:30:5d:
b3:12:21:8b:1f:24:1a:ec:5e:e1:d8:06:3f:c1:b3:
82:82:c2:d0:db:f6:b0:d8:09:40:f1:ac:5a:d4:94:
24:39:03:49:b3:3c:b3:b2:e0:d3:83:48:4c:3e:4b:
00:78:c6:4b:d5:48:99:30:f4:06:56:2e:e8:4d:cc:
d3:ed:46:6c:8a:a0:c4:16:5b:1a:48:b6:c7:1a:19:
86:b8:1d:49:59:f6:8f:44:73:c5:5b:d3:cb:1b:87:
e9:d0:ed:84:93:07:86:a0:d7:35:03:fa:c1:19:51:
7e:67:81:c3:20:9a:37:1b:f2:a1:2b:42:90:49:e8:
dd:7d:7f:73:37:48:b2:6f:07:ed:39:44:0b:08:ee:
d4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:1A:32:73:EF:BA:1D:C2:78:74:56:44:54:BC:68:EE:DC:D1:E6:EA
X509v3 Authority Key Identifier:
keyid:21:35:C7:F5:71:EE:FE:B6:74:04:AB:6C:45:FD:47:55:51:AD:AF:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/rhoyc--6HcJ4dFZEVLxo7tzR5uo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/680b78-96af-4a85-ac02-943d03321326/1/ITXH9XHu_rZ0BKtsRf1HVVGtrxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.36.134.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:41:d5:b6:18:6a:f2:ee:90:d0:9b:55:d8:ae:48:ba:53:f0:
68:f2:b3:36:4f:d3:c2:8c:1b:0a:f0:4f:ac:bf:e8:61:61:c7:
7b:e6:df:06:91:b7:e1:7f:79:22:26:e1:df:48:9b:1b:33:93:
f2:2a:48:d6:fa:ea:a8:4b:d9:77:d8:2e:16:20:89:e3:f4:4c:
36:94:b6:52:b8:a2:52:23:13:d4:ee:53:89:0b:30:01:00:c8:
ed:08:74:83:e5:89:d8:e8:41:aa:66:9a:45:f6:4d:c0:45:8a:
a8:ce:84:59:6a:c5:02:36:7a:4f:bb:b7:87:72:40:71:3e:8a:
76:f6:a5:0f:1f:b6:50:c1:4c:68:c0:4c:03:6c:fc:7d:18:6d:
16:c1:f0:79:74:38:c6:70:17:de:05:be:46:21:0e:07:87:2d:
92:17:44:a7:8d:d6:27:c1:77:3b:c2:ef:29:df:84:aa:fe:45:
89:e1:6d:e7:59:d9:b2:90:fc:93:7a:12:fc:f4:7c:45:9a:38:
29:3c:99:9c:ce:b7:a9:96:f0:53:d4:92:bf:8b:36:bd:39:6c:
9b:90:c2:6a:a9:cf:be:02:dd:ed:b1:b2:c9:61:92:83:54:6b:
73:f0:05:05:9e:21:2e:87:d0:37:93:86:58:97:2c:5d:8a:49:
21:c8:f5:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:11 2025 by rpki-client