Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/fbf160-63c8-4e04-9100-e6343c34a0be/1/ErpElvmtMzqidVNQobJU3Scls8o.roa
File: ErpElvmtMzqidVNQobJU3Scls8o.roa (raw, json)
Hash identifier: O1NKcAx6uZYnLt+59aC9im+0AebJRPGqOb690AALHYI=
Subject key identifier: 12:BA:44:96:F9:AD:33:3A:A2:75:53:50:A1:B2:54:DD:27:25:B3:CA
Certificate issuer: /CN=5b78c511a62c2e5b94f0693df6af947e5de210c0
Certificate serial: 01856D93E26C0CB1FEE76DA8E03B561FBA08
Authority key identifier: 5B:78:C5:11:A6:2C:2E:5B:94:F0:69:3D:F6:AF:94:7E:5D:E2:10:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W3jFEaYsLluU8Gk99q-Ufl3iEMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/fbf160-63c8-4e04-9100-e6343c34a0be/1/ErpElvmtMzqidVNQobJU3Scls8o.roa
Signing time: Sun 01 Jan 2023 13:44:46 +0000
ROA not before: Sun 01 Jan 2023 13:44:46 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 212773
IP address blocks: 185.160.156.0/22 maxlen: 22
2a07:be80::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:93:e2:6c:0c:b1:fe:e7:6d:a8:e0:3b:56:1f:ba:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b78c511a62c2e5b94f0693df6af947e5de210c0
Validity
Not Before: Jan 1 13:44:46 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=12ba4496f9ad333aa2755350a1b254dd2725b3ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:23:02:a0:a9:d0:a1:df:92:e8:1e:57:51:88:
97:9d:63:3e:27:93:3e:51:c9:fd:2a:b1:d2:d2:63:
b4:d7:8a:9c:de:04:94:3e:5d:19:2b:9d:30:12:aa:
c0:df:bd:0e:46:2b:5e:7e:1a:c3:f4:74:2b:5e:c7:
24:b3:a4:a1:52:06:8b:51:c2:4d:52:36:d4:61:e2:
29:77:3a:ab:8a:0e:ab:31:7d:8b:ec:4e:75:db:02:
80:75:a2:85:41:5a:fa:39:38:5b:16:88:f8:16:fe:
44:48:45:71:d3:75:8a:5f:a2:c3:cc:11:9e:86:56:
2f:fd:32:15:0e:4b:11:c2:4b:77:18:70:86:69:ed:
96:dc:08:aa:e9:d2:6b:42:22:f3:f2:57:d0:c0:e8:
b6:d5:78:4d:be:82:26:09:a9:f6:75:b8:86:15:21:
1e:8e:84:66:b3:cd:10:56:ab:a2:e6:87:97:81:a1:
65:5e:ee:bf:a7:94:1d:94:42:d0:36:1d:2f:63:95:
53:3d:55:9c:0d:d2:94:c4:92:06:0e:ff:63:fc:b5:
b2:d1:90:df:7b:56:36:55:97:b2:f0:19:4c:34:9d:
be:a7:aa:09:1d:37:08:1e:09:17:bd:03:47:7d:98:
05:06:d2:19:07:ab:70:bb:06:14:bf:64:36:25:29:
5b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:BA:44:96:F9:AD:33:3A:A2:75:53:50:A1:B2:54:DD:27:25:B3:CA
X509v3 Authority Key Identifier:
keyid:5B:78:C5:11:A6:2C:2E:5B:94:F0:69:3D:F6:AF:94:7E:5D:E2:10:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W3jFEaYsLluU8Gk99q-Ufl3iEMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/fbf160-63c8-4e04-9100-e6343c34a0be/1/ErpElvmtMzqidVNQobJU3Scls8o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/fbf160-63c8-4e04-9100-e6343c34a0be/1/W3jFEaYsLluU8Gk99q-Ufl3iEMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.160.156.0/22
IPv6:
2a07:be80::/29
Signature Algorithm: sha256WithRSAEncryption
06:f7:77:d0:96:82:5a:0e:70:cb:5c:02:d3:5a:81:91:f7:85:
ef:82:19:13:d5:04:47:ba:4e:f7:34:a7:1d:c5:6a:0e:f7:41:
b5:00:12:61:30:95:d0:2f:21:04:be:46:7f:ee:bc:e6:8d:c7:
d9:01:72:4f:53:27:e8:ae:5f:11:27:69:7c:27:e6:d9:8e:1d:
62:15:8e:2a:2a:89:2f:2a:e2:d7:21:c2:5a:20:47:3b:86:bf:
18:60:30:9a:2e:b5:7a:01:a0:a6:b9:c5:87:a9:cb:69:67:33:
2f:b0:f7:16:d9:97:ee:e3:79:51:56:07:13:95:e6:64:5a:2e:
39:03:f5:2c:b7:7d:87:dc:9b:30:ac:33:64:ba:80:50:16:c6:
d4:8d:46:16:ac:e4:d3:bf:1a:61:20:01:f8:96:80:d2:18:63:
34:97:53:d0:34:d3:0a:63:13:b1:c7:98:94:3d:f7:55:b3:97:
2f:fa:55:a3:65:7c:c7:52:01:2d:f5:d3:3e:8e:6c:ae:7b:74:
25:87:46:a1:20:0e:f4:c2:48:fe:c0:54:b7:3e:58:44:6f:5a:
e8:4a:e3:07:5b:53:6e:43:10:ae:34:b0:e3:19:ad:cd:74:0f:
bc:f4:02:dc:bb:51:c7:b5:02:ca:7a:10:12:7b:27:39:51:83:
f0:31:5e:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:00 2025 by rpki-client