Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/9562bf-92bc-46eb-9d16-2badce466853/1/wtCDEHKhCugjL0LeG_o5riZbiNA.roa
File: wtCDEHKhCugjL0LeG_o5riZbiNA.roa (raw, json)
Hash identifier: KklznCnoP6Zxl6N07es7Kw5I3DbSXsa74/hB9O4dGbw=
Subject key identifier: C2:D0:83:10:72:A1:0A:E8:23:2F:42:DE:1B:FA:39:AE:26:5B:88:D0
Certificate issuer: /CN=40dde71b41bffb1b516e07b0c61391bdf4d3bf11
Certificate serial: 0194274879603AF1D15F9DB3A5F33B2DFA5C
Authority key identifier: 40:DD:E7:1B:41:BF:FB:1B:51:6E:07:B0:C6:13:91:BD:F4:D3:BF:11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QN3nG0G_-xtRbgewxhORvfTTvxE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/9562bf-92bc-46eb-9d16-2badce466853/1/wtCDEHKhCugjL0LeG_o5riZbiNA.roa
Signing time: Thu 02 Jan 2025 13:50:48 +0000
ROA not before: Thu 02 Jan 2025 13:50:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 208685
IP address blocks: 92.60.72.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:79:60:3a:f1:d1:5f:9d:b3:a5:f3:3b:2d:fa:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40dde71b41bffb1b516e07b0c61391bdf4d3bf11
Validity
Not Before: Jan 2 13:50:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c2d0831072a10ae8232f42de1bfa39ae265b88d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:03:0b:16:56:1a:f8:77:9c:5d:6e:e5:d6:23:
b3:bc:9d:a2:9a:fe:82:40:34:24:65:92:67:db:12:
c5:97:6a:5e:59:bb:a7:4b:e1:00:32:6f:7e:1a:96:
c7:4f:18:8b:c8:9c:09:b9:1c:45:4c:fe:e7:bd:0c:
2e:07:6a:11:6c:f6:cc:fb:e4:c2:68:83:21:f3:a4:
94:bf:ea:96:be:a3:2e:ba:98:22:5a:c5:ed:51:ff:
ed:f4:f8:be:e9:ec:e7:8f:4a:67:6d:5b:27:2c:23:
a5:9e:3e:e3:1e:41:b1:03:78:79:d0:e8:25:44:d6:
b6:9d:a1:b0:9a:f7:1e:a0:68:34:10:49:e4:87:37:
fd:79:69:51:c3:af:7d:be:93:4c:62:08:3a:33:ab:
3b:c1:70:bb:51:35:91:54:c7:54:b7:fd:40:fb:64:
76:ae:21:24:3a:b7:6e:90:0f:de:92:5d:49:a8:4d:
92:ee:9e:72:d7:d5:83:93:2c:8e:0d:b9:20:f5:ee:
09:3b:8d:29:1d:a5:68:5f:cc:89:14:eb:d9:fa:aa:
35:fe:6f:3f:60:b6:82:d4:b9:1b:84:22:70:84:77:
9a:62:7b:31:31:e4:8f:99:df:22:d3:f6:48:6c:e4:
11:41:89:65:56:83:f7:cd:89:34:7f:b5:23:19:b3:
a0:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:D0:83:10:72:A1:0A:E8:23:2F:42:DE:1B:FA:39:AE:26:5B:88:D0
X509v3 Authority Key Identifier:
keyid:40:DD:E7:1B:41:BF:FB:1B:51:6E:07:B0:C6:13:91:BD:F4:D3:BF:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QN3nG0G_-xtRbgewxhORvfTTvxE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/9562bf-92bc-46eb-9d16-2badce466853/1/wtCDEHKhCugjL0LeG_o5riZbiNA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/9562bf-92bc-46eb-9d16-2badce466853/1/QN3nG0G_-xtRbgewxhORvfTTvxE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.60.72.0/23
Signature Algorithm: sha256WithRSAEncryption
7d:39:d8:6c:f0:72:f9:45:a4:f8:27:ef:cc:ed:3d:65:7a:f5:
30:4d:f4:a6:16:5f:15:dd:68:7f:5b:3b:5b:8e:97:ef:b7:ff:
32:92:46:41:2c:af:e5:84:3f:96:1a:4d:5b:b1:82:0d:df:bb:
4a:7e:f1:61:7c:d6:d0:87:89:ff:dd:a1:13:ef:92:cb:19:7b:
4c:b4:9a:ff:c5:c4:ff:0f:7e:7f:5b:d1:39:0b:95:23:94:f1:
bc:cc:6d:e6:04:a8:1f:a8:38:cb:0f:ca:da:a3:c2:72:02:89:
76:c9:8d:ef:3b:ca:4a:75:bb:21:57:bb:4b:af:38:56:55:91:
5e:1b:5b:08:a9:78:64:17:4a:2d:d6:cd:e2:03:2c:54:ef:01:
8d:23:a7:89:30:c8:82:ed:27:df:c2:7b:20:1e:a2:1f:98:af:
ab:c1:79:00:02:d6:4a:ff:00:46:78:85:f8:d3:9f:dd:a2:a2:
d3:51:92:bc:4f:85:ae:e0:d3:4f:74:2a:ab:52:65:99:46:a3:
ef:85:fd:5f:5c:18:60:91:64:f4:7e:47:7c:fc:9e:88:ec:77:
e6:4c:49:e8:18:fe:9d:a4:56:6f:2c:d7:e1:c4:5f:9e:c3:05:
33:c1:2a:df:07:72:31:7d:3d:63:99:45:13:0a:7d:ce:f2:57:
d7:c8:67:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 16:39:07 2025 by rpki-client