Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/04ae87-757a-4074-9236-d47b5c2c6647/1/SiBn0rwyGDDmOoUguA2zyCC0Rx0.roa
File: SiBn0rwyGDDmOoUguA2zyCC0Rx0.roa (raw, json)
Hash identifier: ou86HdvJ2aCXMzRuu7AEUha5iMOPex8PexNoXv9i5ns=
Subject key identifier: 4A:20:67:D2:BC:32:18:30:E6:3A:85:20:B8:0D:B3:C8:20:B4:47:1D
Certificate issuer: /CN=a5cc04bb8ee584f85bfc4d49739844d4b5002dda
Certificate serial: 018572CC9FCAFC8BE6FF9BF47C175CD9A362
Authority key identifier: A5:CC:04:BB:8E:E5:84:F8:5B:FC:4D:49:73:98:44:D4:B5:00:2D:DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pcwEu47lhPhb_E1Jc5hE1LUALdo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/04ae87-757a-4074-9236-d47b5c2c6647/1/SiBn0rwyGDDmOoUguA2zyCC0Rx0.roa
Signing time: Mon 02 Jan 2023 14:04:50 +0000
ROA not before: Mon 02 Jan 2023 14:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 176.126.125.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:72:cc:9f:ca:fc:8b:e6:ff:9b:f4:7c:17:5c:d9:a3:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a5cc04bb8ee584f85bfc4d49739844d4b5002dda
Validity
Not Before: Jan 2 14:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4a2067d2bc321830e63a8520b80db3c820b4471d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ed:73:77:d3:cd:91:17:89:44:7b:b4:cc:22:
13:b2:b8:3b:bb:16:57:25:56:50:79:fc:bc:0e:73:
6d:08:55:ce:5d:77:5a:1b:8a:0f:eb:35:d0:a9:5d:
52:bb:39:90:3b:86:3c:2e:a6:e3:41:58:b8:f5:49:
d8:0c:5e:0d:b1:26:75:36:6f:15:bd:52:de:00:3e:
5f:8c:7e:e8:b4:84:43:ee:b0:fc:77:6a:72:25:d8:
bb:8a:e0:13:ab:80:88:bd:ad:e4:f8:fd:b8:5c:36:
b3:76:78:95:b2:be:b3:a8:6a:eb:ee:9e:b4:d5:51:
8b:37:ef:e7:e7:55:de:b4:d2:0a:31:7c:0b:2c:19:
40:c3:c8:0b:6d:47:2a:47:c3:d8:24:77:17:2b:06:
55:d2:ce:0a:d2:4a:69:cd:be:32:7b:d4:3d:35:e4:
06:73:c2:ac:e5:b1:78:75:b5:4a:cd:0d:33:e4:e6:
2d:53:26:f8:10:94:03:04:19:82:fd:60:d9:3d:fa:
fd:d8:38:f3:b8:d4:89:ee:81:b4:24:dd:f5:11:b7:
c1:a5:96:fd:61:48:f2:46:4a:dd:c9:95:bc:a5:6b:
f6:8d:a8:42:94:65:d9:dc:7e:6c:58:1b:08:2c:06:
eb:ee:b8:cb:2c:3e:6b:40:95:f3:b7:0d:c6:72:a3:
dc:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:20:67:D2:BC:32:18:30:E6:3A:85:20:B8:0D:B3:C8:20:B4:47:1D
X509v3 Authority Key Identifier:
keyid:A5:CC:04:BB:8E:E5:84:F8:5B:FC:4D:49:73:98:44:D4:B5:00:2D:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pcwEu47lhPhb_E1Jc5hE1LUALdo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/04ae87-757a-4074-9236-d47b5c2c6647/1/SiBn0rwyGDDmOoUguA2zyCC0Rx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/04ae87-757a-4074-9236-d47b5c2c6647/1/pcwEu47lhPhb_E1Jc5hE1LUALdo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.126.125.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:61:dd:49:6e:a3:93:83:d1:e7:0c:30:0c:80:fe:32:5c:ac:
7e:af:60:c8:ea:a5:b4:fc:42:72:3a:a1:8c:83:b0:45:b4:70:
d8:8f:0d:2e:be:70:d7:5d:5c:ae:f0:d6:20:53:a1:95:90:0c:
3f:bd:88:54:f0:dc:52:bc:30:a2:fe:37:aa:54:f1:a4:9c:e6:
79:01:79:94:2e:28:51:8f:a4:d3:29:c8:e9:28:9a:9e:2a:4e:
9b:37:9e:83:a0:1b:c0:a9:39:f2:c9:b2:dc:8d:7f:0c:47:43:
68:13:be:de:85:60:11:31:8c:97:97:4d:26:b6:a9:51:90:8c:
59:ca:6a:19:62:96:30:cb:0d:b5:bc:4a:d7:8f:c3:31:7b:a8:
42:fd:d7:d4:44:d7:48:fc:25:bd:6a:71:86:c2:d6:c6:63:c8:
31:40:62:20:b6:f4:77:43:ed:15:cd:12:9d:30:72:6d:b6:4b:
30:6a:a7:78:eb:9e:7f:fe:9e:8f:1d:e0:f3:27:b8:d3:ee:db:
d9:8e:cb:32:7c:71:b5:3b:68:b6:a1:05:05:67:22:2d:ce:b4:
be:62:8d:90:8e:73:5b:f3:16:b1:cf:0d:88:f9:62:db:bd:f9:
7e:60:31:e3:e2:d5:16:02:92:7c:24:b8:d4:86:1f:76:fe:fd:
05:a8:40:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:01:08 2025 by rpki-client