Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/b41ab6-b9f3-4b4a-9b7b-1ed10954bd96/1/n4LYKXkMRjr8_z2Nd_vXMuJBcos.roa
File: n4LYKXkMRjr8_z2Nd_vXMuJBcos.roa (raw, json)
Hash identifier: 27CF/0EP+DDYelHO7LrD/dm+LA5B5++4lZUPqVnIrNc=
Subject key identifier: 9F:82:D8:29:79:0C:46:3A:FC:FF:3D:8D:77:FB:D7:32:E2:41:72:8B
Certificate issuer: /CN=5753c06290a371994d7577318685f5bc4a538d47
Certificate serial: 018A4F9ED7804D36B29FF0B6ABD6CC94E4BB
Authority key identifier: 57:53:C0:62:90:A3:71:99:4D:75:77:31:86:85:F5:BC:4A:53:8D:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V1PAYpCjcZlNdXcxhoX1vEpTjUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/b41ab6-b9f3-4b4a-9b7b-1ed10954bd96/1/n4LYKXkMRjr8_z2Nd_vXMuJBcos.roa
Signing time: Fri 01 Sep 2023 07:22:04 +0000
ROA not before: Fri 01 Sep 2023 07:22:04 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 27882
IP address blocks: 158.172.224.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:4f:9e:d7:80:4d:36:b2:9f:f0:b6:ab:d6:cc:94:e4:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5753c06290a371994d7577318685f5bc4a538d47
Validity
Not Before: Sep 1 07:22:04 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=9f82d829790c463afcff3d8d77fbd732e241728b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f3:2a:f6:94:e3:22:6b:dc:05:cc:9b:21:f5:
d5:ab:9d:b2:78:a2:41:0d:01:e6:6f:28:fe:3e:17:
30:06:ac:f4:df:d6:a6:ce:ae:b6:cf:98:cf:6f:af:
39:c9:32:a7:f6:ac:97:ce:4d:7c:c7:0c:be:31:38:
d3:9c:1b:e7:cd:93:52:c8:62:9b:42:31:1e:c6:b8:
12:f6:4f:90:56:c1:85:f8:12:87:a8:75:e2:37:02:
33:03:d0:25:c9:0b:9d:33:9f:eb:70:60:e0:9e:f5:
fd:ff:62:3b:c2:72:ae:de:7b:db:7d:79:aa:2d:f9:
24:4b:6d:e8:82:9b:40:5e:29:72:75:ad:61:e2:e6:
8c:32:74:16:63:41:c5:9b:30:e3:c8:b6:53:d8:7a:
6b:79:7f:ed:a2:5e:20:71:e4:54:0c:a5:32:94:09:
3f:65:2f:9c:4a:a3:59:de:21:58:81:b4:fb:37:fa:
d5:20:5c:ee:5c:25:56:ac:50:5a:7b:7e:00:37:58:
c5:51:6e:3c:1a:17:7b:6a:e6:3c:18:20:ce:17:b8:
3a:90:c1:b0:0c:3b:67:e3:65:69:09:69:a5:6b:5e:
c6:bf:84:22:ba:21:d7:79:95:58:18:5e:57:ab:09:
7c:84:bf:47:b7:fd:c5:97:be:1c:64:cd:74:51:23:
41:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:82:D8:29:79:0C:46:3A:FC:FF:3D:8D:77:FB:D7:32:E2:41:72:8B
X509v3 Authority Key Identifier:
keyid:57:53:C0:62:90:A3:71:99:4D:75:77:31:86:85:F5:BC:4A:53:8D:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V1PAYpCjcZlNdXcxhoX1vEpTjUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/b41ab6-b9f3-4b4a-9b7b-1ed10954bd96/1/n4LYKXkMRjr8_z2Nd_vXMuJBcos.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/b41ab6-b9f3-4b4a-9b7b-1ed10954bd96/1/V1PAYpCjcZlNdXcxhoX1vEpTjUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
158.172.224.0/19
Signature Algorithm: sha256WithRSAEncryption
b7:11:d1:75:0c:25:3d:e7:ed:de:10:a4:eb:58:88:fd:34:56:
2a:7e:4a:a6:86:82:c8:e2:a8:b2:33:7a:b6:b6:28:23:4b:6d:
ea:73:21:27:06:df:9f:e2:22:88:00:f8:c5:fd:96:e5:36:37:
c7:b8:0d:0b:0e:bc:b4:5a:43:8e:d1:2e:df:bd:1d:3f:fd:f2:
a0:70:84:cf:aa:1e:94:8c:56:78:f2:20:72:84:b7:ca:a6:03:
bf:19:49:6c:7f:ac:78:0a:cd:95:60:e3:ef:50:14:32:15:02:
90:6e:14:2f:6b:5e:9d:ba:47:e1:d5:43:10:f6:97:08:a9:ee:
af:c2:18:85:eb:ac:e5:c6:ac:58:40:8a:9c:d4:9d:df:35:be:
fa:25:b9:63:c1:cb:bd:8f:a1:e0:7c:d2:6a:05:98:5f:25:54:
10:f8:a1:c2:a3:67:17:64:3b:63:ca:77:0c:6a:a5:d8:8d:14:
f2:81:75:32:aa:af:84:93:3f:05:64:b3:69:1f:73:c6:86:6b:
c9:84:61:0f:df:a4:fc:1d:fb:9e:7a:d0:2c:ce:53:31:79:19:
63:7b:5c:07:95:01:d9:11:c6:14:14:fa:24:5e:f2:1a:8b:f3:
23:2a:15:f0:48:57:4d:a9:c9:c1:dc:b4:f5:6e:f3:d2:ea:7c:
13:32:a7:be
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYpPnteATTayn/C2q9bMlOS7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU3NTNjMDYyOTBhMzcxOTk0ZDc1NzczMTg2ODVmNWJjNGE1
MzhkNDcwHhcNMjMwOTAxMDcyMjA0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZjgyZDgyOTc5MGM0NjNhZmNmZjNkOGQ3N2ZiZDczMmUyNDE3MjhiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPMq9pTjImvcBcybIfXVq52yeKJB
DQHmbyj+PhcwBqz039amzq62z5jPb685yTKn9qyXzk18xwy+MTjTnBvnzZNSyGKb
QjEexrgS9k+QVsGF+BKHqHXiNwIzA9AlyQudM5/rcGDgnvX9/2I7wnKu3nvbfXmq
LfkkS23ogptAXilyda1h4uaMMnQWY0HFmzDjyLZT2HpreX/tol4gceRUDKUylAk/
ZS+cSqNZ3iFYgbT7N/rVIFzuXCVWrFBae34AN1jFUW48Ghd7auY8GCDOF7g6kMGw
DDtn42VpCWmla17Gv4QiuiHXeZVYGF5Xqwl8hL9Ht/3Fl74cZM10USNBywIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ+C2Cl5DEY6/P89jXf71zLiQXKLMB8GA1UdIwQY
MBaAFFdTwGKQo3GZTXV3MYaF9bxKU41HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVjFQQVlwQ2pjWmxOZFhjeGhvWDF2RXBUalVjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9iNDFhYjYtYjlmMy00YjRhLTliN2It
MWVkMTA5NTRiZDk2LzEvbjRMWUtYa01SanI4X3oyTmRfdlhNdUpCY29zLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9iNDFhYjYtYjlmMy00YjRhLTliN2ItMWVkMTA5NTRiZDk2
LzEvVjFQQVlwQ2pjWmxOZFhjeGhvWDF2RXBUalVjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFnqzgMA0G
CSqGSIb3DQEBCwUAA4IBAQC3EdF1DCU95+3eEKTrWIj9NFYqfkqmhoLI4qiyM3q2
tigjS23qcyEnBt+f4iKIAPjF/ZblNjfHuA0LDry0WkOO0S7fvR0//fKgcITPqh6U
jFZ48iByhLfKpgO/GUlsf6x4Cs2VYOPvUBQyFQKQbhQva16dukfh1UMQ9pcIqe6v
whiF66zlxqxYQIqc1J3fNb76Jbljwcu9j6HgfNJqBZhfJVQQ+KHCo2cXZDtjyncM
aqXYjRTygXUyqq+Ekz8FZLNpH3PGhmvJhGEP36T8HfueetAszlMxeRlje1wHlQHZ
EcYUFPokXvIai/MjKhXwSFdNqcnB3LT1bvPS6nwTMqe+
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:42 2025 by rpki-client