Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/j5AgbZfibPV7ujaNywixSy13dkU.roa
File: j5AgbZfibPV7ujaNywixSy13dkU.roa (raw, json)
Hash identifier: 7DA1PyJhVlnxxM8JrcDANe88f3RuqD6zj7RPDyJnKAY=
Subject key identifier: 8F:90:20:6D:97:E2:6C:F5:7B:BA:36:8D:CB:08:B1:4B:2D:77:76:45
Certificate issuer: /CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Certificate serial: 018B6AD91F6AC6C7910CC8496C875814F2CD
Authority key identifier: 49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/j5AgbZfibPV7ujaNywixSy13dkU.roa
Signing time: Thu 26 Oct 2023 07:18:16 +0000
ROA not before: Thu 26 Oct 2023 07:18:16 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 43260
IP address blocks: 152.89.28.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:6a:d9:1f:6a:c6:c7:91:0c:c8:49:6c:87:58:14:f2:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4986c73994d02d91fc97d916e9809a6d981e6b17
Validity
Not Before: Oct 26 07:18:16 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=8f90206d97e26cf57bba368dcb08b14b2d777645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:29:88:c9:71:ab:12:08:19:7a:7d:13:ae:c5:
d2:72:35:74:5d:33:0d:cf:5a:ff:57:d7:e5:2e:0c:
19:8b:28:c0:fa:08:a2:d2:19:ce:86:80:7b:f8:2c:
f2:bf:89:c1:6a:90:08:31:46:73:e7:b1:0b:9c:be:
3e:11:5e:a7:9b:e9:a5:c9:76:86:71:f6:69:a5:64:
34:ad:a9:18:77:09:e7:73:e2:3c:0a:31:a0:9a:4b:
be:68:8d:3f:1a:cf:cd:ab:53:d3:e4:a8:5e:20:07:
c0:f5:52:7b:a4:15:a5:c8:7d:5f:b8:d2:bc:e1:d1:
ec:be:72:40:c8:d5:3c:9d:4c:7f:c1:07:41:ba:d1:
44:60:c0:69:67:66:00:d9:cd:a0:d0:ab:bf:c8:89:
d9:e0:89:d5:a0:97:7a:a3:49:f1:c7:30:4e:7d:6b:
22:9b:03:72:d9:a8:18:70:64:d0:46:65:02:8d:ff:
f5:55:ba:60:a3:05:2e:21:2f:cd:9d:8a:78:77:dc:
9a:c1:87:33:29:14:fe:d0:c7:19:be:ac:17:dc:40:
35:7e:48:a8:61:43:c4:24:2c:bc:51:cf:98:63:5a:
a1:99:75:12:ae:88:7f:f4:c5:28:94:2a:39:87:29:
d4:27:a7:45:56:ad:bb:61:77:87:15:ed:2c:e3:f8:
fd:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:90:20:6D:97:E2:6C:F5:7B:BA:36:8D:CB:08:B1:4B:2D:77:76:45
X509v3 Authority Key Identifier:
keyid:49:86:C7:39:94:D0:2D:91:FC:97:D9:16:E9:80:9A:6D:98:1E:6B:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYbHOZTQLZH8l9kW6YCabZgeaxc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/j5AgbZfibPV7ujaNywixSy13dkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/457e13-41d3-40ef-b572-9e895d0ef8d2/1/SYbHOZTQLZH8l9kW6YCabZgeaxc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.28.0/22
Signature Algorithm: sha256WithRSAEncryption
90:8c:89:5e:a4:b7:0c:2a:e5:8a:c7:56:f5:2e:41:fd:c3:d0:
5a:51:a0:6f:fd:d2:74:00:22:c7:39:04:49:86:b1:32:bf:7b:
ae:c9:8b:65:c5:9d:e9:a3:2b:c5:24:18:ee:8f:9c:57:62:4f:
0b:00:0a:de:eb:89:0a:60:74:53:52:86:4c:4f:92:17:c7:58:
3e:f5:58:0e:1e:ba:9c:de:23:13:da:76:95:7a:7b:40:fb:c2:
b4:83:27:72:61:62:73:67:78:e2:f5:80:3c:69:e2:44:e9:a4:
2f:52:5a:58:34:51:45:98:e2:68:64:08:06:e6:3b:ce:6a:f2:
27:20:c0:6a:a2:ba:8a:52:c7:f4:e0:50:a3:92:95:b7:64:1f:
77:e5:d3:c9:52:1e:a1:a5:63:7f:b8:20:21:b7:3e:86:e6:34:
24:71:b0:d3:fc:4f:ad:a4:e4:33:44:09:42:02:47:11:10:11:
f4:c9:bd:af:d5:9a:23:c6:2e:35:c1:97:98:ff:d3:3a:27:d7:
66:a6:90:7b:90:d3:09:0e:c9:48:ba:39:c8:b4:77:8f:ce:dd:
4a:1a:b3:92:fc:ed:34:4c:11:43:48:44:45:8f:0d:f9:3a:83:
25:67:be:28:c0:9c:4a:3a:ee:5d:11:c4:c8:a9:62:a1:75:61:
04:c3:86:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:30 2025 by rpki-client