Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ea/d87d78-9154-4fe8-b20d-3e243ebeca34/1/bVKbU2VMzLox6ibe1GW9D9jph4A.roa
File: bVKbU2VMzLox6ibe1GW9D9jph4A.roa (raw, json)
Hash identifier: 5d2YHXKjTprE30V67jLSMKQOmzyEMmvz8lZr5lLfiW0=
Subject key identifier: 6D:52:9B:53:65:4C:CC:BA:31:EA:26:DE:D4:65:BD:0F:D8:E9:87:80
Certificate issuer: /CN=b6d89a799f6ce5edd6ecadc901eaae510214f343
Certificate serial: 02F27C93
Authority key identifier: B6:D8:9A:79:9F:6C:E5:ED:D6:EC:AD:C9:01:EA:AE:51:02:14:F3:43
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ttiaeZ9s5e3W7K3JAequUQIU80M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ea/d87d78-9154-4fe8-b20d-3e243ebeca34/1/bVKbU2VMzLox6ibe1GW9D9jph4A.roa
Signing time: Thu 03 Feb 2022 12:04:00 +0000
ROA not before: Thu 03 Feb 2022 12:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206611
IP address blocks: 167.160.5.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49446035 (0x2f27c93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b6d89a799f6ce5edd6ecadc901eaae510214f343
Validity
Not Before: Feb 3 12:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d529b53654cccba31ea26ded465bd0fd8e98780
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ff:ca:06:79:b8:5e:b9:66:fb:d0:cc:1a:fe:
b4:b4:e1:f2:47:c8:2b:5d:fd:4d:cc:dd:2d:1c:49:
e4:87:f0:fb:62:be:2b:93:42:a1:fb:fa:03:8f:e5:
b6:12:f0:84:42:65:5c:be:40:ce:14:77:ea:1c:1c:
5b:69:8b:8a:76:13:30:35:bb:ba:6c:15:2d:93:4c:
be:26:6f:60:a4:70:79:9e:4a:77:d9:a8:0a:0e:34:
d1:e5:26:bc:27:f9:f0:27:e4:10:54:ad:9e:4e:bc:
48:f7:26:bf:20:ab:b9:85:02:f9:65:bd:85:51:49:
05:92:54:18:4c:46:86:bc:70:53:40:db:10:06:80:
a1:4e:7d:a5:3d:b4:af:44:3c:6f:53:9f:33:14:59:
49:eb:dd:79:2a:b8:cf:22:da:4a:2c:fe:00:4d:cf:
8b:01:ce:c7:2a:53:1c:7b:ff:be:13:38:75:b6:e9:
e5:4b:c4:dc:35:4b:f0:e9:6f:81:4a:36:b3:09:d6:
dd:e7:a6:78:7d:97:ee:55:97:7f:ca:fa:c1:48:9e:
ee:00:18:a9:6d:62:dc:c1:9e:f5:2c:6c:3d:3d:90:
71:76:9b:b6:b6:21:58:4f:53:08:70:3f:1d:02:09:
d7:3f:0c:b0:02:97:a0:06:e5:82:85:6b:0b:43:45:
d0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:52:9B:53:65:4C:CC:BA:31:EA:26:DE:D4:65:BD:0F:D8:E9:87:80
X509v3 Authority Key Identifier:
keyid:B6:D8:9A:79:9F:6C:E5:ED:D6:EC:AD:C9:01:EA:AE:51:02:14:F3:43
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ttiaeZ9s5e3W7K3JAequUQIU80M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d87d78-9154-4fe8-b20d-3e243ebeca34/1/bVKbU2VMzLox6ibe1GW9D9jph4A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/d87d78-9154-4fe8-b20d-3e243ebeca34/1/ttiaeZ9s5e3W7K3JAequUQIU80M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
167.160.5.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:e8:25:e4:a6:64:d9:61:91:a0:45:ab:be:4f:7e:b6:7e:07:
7d:ea:70:90:20:ce:6e:d4:a8:fd:3c:d4:ee:ce:14:04:d9:7d:
62:be:33:7c:cc:77:f0:c0:ff:ed:57:28:fb:bc:b2:41:a2:8f:
d5:4d:f2:00:f7:f5:3f:a6:b7:dd:ce:62:b9:ad:55:b7:07:52:
69:a3:f7:e2:d7:99:c1:d2:50:21:40:ec:3e:7c:3d:b0:65:0f:
ae:42:d3:4b:f1:9f:c1:78:d9:96:07:52:4c:12:02:1f:cd:8b:
40:73:e5:2c:1e:77:1a:1f:ce:35:51:d2:c8:f3:72:f2:39:d1:
9f:f3:fb:ee:62:34:09:a7:0d:0c:5c:be:9a:d5:19:1f:d7:a1:
a3:03:98:33:76:12:83:b1:03:1c:2d:6f:92:fd:be:97:3c:5a:
3b:a3:63:41:45:b2:79:05:e7:e6:fa:51:76:76:37:5c:3a:ee:
4b:5c:20:a0:42:19:dc:87:11:5c:8e:a7:bc:88:82:17:00:87:
95:0a:bb:a2:10:04:1e:bc:0a:6f:a8:62:ea:fa:28:9a:17:75:
89:11:7a:d8:7b:a9:f4:5f:a8:97:1c:3f:2e:cd:75:2f:df:c5:
4f:34:1a:99:73:2e:2e:fa:0e:b1:fc:dd:24:36:d6:35:74:04:
22:88:a9:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:11:45 2025 by rpki-client