Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/cnJ_hAV9X35u46eldfRmO3vr3os.roa
File: cnJ_hAV9X35u46eldfRmO3vr3os.roa (raw, json)
Hash identifier: xbm8lSZnS2QIxZoFGu8MWhfZVU5ntSOZaFdE+dhESSc=
Subject key identifier: 72:72:7F:84:05:7D:5F:7E:6E:E3:A7:A5:75:F4:66:3B:7B:EB:DE:8B
Certificate issuer: /CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Certificate serial: 018F465D667129B47DFA1925B8ABEA4E9CCC
Authority key identifier: EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/cnJ_hAV9X35u46eldfRmO3vr3os.roa
Signing time: Sun 05 May 2024 01:27:57 +0000
ROA not before: Sun 05 May 2024 01:27:57 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 151734
IP address blocks: 103.47.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:46:5d:66:71:29:b4:7d:fa:19:25:b8:ab:ea:4e:9c:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee1c3472c25acd347364b7d6312618aa3530cb63
Validity
Not Before: May 5 01:27:57 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=72727f84057d5f7e6ee3a7a575f4663b7bebde8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:6f:d1:a5:bf:7e:6f:78:ca:e3:8a:46:c2:e4:
98:eb:cc:92:37:c1:e5:c2:bc:68:85:10:86:8b:0f:
ff:0d:28:1e:63:78:12:20:d4:55:f3:3a:54:37:13:
2a:e3:e4:61:c7:e6:ac:1b:fa:c8:f5:2e:77:58:29:
69:22:5c:e1:3d:75:fe:22:f1:e0:4e:15:e9:41:19:
43:d3:04:f5:0a:1c:a3:d4:ac:f8:ec:06:e2:bd:14:
4e:8c:cf:bc:27:50:52:13:a4:d4:2b:a5:8c:88:f5:
17:8c:14:3e:7a:e1:c5:8f:91:4b:cf:16:0a:65:5d:
89:f0:79:24:ab:77:e2:79:1c:7e:f2:5b:22:f9:41:
9c:a6:c7:e3:05:82:81:d5:ee:47:37:2c:fd:91:8d:
c9:b7:72:0c:38:2d:ab:be:06:1d:19:fb:0b:7f:cb:
64:76:42:76:58:0c:be:ca:1e:94:f5:39:a7:25:8f:
79:4b:61:ee:a7:58:00:f2:8a:bb:a5:9e:76:f1:d7:
9d:ba:90:3b:48:1a:58:6a:27:6c:b4:23:e6:54:cb:
97:80:83:cf:3d:5a:85:3e:68:4c:fd:23:e2:ee:78:
60:86:62:b7:cb:bc:e0:67:0b:8b:52:ed:aa:d0:93:
00:3c:95:3c:92:5b:f3:74:3d:1b:1c:e3:70:d4:43:
a5:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:72:7F:84:05:7D:5F:7E:6E:E3:A7:A5:75:F4:66:3B:7B:EB:DE:8B
X509v3 Authority Key Identifier:
keyid:EE:1C:34:72:C2:5A:CD:34:73:64:B7:D6:31:26:18:AA:35:30:CB:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7hw0csJazTRzZLfWMSYYqjUwy2M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/cnJ_hAV9X35u46eldfRmO3vr3os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/1ff44f-51d6-4545-ad36-b4b8db20b1fb/1/7hw0csJazTRzZLfWMSYYqjUwy2M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.47.59.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:11:92:2d:b1:73:9f:91:b5:16:03:73:fc:9c:d8:e2:a2:af:
42:5b:7e:4e:7b:81:f1:88:b3:52:16:ef:de:ee:a5:81:c0:fe:
1e:31:04:e2:d6:fa:43:69:dd:00:b0:a7:a6:e9:a7:72:dc:2a:
17:23:41:e2:ed:0d:92:c0:0e:be:02:c1:2a:56:5f:62:fe:74:
2f:b9:3e:5d:89:4d:1e:84:54:7d:08:20:bf:be:c3:6e:fc:fb:
ae:f8:41:ba:46:5c:6e:fb:14:ad:55:e4:b3:da:df:ec:26:06:
11:12:42:e5:a9:71:47:6f:fb:2a:5a:80:3b:68:e6:9b:78:bf:
a3:98:1d:1b:71:6c:e7:6c:b0:90:41:37:a6:f0:ca:d7:86:fb:
70:05:06:e8:94:a2:5f:ad:d3:84:91:85:60:10:16:57:88:45:
c3:a8:39:ef:0d:53:11:2d:d7:b0:f3:37:69:21:fa:3c:6d:e3:
e2:7a:7b:dc:7e:6b:6e:a0:d8:c4:48:e2:73:f9:49:13:0b:4f:
86:00:18:3b:3f:ca:d0:be:df:cf:e6:76:bb:fb:03:8e:33:3d:
cb:8f:50:2f:6c:26:ba:9d:75:cc:51:36:a6:e3:d3:c0:19:38:
04:4d:74:36:d6:ad:d5:af:77:bd:94:5e:6f:56:33:71:62:44:
ce:d0:ee:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:26 2025 by rpki-client