Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/d_hwzE1yzl__CuHIRS4_MGVNEiw.roa
File: d_hwzE1yzl__CuHIRS4_MGVNEiw.roa (raw, json)
Hash identifier: cmuPx2/z559YPEUbGQfsHQZ6S3OiQ7klLgwfRELnCy8=
Subject key identifier: 77:F8:70:CC:4D:72:CE:5F:FF:0A:E1:C8:45:2E:3F:30:65:4D:12:2C
Certificate issuer: /CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Certificate serial: 0189BA4DA4A0C6F9DF9AF6B47F21AB4E0303
Authority key identifier: 7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/d_hwzE1yzl__CuHIRS4_MGVNEiw.roa
Signing time: Thu 03 Aug 2023 07:29:57 +0000
ROA not before: Thu 03 Aug 2023 07:29:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 2856
IP address blocks: 46.23.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ba:4d:a4:a0:c6:f9:df:9a:f6:b4:7f:21:ab:4e:03:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d06a42bb2446e51f192ea375bdf7eec5a51c77f
Validity
Not Before: Aug 3 07:29:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=77f870cc4d72ce5fff0ae1c8452e3f30654d122c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:19:06:10:54:57:aa:ab:5b:f8:e7:b6:09:30:
f5:fb:e9:aa:ca:1b:0e:e3:4c:7c:1d:a7:12:7d:26:
cb:cb:56:13:b9:be:91:c4:b8:2b:f0:e7:c3:0a:f3:
ce:65:fe:2b:ef:85:a8:0f:e1:df:14:d8:cc:b5:da:
ed:ef:ec:95:d0:bc:7b:21:65:d6:d5:d8:c2:84:26:
6e:ec:52:9e:5c:ba:87:75:1a:58:e0:78:1e:3c:14:
5b:d8:51:98:5a:11:ac:64:87:49:27:96:4c:cf:9a:
b1:e8:9e:93:73:7a:90:6a:f6:b2:58:a0:38:40:17:
e1:fd:81:a8:35:1d:68:07:b5:d6:23:e0:69:33:ab:
ce:2e:1a:55:06:79:fe:ad:74:7f:12:71:c8:81:4b:
f2:72:cc:6b:b2:ab:d2:33:81:13:c9:ab:41:fe:6a:
d2:32:6b:43:b5:48:18:87:70:a6:46:a6:2e:1d:13:
f0:57:5f:39:48:88:cd:6d:4f:d9:99:a7:ea:f0:ec:
7d:cb:93:d4:fb:5b:a9:2f:c4:36:d4:5d:b1:30:44:
3f:c5:1e:91:3c:a9:55:5e:d8:75:cb:8d:cd:51:da:
47:38:43:3c:0d:26:2b:09:5f:a6:6c:ee:94:f1:2f:
80:2b:dd:8a:2f:9b:8b:39:60:66:41:16:df:0d:bb:
b8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:F8:70:CC:4D:72:CE:5F:FF:0A:E1:C8:45:2E:3F:30:65:4D:12:2C
X509v3 Authority Key Identifier:
keyid:7D:06:A4:2B:B2:44:6E:51:F1:92:EA:37:5B:DF:7E:EC:5A:51:C7:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQakK7JEblHxkuo3W99-7FpRx38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/d_hwzE1yzl__CuHIRS4_MGVNEiw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/78002a-4fc0-4dbf-8585-2cf806b2d0f2/1/fQakK7JEblHxkuo3W99-7FpRx38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
46.23.99.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:9e:08:ec:98:21:c0:c1:66:76:6f:d3:53:08:e9:64:9e:1d:
94:59:f1:ab:42:89:0d:c0:43:e6:33:95:ef:f4:b2:d3:e1:b2:
ec:07:9c:57:25:87:ac:aa:a7:33:89:fa:6f:73:54:12:29:4b:
eb:e0:fa:a8:b8:27:20:71:c6:3c:73:72:92:ad:56:cb:01:9d:
30:b9:92:65:b0:e1:07:4b:78:b4:04:0f:9e:c7:86:d5:87:f5:
8a:a2:4d:4e:1b:85:74:00:6f:df:ed:0d:ca:e5:44:c4:32:7f:
c7:58:c5:92:15:9e:93:c9:f2:8b:74:03:d7:cb:c3:56:6b:f8:
1d:81:f7:b6:d5:c8:a7:5c:12:b8:d6:24:76:67:ed:f4:f4:4f:
5c:1e:b5:cc:79:7a:53:0d:23:61:9b:03:fe:75:f1:64:1b:a8:
d0:da:6e:c4:02:fa:91:02:59:8d:f4:ab:bb:bf:ac:fa:dd:d5:
c8:25:21:73:3c:3f:4e:42:5b:c7:4a:e5:59:4c:6b:ed:2f:b3:
95:d3:01:e2:65:80:2c:6a:ce:d3:1a:6a:06:c4:25:11:56:18:
95:9b:50:43:06:6d:c5:ad:e5:71:84:97:e4:d0:5e:a8:46:ed:
d2:5c:ad:0b:01:df:f7:9d:c3:af:1f:09:d7:d7:72:30:71:fb:
9d:98:3b:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:00 2025 by rpki-client