Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/dMvG_BFEfkTOyrmg9rADA4q3iiU.roa
File: dMvG_BFEfkTOyrmg9rADA4q3iiU.roa (raw, json)
Hash identifier: P1Fte1Gvut0SBSeEw+FXI9NpGSXTGaz8Wvg/4pmgvGI=
Subject key identifier: 74:CB:C6:FC:11:44:7E:44:CE:CA:B9:A0:F6:B0:03:03:8A:B7:8A:25
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 018B186CA8739661D8BC4B21EA2D1FD89D6D
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/dMvG_BFEfkTOyrmg9rADA4q3iiU.roa
Signing time: Tue 10 Oct 2023 07:10:56 +0000
ROA not before: Tue 10 Oct 2023 07:10:56 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 834
IP address blocks: 2.59.180.0/24 maxlen: 24
45.156.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:18:6c:a8:73:96:61:d8:bc:4b:21:ea:2d:1f:d8:9d:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Oct 10 07:10:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=74cbc6fc11447e44cecab9a0f6b003038ab78a25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:02:cf:98:ab:61:e1:79:7a:39:79:5c:6a:a9:
ca:89:26:9d:2f:f3:b7:b0:08:fd:0a:08:38:75:eb:
d2:45:32:33:d9:af:fb:b2:f4:f1:20:5b:a8:66:f6:
f0:23:1a:54:b3:67:2e:6f:5e:e8:e9:8e:b4:7b:a4:
3b:6a:bd:e5:d4:16:d1:74:4e:4a:d6:b6:41:46:24:
22:0a:09:74:1d:43:19:71:c2:46:ca:ee:c2:7a:9d:
cc:35:00:31:4b:86:67:3f:52:12:db:bd:d3:18:26:
31:de:81:36:49:ac:b6:ff:02:9a:3d:c1:d6:09:aa:
80:40:19:77:aa:12:db:94:ad:bf:18:28:e8:8f:4a:
a4:e4:bb:62:92:20:89:a7:6d:77:1f:1c:ba:5f:f4:
0b:bb:a2:c6:05:50:e0:41:3d:36:4a:6d:b4:4e:a2:
b3:89:55:7c:6e:ee:08:7b:b9:1f:17:84:33:f3:48:
fa:04:16:f9:48:83:76:e1:ad:93:08:81:7f:05:ac:
88:0f:2c:c0:31:05:8c:6a:18:bf:23:af:ad:92:60:
cb:b0:1b:6c:40:3b:0f:bf:55:95:71:e6:71:c6:1c:
e2:c7:6c:d0:74:c8:de:77:7e:56:60:29:a2:be:0d:
81:dc:66:03:b0:71:f5:45:a1:1d:5a:85:33:29:ae:
68:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:CB:C6:FC:11:44:7E:44:CE:CA:B9:A0:F6:B0:03:03:8A:B7:8A:25
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/dMvG_BFEfkTOyrmg9rADA4q3iiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.180.0/24
45.156.144.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:a0:75:af:30:df:0c:03:20:ee:0c:3f:2c:7e:34:a7:37:42:
d0:19:4a:f8:68:ae:42:5f:7c:88:eb:d9:c9:5b:93:27:71:d6:
35:1e:f5:4c:21:06:97:49:10:a8:1c:b7:6f:15:98:47:60:3e:
1a:df:0f:99:f0:93:b0:99:9f:b4:97:85:8b:8e:cf:d9:a3:46:
7c:fb:0f:b9:de:da:5e:83:2e:c0:bd:3f:06:3c:a6:28:ef:cd:
d2:33:ff:61:e5:6e:b5:60:59:52:c5:20:bd:0c:fc:55:33:b1:
26:e2:4b:03:e9:ed:6a:9b:35:02:aa:80:82:5f:49:96:27:bf:
73:77:9b:e8:e9:54:8b:fe:d0:d2:df:38:f4:c3:3c:79:6c:45:
1d:43:bc:91:fb:aa:d0:55:46:62:76:66:48:b4:9e:24:ad:87:
35:65:05:1f:3e:e3:6c:73:dc:ec:93:1b:75:f1:41:42:6a:7f:
bc:8c:28:e4:9a:66:20:fe:81:46:93:db:9c:cc:e2:34:57:2c:
dd:49:4f:cc:23:5b:dd:6f:a8:66:f8:11:f0:7f:e9:b9:04:17:
10:35:10:8d:a1:03:79:50:77:5e:27:35:c5:6f:bf:11:eb:08:
7b:1d:72:5b:8e:7f:33:60:38:ee:3e:11:50:38:ab:4b:a0:40:
8a:b5:e2:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 00:50:00 2025 by rpki-client