Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/88e353-3013-4b7d-a8d6-6c6ed71e25da/1/1Od6kY85S81sIWV8v0XDNnXRJvs.roa
File: 1Od6kY85S81sIWV8v0XDNnXRJvs.roa (raw, json)
Hash identifier: G2FXAz/Pm683AQKa6+iV7YTxjpODg7mLp6Vgz9E2+nQ=
Subject key identifier: D4:E7:7A:91:8F:39:4B:CD:6C:21:65:7C:BF:45:C3:36:75:D1:26:FB
Certificate issuer: /CN=b11863e1705accc128f12d16476fa4fe1eb0d7d3
Certificate serial: 01856BE5C363518471907881E688622DA61A
Authority key identifier: B1:18:63:E1:70:5A:CC:C1:28:F1:2D:16:47:6F:A4:FE:1E:B0:D7:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sRhj4XBazMEo8S0WR2-k_h6w19M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/88e353-3013-4b7d-a8d6-6c6ed71e25da/1/1Od6kY85S81sIWV8v0XDNnXRJvs.roa
Signing time: Sun 01 Jan 2023 05:54:57 +0000
ROA not before: Sun 01 Jan 2023 05:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 176.118.34.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:e5:c3:63:51:84:71:90:78:81:e6:88:62:2d:a6:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b11863e1705accc128f12d16476fa4fe1eb0d7d3
Validity
Not Before: Jan 1 05:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d4e77a918f394bcd6c21657cbf45c33675d126fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:5e:9a:17:f9:cf:1a:7a:67:21:60:73:04:1f:
c4:75:7f:6c:0e:a5:7a:57:10:e3:5a:4e:6e:3b:9a:
aa:25:d0:5a:ea:4f:e3:34:c3:fb:c7:24:4e:0d:19:
be:65:2f:a6:da:f2:c4:35:c2:af:c6:6c:4c:4c:bc:
2e:09:05:04:2f:38:cd:a1:a9:34:79:da:b7:91:af:
e2:c7:5d:0d:28:4a:2c:86:5f:a5:14:e2:e3:15:f0:
ee:08:0c:53:d5:32:22:24:06:72:7a:65:eb:69:de:
ac:9a:ac:7b:dc:1d:94:56:01:80:fb:c8:0e:f6:43:
36:75:19:6f:35:bd:9a:35:d0:52:7a:fe:c8:07:08:
39:c9:0c:78:15:61:f8:cf:8e:57:71:d9:6a:c3:a6:
02:fb:37:47:3e:30:38:57:5b:0e:fe:9e:ac:7d:d9:
54:ed:bb:a7:89:de:c8:74:fd:8d:af:d6:24:09:c0:
b8:5e:a0:dc:69:6e:bb:89:58:89:05:72:20:1b:44:
92:e6:e2:89:05:a0:da:57:d9:7d:38:fb:02:10:ad:
b1:ee:08:10:f0:c9:f2:33:76:14:d5:a3:3a:be:a7:
d1:dc:72:f3:7e:61:f8:2d:56:3b:3e:07:75:84:af:
9b:da:48:c7:b3:cd:9f:b1:c4:60:68:06:b2:65:1a:
b9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:E7:7A:91:8F:39:4B:CD:6C:21:65:7C:BF:45:C3:36:75:D1:26:FB
X509v3 Authority Key Identifier:
keyid:B1:18:63:E1:70:5A:CC:C1:28:F1:2D:16:47:6F:A4:FE:1E:B0:D7:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sRhj4XBazMEo8S0WR2-k_h6w19M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/88e353-3013-4b7d-a8d6-6c6ed71e25da/1/1Od6kY85S81sIWV8v0XDNnXRJvs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/88e353-3013-4b7d-a8d6-6c6ed71e25da/1/sRhj4XBazMEo8S0WR2-k_h6w19M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.118.34.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:76:47:d5:03:28:b4:bd:93:32:50:68:42:32:60:51:20:68:
64:03:54:d5:29:98:49:01:72:c3:00:fd:96:d0:29:c9:c4:00:
50:86:cb:98:49:ec:fa:38:10:15:01:42:6d:7d:33:49:95:41:
4d:74:3a:e0:c3:9b:ab:cb:c5:18:38:dc:11:a4:de:6f:01:70:
10:e8:20:a5:3c:bd:c1:06:d8:28:f3:62:1f:b6:e7:7d:8d:5f:
73:34:95:03:15:e9:8f:f8:45:54:db:26:f0:a0:41:39:1c:a0:
83:60:79:6a:b3:a5:bc:7c:aa:10:84:90:94:eb:78:b0:e9:71:
ff:30:f5:f6:9a:d0:83:cd:de:cd:0b:22:05:69:c3:a7:4e:23:
a3:0a:eb:c9:7e:79:eb:ec:5c:80:8a:24:70:a1:0a:b6:ea:ef:
c2:fe:16:8e:76:e4:e1:58:0d:a6:e9:71:8e:d9:e0:bc:c8:4f:
49:1b:5b:c9:c8:d8:a1:3f:2a:7c:84:be:66:67:d2:d3:b3:40:
97:36:54:cb:65:18:f4:4e:ca:2d:d9:54:89:d8:6c:00:3e:67:
a5:8a:62:17:fd:c0:e5:e3:28:3d:9e:09:c0:5a:55:55:a4:fb:
5c:d6:e3:56:7a:61:0d:ff:07:2c:a5:e6:17:4b:6e:d1:e1:eb:
2d:28:9d:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:04:04 2025 by rpki-client