Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/76KC9NEn4Y0d_uzlmSKpDV65gh8.roa
File: 76KC9NEn4Y0d_uzlmSKpDV65gh8.roa (raw, json)
Hash identifier: e93hfm3IbHI/Q6mbH2KXP2qHerbOeO0APFwwjgjapi4=
Subject key identifier: EF:A2:82:F4:D1:27:E1:8D:1D:FE:EC:E5:99:22:A9:0D:5E:B9:82:1F
Certificate issuer: /CN=869569a2526687da91a7ecd4f567f5409cdffe79
Certificate serial: 01914BF121D449DACC6A6D152432EA2A5438
Authority key identifier: 86:95:69:A2:52:66:87:DA:91:A7:EC:D4:F5:67:F5:40:9C:DF:FE:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hpVpolJmh9qRp-zU9Wf1QJzf_nk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/76KC9NEn4Y0d_uzlmSKpDV65gh8.roa
Signing time: Tue 13 Aug 2024 13:32:59 +0000
ROA not before: Tue 13 Aug 2024 13:32:59 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 49360
IP address blocks: 31.7.144.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:91:4b:f1:21:d4:49:da:cc:6a:6d:15:24:32:ea:2a:54:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=869569a2526687da91a7ecd4f567f5409cdffe79
Validity
Not Before: Aug 13 13:32:59 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=efa282f4d127e18d1dfeece59922a90d5eb9821f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:43:a9:27:33:53:40:e0:38:58:ef:0c:19:ff:
2e:e9:65:07:92:e4:90:d2:46:b0:05:08:6f:de:b2:
a0:f4:03:52:27:fc:08:9d:11:d2:d1:dd:05:4c:a2:
f0:e0:6c:61:38:24:f9:1e:56:e2:17:51:ba:f3:b4:
0f:a8:71:ce:b2:40:54:1d:e9:16:08:0f:c9:4d:3a:
8b:0b:aa:45:09:f3:c3:b3:11:76:c6:2d:99:99:f8:
f6:a1:c5:49:6b:f5:9b:16:b1:38:b9:8f:47:19:bc:
96:6c:f1:8b:07:cf:8f:d7:96:8f:40:0d:45:55:3b:
c9:ca:f3:d8:2e:6a:93:9b:d4:6e:08:4a:aa:7e:7d:
01:54:b2:e9:4c:a0:aa:4f:58:b8:48:3d:b5:c9:0a:
58:5e:04:47:62:f4:4e:3a:39:95:4c:4e:56:f6:23:
6a:b0:96:22:03:c0:9a:00:a3:16:e9:b3:83:6c:3f:
33:e0:a9:32:a9:74:74:8b:04:d5:cb:76:2d:67:54:
ca:43:db:8d:78:16:5b:66:2f:32:42:57:0a:fa:8d:
e6:03:b9:0a:0e:37:5e:ac:08:db:0b:93:27:4a:a6:
21:a0:dc:06:f9:39:71:b1:34:06:8b:b5:1f:b6:20:
ff:8a:ef:f9:60:7e:e5:b3:a9:b6:8a:9c:5a:6c:da:
6f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:A2:82:F4:D1:27:E1:8D:1D:FE:EC:E5:99:22:A9:0D:5E:B9:82:1F
X509v3 Authority Key Identifier:
keyid:86:95:69:A2:52:66:87:DA:91:A7:EC:D4:F5:67:F5:40:9C:DF:FE:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hpVpolJmh9qRp-zU9Wf1QJzf_nk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/76KC9NEn4Y0d_uzlmSKpDV65gh8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/740dec-059f-45c0-999a-1eaa591b6771/1/hpVpolJmh9qRp-zU9Wf1QJzf_nk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.7.144.0/20
Signature Algorithm: sha256WithRSAEncryption
23:c7:71:0f:0a:59:b2:bd:36:c8:9b:a1:17:63:34:0d:a3:31:
ec:6b:e2:3e:b0:cd:ee:7d:43:82:40:d2:c7:49:39:42:9c:e1:
a7:82:11:5d:b8:fa:b5:d9:6b:c0:30:32:9e:b5:50:77:63:27:
fe:5e:e9:99:2c:be:75:d5:80:03:e8:d4:ec:ed:b4:16:45:47:
7e:47:c7:08:85:e8:cb:5b:9d:16:a9:e0:4c:ea:8c:e7:e5:20:
83:cc:9e:de:ec:7a:55:a5:2e:2a:d6:3e:6a:bf:92:3f:51:6a:
f7:44:f3:bb:42:b9:ca:b7:37:95:e4:13:de:d9:7e:31:68:77:
73:6e:9d:7f:78:8a:16:39:e1:7d:ef:b7:03:16:1a:dc:f0:4c:
1c:5b:15:27:ba:04:47:46:97:59:33:d9:15:09:d3:df:cb:cf:
c1:3b:b9:1d:37:5e:1b:d8:8b:b6:ca:df:17:93:fb:01:33:57:
d4:35:76:5d:fb:90:a6:d3:67:84:d1:75:9c:d6:5a:28:03:da:
99:b6:c4:61:54:6d:4a:82:f9:17:d1:28:12:9e:1f:45:d4:7e:
5c:da:1a:50:c8:2a:f2:d7:6c:59:4c:d8:74:d0:0a:b9:6d:ff:
d7:bc:4a:fe:2c:dc:be:36:23:ce:7a:87:36:a7:a9:8b:ab:e3:
72:0f:e2:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:17:15 2025 by rpki-client