Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/2V3r9NRVovWFhIkAjE1VQ4Nr2Mo.roa
File: 2V3r9NRVovWFhIkAjE1VQ4Nr2Mo.roa (raw, json)
Hash identifier: T4aZIHeOvlIbo7lehuuRWDrDZbfd4IN/D0RSrJMZFRY=
Subject key identifier: D9:5D:EB:F4:D4:55:A2:F5:85:84:89:00:8C:4D:55:43:83:6B:D8:CA
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 019424B2FD9944987D71F1576066B83A3BAD
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/2V3r9NRVovWFhIkAjE1VQ4Nr2Mo.roa
Signing time: Thu 02 Jan 2025 01:48:17 +0000
ROA not before: Thu 02 Jan 2025 01:48:17 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 205625
IP address blocks: 159.148.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:fd:99:44:98:7d:71:f1:57:60:66:b8:3a:3b:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 01:48:17 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d95debf4d455a2f5858489008c4d5543836bd8ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c4:86:32:86:42:1f:d3:51:86:ea:45:b8:39:
c6:f3:62:1f:2d:54:3d:9e:db:fb:66:d1:23:1c:2d:
10:61:15:61:75:05:e1:9d:42:3b:78:be:ba:de:5d:
e6:b0:3a:e7:f7:24:98:af:11:da:2f:d9:76:59:80:
ef:bb:46:e7:8d:0c:8a:52:af:fa:ea:1c:7c:7f:fc:
11:0c:12:f9:c1:15:b4:44:3c:ca:1e:34:47:c2:42:
7c:cf:85:32:58:1f:5e:e7:ac:39:20:6b:56:4c:a3:
38:83:16:d4:f9:b1:04:d2:47:c4:e3:52:23:51:8f:
7c:4e:62:5e:89:15:e2:ac:56:15:02:85:2d:fd:ed:
7e:2e:65:9a:3f:70:d3:f8:68:43:9f:d4:6a:f1:32:
32:d9:d1:bd:c1:4f:b8:75:1a:ad:1f:70:3b:46:f8:
6a:24:f6:ed:e0:fa:8c:e3:ac:88:b2:0b:98:a3:44:
50:c4:ce:64:16:d8:90:36:8e:1b:63:65:4e:47:62:
46:fa:e0:a1:73:79:4e:15:c1:83:25:a3:a6:43:c2:
92:37:96:84:4e:a1:92:12:3d:c5:db:47:f6:86:b2:
87:e1:38:33:af:75:7b:da:95:50:73:00:f7:be:c5:
e1:a6:8b:da:9e:6b:4d:2a:50:de:66:8b:24:4d:88:
d4:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:5D:EB:F4:D4:55:A2:F5:85:84:89:00:8C:4D:55:43:83:6B:D8:CA
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/2V3r9NRVovWFhIkAjE1VQ4Nr2Mo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.44.0/24
Signature Algorithm: sha256WithRSAEncryption
b5:63:57:86:e4:13:cd:38:2b:fb:a1:6b:97:c7:9b:15:14:bb:
bb:86:d6:a2:d2:17:27:ea:50:df:4a:b7:e8:51:5c:d9:0e:49:
e9:83:02:52:f5:d5:5a:32:74:9f:32:0c:fe:ea:55:df:fb:ba:
60:c0:fe:cd:1a:f1:bd:3e:56:06:0f:a4:22:be:f1:9a:36:d2:
e2:1d:02:ab:c2:ca:ae:60:aa:f3:60:77:5f:26:f3:f5:ad:a0:
77:65:b6:4e:50:9c:c0:ba:a1:e5:58:af:66:60:20:1b:e3:1d:
a7:95:40:26:42:ac:84:29:0a:09:67:9c:05:e6:01:8d:e2:0c:
95:e6:0a:0b:bf:70:46:20:00:df:75:49:56:ac:41:96:f6:cd:
98:70:1b:43:c3:5e:9c:c1:31:6f:0e:ac:40:a5:3c:be:f4:4a:
f4:ed:46:b5:38:72:27:41:1f:07:f0:56:05:76:28:c6:12:8c:
ee:35:cf:8d:1c:e8:af:fb:9b:65:ac:cf:0a:e0:69:6a:81:27:
42:f9:da:4d:51:0c:a1:d6:12:03:e1:16:61:0e:a5:d3:ba:6e:
c6:18:f9:be:95:68:96:82:60:7f:0c:f8:79:6b:c3:b8:0d:5b:
7a:3e:f4:4b:60:45:b7:da:f2:4a:bb:01:60:c3:bc:b2:17:7b:
cc:78:d2:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:20:18 2025 by rpki-client