Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/L5xmrNGM9UmM9Jww_yA8NAyJptA.roa
File: L5xmrNGM9UmM9Jww_yA8NAyJptA.roa (raw, json)
Hash identifier: 2BtiFq9ArpKpTo4iBbWChMB3ozP28SL5Ey+9Qju1uC4=
Subject key identifier: 2F:9C:66:AC:D1:8C:F5:49:8C:F4:9C:30:FF:20:3C:34:0C:89:A6:D0
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 0193CE99E7CCDFCA389A00967F5212B8BD38
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/L5xmrNGM9UmM9Jww_yA8NAyJptA.roa
Signing time: Mon 16 Dec 2024 08:33:33 +0000
ROA not before: Mon 16 Dec 2024 08:33:33 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 58269
IP address blocks: 37.148.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:ce:99:e7:cc:df:ca:38:9a:00:96:7f:52:12:b8:bd:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Dec 16 08:33:33 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2f9c66acd18cf5498cf49c30ff203c340c89a6d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ca:a2:7c:b0:1c:be:57:a6:c4:8d:64:ca:3a:
ac:24:56:30:b3:29:a4:90:40:44:51:52:8f:48:67:
c3:97:34:48:58:d6:c0:4c:ea:d1:97:2a:59:7b:31:
02:7c:cd:53:a3:12:17:03:0c:79:f8:cd:0e:76:87:
07:e4:d5:d2:34:f2:02:71:68:69:bf:79:31:dd:08:
3b:39:ef:4e:97:f7:3d:c6:59:f9:55:d9:61:6e:35:
e5:73:6c:12:1c:9c:2a:3f:5c:2b:5c:81:21:aa:4e:
9a:fa:b3:a2:08:6a:b6:e8:df:05:4a:86:71:db:56:
7e:9e:6a:0a:1d:d4:0d:ba:47:10:49:93:18:62:61:
25:0c:6a:1d:61:ff:a8:6b:d1:67:05:01:fa:28:88:
ce:63:c9:25:ea:63:cc:ef:3e:71:96:d8:3a:0e:91:
41:13:ce:3a:21:7e:1d:f8:46:d1:e7:23:d3:97:28:
67:a3:2e:8d:cc:25:82:e9:d4:ad:5c:a7:40:ec:99:
1f:e3:1a:50:42:fe:74:ef:b8:7d:e5:b0:9b:c6:65:
a1:b0:02:4f:71:9f:1c:cb:0e:b0:3d:2c:b5:54:f7:
ef:f3:46:09:99:8b:a3:8f:1e:85:00:0e:19:0a:6f:
db:2b:6d:cf:bb:1d:f2:48:18:3c:99:1c:e3:e1:83:
e6:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:9C:66:AC:D1:8C:F5:49:8C:F4:9C:30:FF:20:3C:34:0C:89:A6:D0
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/L5xmrNGM9UmM9Jww_yA8NAyJptA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.148.174.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:eb:7a:fb:89:e6:3a:d8:c3:14:06:0d:ea:19:ef:91:a8:2b:
fa:0c:bb:63:1c:84:10:b6:09:6a:40:cc:e3:e4:0e:34:43:0c:
99:eb:96:40:7e:4d:ec:e0:55:7b:e3:01:93:09:29:c5:bf:80:
c3:3c:aa:25:3c:38:a6:d3:a1:bf:cb:c0:39:b0:15:73:65:ed:
8f:93:91:6a:3d:0f:ef:da:26:1d:52:6c:0b:f3:01:6c:15:c8:
5a:d9:46:30:6d:2d:0c:a2:a5:0a:96:7b:eb:15:6b:63:4a:54:
87:ff:81:f4:f4:de:bb:f8:05:ee:a5:9d:28:79:ca:e1:18:9c:
f7:83:99:d5:c2:e4:86:e8:8b:64:d6:07:e1:cf:97:3d:44:37:
a1:34:6c:0e:10:10:a5:15:d2:e6:a0:84:22:75:cd:b9:97:35:
7f:a8:2c:2a:45:3e:30:56:b8:8b:48:e9:23:f9:0c:bd:45:f3:
a0:33:14:28:af:c0:a9:f3:cf:3b:f4:64:ab:ca:75:cf:b8:5f:
0b:28:59:f7:49:67:5a:5e:ec:65:ec:f8:d1:9e:85:3e:a1:0c:
eb:90:11:19:8a:96:fe:30:e7:38:f0:fd:8d:b2:7e:86:72:00:
7c:f3:a4:d4:26:0b:5b:c4:1d:2d:29:92:49:88:89:73:3d:02:
6a:4b:7b:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:21 2025 by rpki-client