Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/O9eYvKuW8gBHRVtlAq7Wjf6QA9s.roa
File: O9eYvKuW8gBHRVtlAq7Wjf6QA9s.roa (raw, json)
Hash identifier: kHm3cM7aBY6ah99W2gtK7m52nUs6nI06JZTKxvqhVdA=
Subject key identifier: 3B:D7:98:BC:AB:96:F2:00:47:45:5B:65:02:AE:D6:8D:FE:90:03:DB
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 019424B2F12841C4C98C3EA3A8B9D55B5BE7
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/O9eYvKuW8gBHRVtlAq7Wjf6QA9s.roa
Signing time: Thu 02 Jan 2025 01:48:14 +0000
ROA not before: Thu 02 Jan 2025 01:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50485
IP address blocks: 159.148.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:f1:28:41:c4:c9:8c:3e:a3:a8:b9:d5:5b:5b:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 01:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3bd798bcab96f20047455b6502aed68dfe9003db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:7d:ae:70:7b:4a:9e:1a:d9:a3:2a:b4:0c:06:
18:49:7a:e2:a7:79:2c:1f:ab:2e:35:55:d3:4d:06:
63:92:f1:e5:3a:8c:87:95:65:d2:b9:14:57:e2:0f:
02:0c:3e:e6:cc:85:7e:e8:50:7c:bf:fb:db:02:bf:
10:f5:35:8e:d2:d6:fb:c5:49:74:c1:b9:f5:8e:d1:
bb:b8:21:a2:5d:e9:89:7b:ef:61:c5:76:fb:34:04:
38:f0:5e:43:db:4a:30:96:ab:ce:f6:b2:6a:31:f8:
49:1c:10:0b:9e:c3:1c:ff:c3:87:a2:de:1d:5d:ef:
2b:f5:94:87:23:7f:40:d5:4f:da:f5:c0:fa:2b:aa:
66:bf:1c:53:4b:4c:40:31:b1:03:04:d8:a5:86:e9:
47:c2:84:70:82:fb:a3:c1:dc:7f:60:24:73:66:5d:
e3:ca:97:68:72:5f:03:32:8e:c8:2e:2c:56:70:f0:
d6:ac:5b:de:d2:b8:59:e9:d0:42:a6:6a:92:85:be:
95:ab:fa:ff:86:8e:4e:fa:63:ea:b8:2a:de:29:f6:
f1:6d:d6:90:ff:61:1e:01:25:3b:92:39:87:60:83:
54:74:c5:32:54:10:30:fb:a8:7b:04:59:36:5e:91:
0e:b3:7c:49:b6:a4:b6:cd:54:7d:56:3a:48:03:77:
12:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:D7:98:BC:AB:96:F2:00:47:45:5B:65:02:AE:D6:8D:FE:90:03:DB
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/O9eYvKuW8gBHRVtlAq7Wjf6QA9s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.231.0/24
Signature Algorithm: sha256WithRSAEncryption
be:46:20:10:e5:e3:7c:de:32:61:3d:0a:6b:1d:4d:1b:31:36:
2b:ca:83:a5:14:24:b0:78:51:5e:95:12:01:f5:fa:9f:6e:47:
f7:d7:3d:15:0d:98:54:ec:50:08:6b:40:13:ae:a0:dd:df:48:
96:9d:14:48:55:ce:80:e5:f6:e8:8a:82:ef:61:8c:49:dc:8e:
fb:53:a9:4f:dd:5d:fa:b3:29:f3:6f:ce:6b:e2:44:7b:fa:02:
fc:5b:a9:71:61:c3:e2:0c:83:94:52:db:1d:88:43:8f:ec:9b:
ae:34:59:2b:b3:19:be:98:f4:1b:ac:69:22:ae:1e:a6:16:e8:
fe:7e:df:9d:9c:d2:b3:2b:04:7d:f3:ab:04:75:ef:00:30:88:
5f:68:32:e3:ef:7d:9f:7b:1c:5a:22:d2:49:6c:08:45:85:b6:
74:8a:13:d8:02:3f:35:f2:f6:9e:1c:2d:c6:00:d2:af:c4:68:
58:37:03:20:2b:b8:5f:73:dc:47:f8:b2:c8:b9:99:82:9d:f0:
3c:73:dd:cd:6e:08:ba:65:d0:b0:e6:14:d7:52:2d:3a:42:e0:
73:64:f8:84:a5:10:ac:14:64:c7:cb:fc:d0:49:c4:e4:a7:ba:
e1:0b:db:fa:20:65:5b:96:80:90:de:d8:04:ed:0b:53:04:a4:
ed:e1:f6:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:14:54 2025 by rpki-client