Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/vVEiIbk0UPrqSXruVUC68cwyVm0.roa
File: vVEiIbk0UPrqSXruVUC68cwyVm0.roa (raw, json)
Hash identifier: Mep2LlWiMGDpppfwoJlW62IY5pmom2/Hupc1s91l9EA=
Subject key identifier: BD:51:22:21:B9:34:50:FA:EA:49:7A:EE:55:40:BA:F1:CC:32:56:6D
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 019424B2F7777831787AFEB5762B7D54CCEA
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/vVEiIbk0UPrqSXruVUC68cwyVm0.roa
Signing time: Thu 02 Jan 2025 01:48:16 +0000
ROA not before: Thu 02 Jan 2025 01:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 199034
IP address blocks: 159.148.50.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b2:f7:77:78:31:78:7a:fe:b5:76:2b:7d:54:cc:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 2 01:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bd512221b93450faea497aee5540baf1cc32566d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:76:e2:04:86:05:47:7d:55:d7:86:3a:53:71:
c5:19:95:6d:c3:3d:f7:f3:c9:d3:ff:8a:40:32:93:
d5:c4:a6:a9:ff:de:79:61:84:37:56:e3:9a:b2:a4:
34:88:cb:3a:cd:d8:dc:7b:a1:be:a6:9b:4c:a8:bb:
b7:5f:e4:75:c0:07:92:86:6f:96:ff:96:5e:1a:12:
91:ae:5d:04:25:f1:44:57:9e:cb:0b:d9:94:a3:53:
2b:3b:da:68:13:0c:89:5a:65:f4:84:fb:69:4e:23:
87:51:a3:b8:59:64:1c:26:c2:53:4d:f9:46:56:42:
c1:a7:d2:1b:31:e2:d7:5b:42:52:1b:10:30:ab:cf:
aa:74:2a:35:c2:7c:61:45:f4:ca:f2:ce:a8:6d:4c:
89:58:c9:cd:29:19:8e:3e:4c:d3:e3:7e:03:5c:83:
2a:91:e2:4b:f8:c4:95:ad:d9:71:25:02:a2:e1:15:
93:88:c6:52:ae:e7:48:fc:48:66:71:48:02:f6:68:
ce:9f:2c:fd:84:3b:b0:16:11:7a:96:50:80:bf:96:
3b:f5:10:56:30:b8:5a:ba:e8:14:ee:54:a4:72:89:
e4:64:e2:1b:c8:92:f1:79:62:cf:73:a8:c9:09:3b:
09:ab:2d:8f:ed:42:8c:53:74:84:84:1e:d6:65:94:
d4:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:51:22:21:B9:34:50:FA:EA:49:7A:EE:55:40:BA:F1:CC:32:56:6D
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/vVEiIbk0UPrqSXruVUC68cwyVm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.50.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:1b:89:8a:de:06:74:2c:e6:ee:66:a7:3f:9f:65:3b:ff:2d:
d4:81:04:21:bd:6c:c4:d0:5b:de:61:ac:35:1d:0b:28:d4:61:
4e:be:d2:7e:3d:34:6f:83:c9:f9:27:cd:1c:1b:28:7f:c4:4f:
9c:38:ce:5c:fa:b3:e0:06:17:63:71:c8:93:8e:d5:88:bc:38:
47:77:d5:a7:5a:59:10:af:e4:13:69:05:1a:9c:7f:13:d9:80:
b4:11:d1:03:0c:f9:5d:35:04:f3:ec:c4:8e:16:2b:75:d6:4c:
2f:7f:c7:ec:3d:e2:48:df:bf:d9:04:ad:2f:a2:7e:2d:3b:9a:
5d:d3:1d:da:c0:35:d2:f6:01:9b:b5:50:32:74:9f:da:a0:23:
5f:89:45:94:0b:be:e5:3f:69:9a:bd:2c:c5:06:bc:df:b8:47:
0d:e0:e3:56:a8:e1:0c:01:c0:93:98:7e:d7:cf:38:47:67:28:
34:4e:55:96:c2:09:e8:82:35:e6:53:f1:18:58:73:6c:3a:4d:
a2:a8:2e:6a:d3:7e:31:18:62:b2:4e:45:07:50:00:16:9f:2c:
9c:f5:29:95:58:97:fb:c0:b0:68:f9:ca:e9:a7:2c:7f:c9:dc:
06:21:92:5d:5b:60:41:1f:7e:23:b7:a4:76:cc:d7:d0:c2:41:
0c:07:ed:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:27:59 2025 by rpki-client