Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/rUdLZ9H9NmIsZBannjA8IlEwiOU.roa
File: rUdLZ9H9NmIsZBannjA8IlEwiOU.roa (raw, json)
Hash identifier: UpDDwAK8lbQbhgQsmAizBJjhr50ngPTJj4DgWqUhhss=
Subject key identifier: AD:47:4B:67:D1:FD:36:62:2C:64:16:A7:9E:30:3C:22:51:30:88:E5
Certificate issuer: /CN=9f0743496c7ff3effb870601139cad9d2f271e10
Certificate serial: 01941FFA38F8C8EB054C484DDE91F54B23FE
Authority key identifier: 9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/rUdLZ9H9NmIsZBannjA8IlEwiOU.roa
Signing time: Wed 01 Jan 2025 03:47:59 +0000
ROA not before: Wed 01 Jan 2025 03:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 396356
IP address blocks: 157.97.121.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:38:f8:c8:eb:05:4c:48:4d:de:91:f5:4b:23:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9f0743496c7ff3effb870601139cad9d2f271e10
Validity
Not Before: Jan 1 03:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ad474b67d1fd36622c6416a79e303c22513088e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:f7:97:39:4d:e7:5e:36:a0:9e:8c:a6:f8:ca:
d1:6e:ed:89:e0:68:56:66:0e:af:b5:72:cc:86:bb:
28:29:a0:1b:a3:dd:4a:9b:8f:f9:3d:11:18:aa:f5:
ef:8d:af:8a:99:89:2f:8e:7d:e0:d1:a6:e0:33:cf:
e0:bb:eb:34:4a:6d:aa:d6:8c:27:0f:17:a0:33:40:
30:ae:17:18:b0:f2:91:6e:f1:d0:09:60:48:1c:a0:
f8:e5:c7:3f:82:51:60:ea:85:98:4d:8f:ab:3b:bc:
b8:c9:e7:91:9f:73:3b:fd:48:5e:fb:49:cc:de:29:
f6:93:56:2a:c0:5a:14:a9:42:1e:d6:8f:17:34:e8:
0f:ab:14:5c:c3:bf:6b:bc:79:a3:44:c4:d9:e7:43:
fb:d2:11:27:c5:b7:f2:e7:dd:14:8a:65:5d:ed:93:
60:8b:e3:b6:9b:7e:d1:a9:a7:52:11:37:91:62:28:
98:f7:e2:08:e4:68:e0:5b:f4:f3:9c:92:4d:73:23:
0e:75:1c:1e:bf:2f:53:97:b7:1e:e8:3d:1f:ec:8a:
59:a7:cc:6c:b2:05:02:a8:30:45:9a:bc:c0:89:93:
8b:f1:25:b6:35:35:d2:5a:f5:c2:7f:f8:46:2e:c1:
d5:18:04:2c:93:a3:0c:cf:43:a3:18:1f:1e:21:e4:
01:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:47:4B:67:D1:FD:36:62:2C:64:16:A7:9E:30:3C:22:51:30:88:E5
X509v3 Authority Key Identifier:
keyid:9F:07:43:49:6C:7F:F3:EF:FB:87:06:01:13:9C:AD:9D:2F:27:1E:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwdDSWx_8-_7hwYBE5ytnS8nHhA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/rUdLZ9H9NmIsZBannjA8IlEwiOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/22b7ab-fc11-407a-bd3c-63411367d90a/1/nwdDSWx_8-_7hwYBE5ytnS8nHhA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.97.121.0/24
Signature Algorithm: sha256WithRSAEncryption
62:e8:e2:7c:d8:21:4c:49:6e:ca:00:f8:1d:c3:18:63:e7:ca:
bf:c2:4f:8c:40:00:2e:37:a7:38:23:cc:b0:0e:07:bb:17:03:
32:79:69:61:db:25:2a:56:de:22:8e:83:0a:66:66:4e:0a:47:
bd:a6:9b:13:c1:d4:2c:ea:9d:4a:57:11:f4:14:1c:3d:97:f8:
9c:72:65:c5:81:4a:1f:a5:ce:77:40:bc:9e:b0:50:7a:e9:48:
90:96:ec:2b:7b:94:c9:3d:0c:08:92:61:93:0f:b4:cf:c4:b8:
40:8e:be:5f:61:c6:74:83:50:6a:5a:8e:5a:55:bd:eb:d8:89:
77:b9:51:b2:dc:9c:27:d5:65:10:a9:62:c1:74:53:8a:e7:77:
2f:d3:68:8e:ec:4a:5a:59:5d:35:4d:9f:0b:01:61:72:86:c0:
fd:a1:20:99:81:fb:c6:25:9c:10:6c:f1:fe:82:b9:56:2a:a1:
89:e5:fc:20:11:e1:50:60:3a:d5:30:76:bf:2a:08:73:42:6c:
af:a8:fa:a6:1f:07:59:e1:cf:c9:fe:5b:28:b8:8e:14:c1:0a:
2a:b6:45:6b:a2:1c:89:70:c1:6f:e1:86:a9:d2:b9:10:70:be:
84:c2:a2:b9:aa:9b:30:66:d7:52:0c:63:ea:0f:ab:0e:94:48:
01:0c:0c:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 01:27:12 2025 by rpki-client