Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/BkvlB-vQBnAuyZboH3cp1UDy7Os.roa
File: BkvlB-vQBnAuyZboH3cp1UDy7Os.roa (raw, json)
Hash identifier: sdv277j+0auYddOPmps3xy8n80Fg9AfLR/1gW2YxUc8=
Subject key identifier: 06:4B:E5:07:EB:D0:06:70:2E:C9:96:E8:1F:77:29:D5:40:F2:EC:EB
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01942748971D2A6561F5272FD65A1C144B6C
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/BkvlB-vQBnAuyZboH3cp1UDy7Os.roa
Signing time: Thu 02 Jan 2025 13:50:56 +0000
ROA not before: Thu 02 Jan 2025 13:50:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200482
IP address blocks: 109.71.254.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:48:97:1d:2a:65:61:f5:27:2f:d6:5a:1c:14:4b:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 2 13:50:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=064be507ebd006702ec996e81f7729d540f2eceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:5b:97:ba:1b:32:f8:12:6e:a8:a4:3e:d3:4b:
5f:58:c3:7d:22:4c:26:85:da:88:f2:9c:05:43:e8:
93:09:d6:a8:ca:41:5b:1a:f9:b2:0f:83:43:cf:81:
fd:33:a5:55:c3:99:2c:46:6d:ef:a8:03:10:b4:aa:
65:1c:e8:67:3f:42:e5:ba:b2:c6:58:06:f0:52:a4:
0a:ef:7d:cb:9e:e3:a4:6f:0f:4b:d9:d1:36:e2:0c:
4c:35:b0:16:81:5f:d9:54:49:81:fd:58:10:65:fc:
59:9e:de:1b:dd:12:4e:d6:b1:2e:d0:dc:d6:7e:d3:
89:d8:d8:67:48:28:b5:3e:8a:64:27:3b:15:6d:3e:
41:ed:82:de:09:b7:f2:67:8a:68:31:85:94:c4:a3:
91:3b:87:a3:47:a3:ad:f7:92:65:27:97:82:a6:af:
d1:ae:00:1d:b3:74:4b:1d:ff:78:67:0a:f3:81:6f:
dc:84:3d:01:2d:cd:fe:40:75:39:e4:b9:c6:07:2d:
94:63:7b:8e:70:c5:cf:a8:13:ee:4a:a6:e2:38:3b:
fa:38:28:92:61:90:ff:f0:e6:b6:3e:f5:4d:08:7c:
04:2c:22:40:48:30:e9:e8:88:e2:ee:f9:06:48:90:
d4:4f:d1:6e:1c:d4:c9:ac:65:8c:80:c3:d7:f7:f9:
cb:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:4B:E5:07:EB:D0:06:70:2E:C9:96:E8:1F:77:29:D5:40:F2:EC:EB
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/BkvlB-vQBnAuyZboH3cp1UDy7Os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.71.254.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:c0:de:21:25:39:75:7f:74:96:59:84:bf:a2:99:89:36:bf:
ad:33:76:ed:11:82:4c:ab:00:0c:23:14:1f:29:9e:0c:81:43:
aa:34:25:ca:5c:7c:f1:dc:5e:cd:84:d0:dc:62:57:d4:76:a2:
8a:ca:cc:22:1a:39:5a:9b:4c:d2:77:43:64:a9:15:b0:9d:ee:
78:a2:12:76:4d:83:4c:89:71:1c:b4:47:ee:92:50:e7:b5:f7:
6b:b8:6f:75:e9:57:51:a6:15:b2:04:00:27:dd:13:0f:12:b9:
c4:35:12:9a:6f:b7:69:55:29:ea:32:b8:9e:ff:57:26:33:40:
74:66:f2:e5:13:fa:91:31:c4:0b:bd:4a:aa:0f:7e:29:33:5d:
6e:8a:ed:3f:0a:00:bd:37:77:60:19:d0:78:a0:d4:c3:cd:9e:
a3:73:95:cb:47:55:70:be:9e:54:8d:bb:27:36:6d:fb:c6:7b:
01:44:68:de:d9:02:24:a0:ab:be:93:1c:c4:bf:44:08:18:7a:
89:46:53:ec:d5:92:1d:59:a6:37:90:ba:63:98:84:42:0c:91:
3b:43:ec:e3:7b:c1:13:10:4d:8e:db:d9:8e:96:dd:db:91:79:
c5:04:c7:d9:1a:89:56:69:6a:5e:1f:f4:8f:dd:a4:e0:10:41:
bb:6f:ab:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 11 06:01:11 2025 by rpki-client