Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/eXmLXScgkQlZFJY2owYgI3HJtns.roa
File: eXmLXScgkQlZFJY2owYgI3HJtns.roa (raw, json)
Hash identifier: aE7sjemkm9QvnBnknfgKs5kPN5UFKUUkPmfsuOVG/yw=
Subject key identifier: 79:79:8B:5D:27:20:91:09:59:14:96:36:A3:06:20:23:71:C9:B6:7B
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 01942746ECC1C87266B7D4B596E2B38900EC
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/eXmLXScgkQlZFJY2owYgI3HJtns.roa
Signing time: Thu 02 Jan 2025 13:49:07 +0000
ROA not before: Thu 02 Jan 2025 13:49:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 13237
IP address blocks: 89.19.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:46:ec:c1:c8:72:66:b7:d4:b5:96:e2:b3:89:00:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Jan 2 13:49:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=79798b5d2720910959149636a306202371c9b67b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:51:56:73:8b:17:8d:65:b8:4b:b1:aa:99:b9:
8a:a1:45:74:22:51:aa:8e:63:1e:d7:9e:46:4f:8b:
c8:88:e6:ae:ed:39:f1:1e:7e:d2:f4:78:c4:67:57:
8a:2c:db:6c:85:f7:5f:00:08:40:23:e1:3a:f6:81:
f6:b9:d6:c3:8b:bd:ba:1e:d2:5b:de:59:2e:6b:a9:
76:87:76:13:77:51:41:12:98:4c:99:1b:c2:25:d3:
7b:d6:b5:8e:7b:54:6d:8b:41:50:50:17:1f:54:6e:
bb:7c:08:42:9a:05:60:b4:37:f6:3f:5b:64:d2:40:
12:f7:e7:e5:70:4e:52:2a:86:be:24:14:b3:c4:50:
4c:b2:39:34:42:c8:eb:27:02:ef:11:ea:4c:fd:57:
44:10:c8:4d:d3:8f:39:3c:92:46:9c:59:4b:7d:81:
e5:9a:1d:75:0a:f0:82:05:b7:c0:12:e7:a0:8b:84:
06:c1:5b:40:c9:f4:a4:b2:6b:f1:42:c5:75:fb:7a:
9e:b9:13:67:37:9e:59:67:72:91:da:b5:56:c5:f6:
12:08:87:9c:d7:9c:d7:83:ba:c7:96:78:ee:c1:dc:
c4:d6:cb:62:02:fe:58:04:d0:35:ec:14:49:58:d7:
b9:51:d5:de:ac:70:5a:94:f0:00:76:36:aa:6d:63:
c8:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:79:8B:5D:27:20:91:09:59:14:96:36:A3:06:20:23:71:C9:B6:7B
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/eXmLXScgkQlZFJY2owYgI3HJtns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.19.232.0/24
Signature Algorithm: sha256WithRSAEncryption
49:40:06:82:36:01:82:f4:1e:99:32:42:68:4c:d0:54:b2:6c:
31:ca:c6:fd:99:cf:df:12:8a:36:78:b1:49:fc:b5:9e:23:4e:
2b:39:81:bd:53:54:da:a9:91:5a:c5:a7:37:24:ea:e0:a2:37:
5e:33:e1:44:c4:95:7d:ef:01:d6:2b:93:77:2d:e7:0d:81:0b:
c2:1c:36:d2:7b:1c:8a:05:6b:1c:ad:6e:fd:5a:0b:95:6b:7d:
03:6f:9f:7b:93:d3:49:72:65:1b:cc:71:6e:ba:27:54:7a:59:
aa:02:b5:b8:1a:42:b4:de:45:9d:c0:8a:67:18:03:95:78:e5:
8c:f4:2a:f4:1b:fe:82:60:9a:7a:76:03:18:f3:5c:eb:8d:a0:
e6:03:d9:ed:34:40:e4:ea:cc:d2:a0:0b:e5:f6:40:1e:c9:a3:
92:b0:64:92:7f:41:50:73:eb:8c:4f:62:9d:00:5b:35:1b:4a:
3d:99:48:5a:6f:e4:d0:97:43:82:3b:8d:93:5d:58:be:17:f2:
da:6b:db:fa:8b:75:ce:35:b5:8d:6f:e8:4d:7b:5c:5e:8d:56:
4a:8b:43:c6:64:d6:7e:74:37:94:06:51:bc:4d:8c:29:22:94:
b8:5a:5a:26:b2:6f:67:58:34:e0:be:28:82:8b:94:93:f0:d0:
56:99:4a:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:58:22 2025 by rpki-client