Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/ASEl7JqkqClmtX95ZbF2n_f_sMc.roa
File: ASEl7JqkqClmtX95ZbF2n_f_sMc.roa (raw, json)
Hash identifier: ml87fD1oXz3GGfpvMxIZMFvwwbtQeqmI4KZWPfbpWPA=
Subject key identifier: 01:21:25:EC:9A:A4:A8:29:66:B5:7F:79:65:B1:76:9F:F7:FF:B0:C7
Certificate issuer: /CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Certificate serial: 019424B3ADD5518AE0BC0E26E3E5928AB0ED
Authority key identifier: 52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/ASEl7JqkqClmtX95ZbF2n_f_sMc.roa
Signing time: Thu 02 Jan 2025 01:49:02 +0000
ROA not before: Thu 02 Jan 2025 01:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206150
IP address blocks: 195.191.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:b3:ad:d5:51:8a:e0:bc:0e:26:e3:e5:92:8a:b0:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52dc9c218b510c07bc6659b09fbd32afe68abfd2
Validity
Not Before: Jan 2 01:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=012125ec9aa4a82966b57f7965b1769ff7ffb0c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ec:f7:f3:06:74:2f:66:31:96:f0:9b:45:17:
71:5b:93:64:3b:7a:a8:ca:a5:9f:f3:b7:2c:e0:f1:
e3:0a:7d:2a:3f:a1:0f:d8:03:14:21:95:28:a5:a9:
3f:8c:cc:0b:a0:24:7d:6a:76:76:e1:ee:14:44:65:
32:cc:7d:6d:6a:d6:13:db:7b:e7:68:ee:08:6a:34:
ed:56:77:22:ba:62:5b:3c:74:23:6e:1e:c8:1f:6f:
25:00:b5:5c:6b:14:bd:b8:da:9f:f1:f6:0f:96:94:
d7:84:e1:ec:f8:fb:6b:c3:d8:94:3d:67:70:f9:de:
ef:3d:38:af:8f:d6:1b:31:15:cd:11:4f:cc:e3:de:
7f:4c:ac:91:1a:f0:db:6c:82:6d:c9:ba:a4:3f:a9:
6c:a3:bb:7d:b8:f5:38:53:69:c2:2b:8c:a2:0b:85:
0f:a7:e0:6a:d5:24:e0:ea:76:26:a4:94:8a:37:73:
91:74:01:06:aa:d8:c3:cc:c5:d5:06:97:41:b0:73:
3a:fd:40:60:4e:38:94:77:01:61:ac:7d:23:90:71:
fc:56:59:bf:06:db:b2:7a:46:91:35:1e:e5:09:f4:
a3:9c:5b:4c:28:fe:4b:62:53:f8:89:ff:b8:92:0d:
6f:61:cd:9c:85:3e:91:49:eb:4e:28:22:fc:91:56:
36:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:21:25:EC:9A:A4:A8:29:66:B5:7F:79:65:B1:76:9F:F7:FF:B0:C7
X509v3 Authority Key Identifier:
keyid:52:DC:9C:21:8B:51:0C:07:BC:66:59:B0:9F:BD:32:AF:E6:8A:BF:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UtycIYtRDAe8Zlmwn70yr-aKv9I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/ASEl7JqkqClmtX95ZbF2n_f_sMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/409b7e-1275-43ed-af0f-52f97b277d1f/1/UtycIYtRDAe8Zlmwn70yr-aKv9I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.191.144.0/24
Signature Algorithm: sha256WithRSAEncryption
89:7d:31:38:2d:e8:24:3b:c5:38:c0:4e:1b:2b:a8:11:45:40:
e1:92:8c:d9:03:8b:a5:9f:83:1c:23:2a:cf:25:01:e1:31:6a:
80:a2:0c:72:fe:c4:f0:48:56:fc:14:9a:b7:bb:f1:d6:89:0c:
b2:c8:6e:a6:84:12:e9:d1:1e:20:7f:47:fe:47:b9:de:d1:97:
af:90:a2:37:8f:05:b7:2e:2e:5b:b7:d4:85:55:99:5e:ac:0a:
bf:d3:68:0d:6b:3a:1f:ef:6c:94:c7:7e:de:c4:6a:4e:b4:f4:
60:de:d4:07:2f:b7:f0:e4:b8:1f:59:4c:0b:1c:37:23:31:6f:
aa:69:21:35:61:d2:c0:6e:b9:65:b1:ec:1c:29:38:41:26:4c:
26:fa:e4:f9:42:6a:cc:18:3f:22:28:5d:ab:c9:33:70:f5:58:
d9:44:5e:9f:85:cd:07:32:51:bb:8f:5f:75:e3:bf:96:f1:d2:
7b:6c:93:44:95:9e:ad:f0:5c:24:52:8c:28:d5:ba:01:d7:8f:
0d:ff:5b:b5:1b:fc:ed:57:c4:73:4b:4f:c1:96:34:aa:0a:ce:
e9:e5:31:d8:c0:07:3c:aa:f9:de:e5:ab:5f:e7:dc:7f:07:5e:
af:49:9c:96:a0:db:e6:a9:9c:c4:eb:42:4d:a4:d5:b2:0e:20:
f8:43:95:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 07:29:06 2025 by rpki-client