Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/B6Itk7Uf7eBUE8vqL-Uyrcy9RGQ.roa
File: B6Itk7Uf7eBUE8vqL-Uyrcy9RGQ.roa (raw, json)
Hash identifier: 13h2MUXXvKWvbHRapuNi0DhkSEUd3tM8HWLBR3PYcOE=
Subject key identifier: 07:A2:2D:93:B5:1F:ED:E0:54:13:CB:EA:2F:E5:32:AD:CC:BD:44:64
Certificate issuer: /CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Certificate serial: 019421B23DDDEB22B3081A41FA3D1B76BC52
Authority key identifier: 2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/B6Itk7Uf7eBUE8vqL-Uyrcy9RGQ.roa
Signing time: Wed 01 Jan 2025 11:48:36 +0000
ROA not before: Wed 01 Jan 2025 11:48:36 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202813
IP address blocks: 45.88.152.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:3d:dd:eb:22:b3:08:1a:41:fa:3d:1b:76:bc:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f93d3ba197f5ce3098bfa7700b43854eaa80e9e
Validity
Not Before: Jan 1 11:48:36 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07a22d93b51fede05413cbea2fe532adccbd4464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:50:fa:07:c9:04:09:3c:4a:c8:38:2d:6a:03:
2c:57:b9:d1:18:d3:ec:e3:db:ac:06:c4:97:39:7f:
9c:c2:7b:c9:69:d7:67:3a:92:36:c0:7b:21:87:3e:
58:c6:15:55:61:94:5e:61:5c:e0:92:68:a9:b4:90:
af:7b:2a:f8:60:01:a5:b6:a2:6f:1e:93:ef:5f:47:
5a:b2:79:75:cf:91:23:27:c7:9a:63:64:4c:92:f3:
e7:f5:b5:a6:5b:0f:9b:a3:5a:dc:73:8e:ba:85:8c:
02:ef:40:0f:e0:69:fc:8e:c5:ca:a2:3d:e7:56:f7:
18:73:db:1e:69:0b:a8:9a:61:12:87:22:c3:1e:40:
1a:63:8f:d0:61:67:90:d3:c0:3b:2b:1c:8e:bc:50:
3d:2a:4b:ba:68:c6:d9:38:d8:90:47:be:67:04:93:
c5:68:96:48:69:d6:47:d9:b5:eb:03:e3:bd:5b:26:
ad:38:90:35:6b:10:a4:38:0a:bc:9f:5e:9a:48:f1:
8d:b2:d7:0f:e3:27:27:18:8e:42:8e:e9:74:0b:bb:
0c:fb:81:46:34:1a:be:5e:f9:1e:0e:38:e7:91:1f:
34:96:1f:51:e4:81:bf:64:d1:50:ea:5a:a4:c3:11:
f6:66:a3:97:38:b0:66:40:0e:08:6e:b3:ef:4c:43:
a2:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A2:2D:93:B5:1F:ED:E0:54:13:CB:EA:2F:E5:32:AD:CC:BD:44:64
X509v3 Authority Key Identifier:
keyid:2F:93:D3:BA:19:7F:5C:E3:09:8B:FA:77:00:B4:38:54:EA:A8:0E:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/B6Itk7Uf7eBUE8vqL-Uyrcy9RGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7a87a0-8014-4605-9fb5-9e71dc24a683/1/L5PTuhl_XOMJi_p3ALQ4VOqoDp4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.152.0/22
Signature Algorithm: sha256WithRSAEncryption
73:28:4b:43:3b:81:2d:11:7d:13:be:5c:6e:f7:5f:e7:30:63:
ca:e5:ab:75:63:1e:f7:d2:fb:e4:93:4d:f0:0f:c1:54:45:8c:
1b:49:02:27:62:60:2e:c4:f3:46:02:f1:4b:6b:0b:9f:0d:5e:
56:7e:3c:d4:91:40:a4:5b:24:0e:ed:25:5a:74:12:11:0b:8b:
c2:6e:90:c6:42:0f:42:88:b2:fb:e3:c1:fd:d7:17:45:89:28:
20:89:e3:c6:61:a8:77:4f:fb:b4:fd:75:af:2e:1f:f3:4c:23:
33:30:ca:72:79:44:f3:85:b9:c5:63:8c:36:5f:31:f0:f9:26:
6e:8d:6f:af:2f:c9:04:ec:94:b3:8b:41:cd:97:cd:5f:49:58:
56:ae:09:ee:99:e5:c1:ed:ab:cc:e1:ce:18:66:ba:58:1f:69:
06:95:b1:01:fa:f1:78:fc:2d:e0:1e:89:0e:4e:bd:99:bf:80:
e1:b0:b7:c2:66:ca:c0:86:c0:f3:52:af:7e:30:3f:fc:91:05:
5b:ab:d2:1f:cf:98:f4:97:77:bb:e0:05:2a:a6:67:62:37:5a:
c0:d2:09:c2:fe:bb:01:f6:f5:66:af:37:7b:0f:5b:61:42:b6:
f4:56:5b:fa:5a:d7:fe:97:71:1c:76:e5:99:ca:95:bd:ce:5f:
57:b5:c3:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:32:12 2025 by rpki-client