Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/SGcPY27VqhyJZeooTSbUIJ2FNgY.roa
File: SGcPY27VqhyJZeooTSbUIJ2FNgY.roa (raw, json)
Hash identifier: cGlxRhHdbC0906joxmmBxTil+xMw3PfzUvdeVwSN0ho=
Subject key identifier: 48:67:0F:63:6E:D5:AA:1C:89:65:EA:28:4D:26:D4:20:9D:85:36:06
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 0197DE92A7A7E6BE862B00B946C1C69EB8F3
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/SGcPY27VqhyJZeooTSbUIJ2FNgY.roa
Signing time: Sun 06 Jul 2025 07:10:42 +0000
ROA not before: Sun 06 Jul 2025 07:10:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 834
IP address blocks: 87.248.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:de:92:a7:a7:e6:be:86:2b:00:b9:46:c1:c6:9e:b8:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jul 6 07:10:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=48670f636ed5aa1c8965ea284d26d4209d853606
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:32:67:01:cd:af:da:c0:e1:9a:20:ee:72:a7:
d6:0c:a3:3c:5b:7f:71:13:e1:71:5e:29:d9:41:ad:
fd:23:d6:09:50:c8:c7:e0:6a:78:20:be:33:64:84:
ca:9d:da:57:ce:b9:ab:60:d5:94:74:8d:b8:35:c0:
88:01:8c:bf:79:22:04:1b:63:04:39:39:f9:b4:ee:
3b:16:3e:a7:67:29:5d:87:1b:f8:7b:65:0a:cb:51:
80:e6:2c:9f:0f:a1:31:32:8a:19:5b:52:ef:a3:51:
e3:e8:52:b5:f9:cc:66:eb:71:27:59:e2:a1:ef:49:
d7:29:54:62:ea:f9:e5:27:34:bd:b9:f5:0f:69:1f:
43:f4:0f:ff:d9:7d:90:3d:b9:ed:2d:c5:12:c3:67:
1d:b2:81:01:cc:88:e7:56:c8:3f:96:6b:e0:41:8e:
ba:42:da:da:12:c0:60:18:39:55:fc:e5:b2:9a:d4:
bb:42:b8:dd:0b:8c:9c:b8:67:4b:13:ad:7a:67:48:
85:c6:4a:83:e2:5b:9f:1d:ee:27:73:b3:5a:de:05:
4f:89:68:02:f5:35:fe:35:20:ff:b4:2a:31:d0:d8:
85:7f:0e:28:b3:d0:eb:6d:1f:4c:75:34:16:88:58:
c2:a5:94:fc:64:37:b0:b4:8f:39:8c:0c:28:e1:d7:
29:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:67:0F:63:6E:D5:AA:1C:89:65:EA:28:4D:26:D4:20:9D:85:36:06
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/SGcPY27VqhyJZeooTSbUIJ2FNgY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.134.0/24
Signature Algorithm: sha256WithRSAEncryption
13:2b:39:a4:5d:c2:75:61:dd:05:94:d1:9b:e7:0a:06:dc:83:
e8:38:71:a9:97:54:e4:dd:6b:ce:2d:e2:c3:5e:a9:cc:20:d1:
f7:91:db:e8:8e:a4:56:75:e1:2e:71:b3:48:92:48:24:09:de:
f7:cb:bf:13:25:c2:94:94:2a:d5:21:d8:d0:26:cc:75:b4:21:
bc:f8:53:0c:3e:a4:ae:b1:2a:ca:81:87:43:72:0c:af:db:c0:
d5:b2:c4:6e:7e:dc:44:96:90:f0:d4:ba:1c:50:ca:89:37:2d:
b3:3c:a5:0d:39:32:4a:3e:e8:10:3b:ec:7f:d3:e9:bf:b7:1d:
53:ad:1b:2e:5a:8f:22:18:87:55:0f:54:ea:6d:85:49:00:70:
03:f8:51:9a:3b:94:88:11:9e:48:ef:b0:6f:bc:35:27:da:f7:
67:a6:61:22:cc:eb:1d:9d:1b:7d:42:df:c5:c4:53:f0:d1:6b:
56:01:72:1b:4f:1c:e8:92:1d:b8:6e:6e:7a:a6:3b:1a:3d:f1:
99:e3:33:a3:55:89:1e:4f:51:6c:65:dc:5b:57:6b:91:92:78:
79:a0:86:09:20:fb:96:1d:df:fc:e5:b4:12:fa:d9:81:69:bb:
7a:7c:eb:29:a5:d8:21:7d:d5:78:32:24:93:35:0f:90:8f:b3:
61:ee:1a:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jul 29 07:32:10 2025 by rpki-client