Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/1XqBYVLVYk0BIaPAO0X8LSCWytM.roa
File: 1XqBYVLVYk0BIaPAO0X8LSCWytM.roa (raw, json)
Hash identifier: u/vXTbhfqo0gX9wki01EuEcDETKLEXhwp+XFEsCqd2k=
Subject key identifier: D5:7A:81:61:52:D5:62:4D:01:21:A3:C0:3B:45:FC:2D:20:96:CA:D3
Certificate issuer: /CN=131881732a3e245a959bc679e0458c39f893e46b
Certificate serial: 0193E60EA6FDDA38C31E6B954AF12C94AD19
Authority key identifier: 13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/1XqBYVLVYk0BIaPAO0X8LSCWytM.roa
Signing time: Fri 20 Dec 2024 21:52:20 +0000
ROA not before: Fri 20 Dec 2024 21:52:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 59642
IP address blocks: 5.144.180.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:e6:0e:a6:fd:da:38:c3:1e:6b:95:4a:f1:2c:94:ad:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=131881732a3e245a959bc679e0458c39f893e46b
Validity
Not Before: Dec 20 21:52:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=d57a816152d5624d0121a3c03b45fc2d2096cad3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:47:3f:e4:5c:a4:71:3d:36:d5:43:09:8b:82:
3c:41:fc:ef:a4:37:22:1d:e3:12:94:dc:02:5e:e6:
63:72:53:e6:47:cf:b0:ef:af:ba:d6:b7:13:20:f6:
85:3d:c8:67:39:73:fa:31:52:87:51:5a:25:eb:1d:
14:8b:af:88:73:cb:73:7d:9f:3c:39:96:4d:f3:e2:
ba:a4:74:f9:3f:0d:39:d5:c6:9d:23:a8:91:c1:c1:
01:32:6a:bf:2c:9f:6a:0c:72:6e:75:7f:fb:62:3d:
c6:2b:88:d3:67:e9:59:26:76:57:7c:5c:fd:e9:b2:
c5:e9:b1:4f:b0:7f:2c:3a:1e:20:6a:10:45:37:7a:
b8:7f:70:48:8d:31:af:bc:e1:5e:fb:26:1e:35:dd:
b8:db:cf:ee:73:6d:1e:0d:f6:92:38:66:d0:7c:94:
54:7e:22:85:0b:a0:87:5c:a6:cf:46:61:29:57:3b:
cb:06:c3:cf:00:4b:d5:1d:f5:bc:16:05:63:2c:e0:
02:fa:03:52:d3:66:0e:f8:36:2e:2d:36:bb:ca:d5:
4a:96:57:9b:30:b2:76:b1:b0:4e:42:57:da:5c:93:
4e:8b:65:64:23:1e:50:e3:87:39:d1:28:3e:67:88:
f3:71:3d:ba:eb:c0:94:58:7a:ed:88:f0:01:73:36:
18:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:7A:81:61:52:D5:62:4D:01:21:A3:C0:3B:45:FC:2D:20:96:CA:D3
X509v3 Authority Key Identifier:
keyid:13:18:81:73:2A:3E:24:5A:95:9B:C6:79:E0:45:8C:39:F8:93:E4:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/1XqBYVLVYk0BIaPAO0X8LSCWytM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/89f071-5631-45db-a7e5-cd6152261c6f/1/ExiBcyo-JFqVm8Z54EWMOfiT5Gs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.144.180.0/24
Signature Algorithm: sha256WithRSAEncryption
06:fa:ec:0d:15:c6:b8:14:d7:23:5e:3b:25:4a:2d:a1:aa:ac:
db:c6:2f:d2:43:a9:83:61:be:e1:57:a6:43:81:9d:d2:94:06:
11:aa:14:6f:16:8a:68:be:1f:3d:cc:7d:e1:ba:5f:8f:31:09:
6a:80:4a:65:e2:05:c4:5e:98:41:53:a1:c3:66:ae:73:67:de:
0f:11:a7:1e:88:06:73:a3:16:2f:c6:97:ec:67:7e:e9:d6:0b:
2d:19:bd:16:5f:2c:70:6d:1e:aa:3d:64:14:ad:e6:fe:33:e3:
e7:61:bf:55:53:d3:9c:8a:67:6a:3e:f3:24:b1:81:2e:a6:71:
4c:21:fc:65:9a:5c:da:a6:f1:09:5e:aa:5e:88:2b:bd:39:f7:
bc:48:d4:64:8a:cc:a9:f7:55:cf:53:a9:7b:05:3f:a5:bf:bc:
15:6c:7d:1e:4f:ca:05:67:47:36:81:4d:07:86:bc:3e:f7:83:
bf:54:4e:02:7f:4d:a1:4d:7a:8a:4c:a9:07:10:59:d9:68:89:
5d:16:ee:f8:f8:27:2c:be:d7:5f:7d:64:7d:47:3c:74:3c:c9:
a2:f6:65:0f:09:0c:9d:95:d7:42:1f:88:01:14:e4:9a:0f:9d:
bc:4d:fd:99:68:ad:35:9e:a6:d3:a0:04:97:3e:3a:f8:92:de:
a9:ff:54:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 17:20:08 2025 by rpki-client