Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/sVxOLshODBI6ziVTNi6oylcd2ys.roa
File: sVxOLshODBI6ziVTNi6oylcd2ys.roa (raw, json)
Hash identifier: Oe713nlsZkxa0Aoi3RE6eX6F7bYxb5qp318EvRjoHJ8=
Subject key identifier: B1:5C:4E:2E:C8:4E:0C:12:3A:CE:25:53:36:2E:A8:CA:57:1D:DB:2B
Certificate issuer: /CN=0d722e4513a39678d8ab23b2d649775340518cb9
Certificate serial: 018D5F80E763FB2CF898C2E5B0E8720297E7
Authority key identifier: 0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/sVxOLshODBI6ziVTNi6oylcd2ys.roa
Signing time: Wed 31 Jan 2024 12:31:39 +0000
ROA not before: Wed 31 Jan 2024 12:31:39 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 21859
IP address blocks: 89.249.200.0/24 maxlen: 24
89.249.201.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8d:5f:80:e7:63:fb:2c:f8:98:c2:e5:b0:e8:72:02:97:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d722e4513a39678d8ab23b2d649775340518cb9
Validity
Not Before: Jan 31 12:31:39 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b15c4e2ec84e0c123ace2553362ea8ca571ddb2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:07:89:05:a2:42:e1:e2:41:35:58:00:b7:9b:
63:47:ef:a6:f3:0a:0f:31:17:66:3d:a2:8d:33:85:
13:5d:f1:f8:8d:c9:65:9d:05:0f:be:b8:d5:ef:17:
53:da:a2:b9:ef:dc:c5:09:c0:6d:92:93:0e:6c:34:
71:12:cc:c6:05:3c:e4:b9:1d:b7:a7:cc:00:8b:7d:
d2:99:ac:24:0a:77:32:75:4a:af:d6:ab:8c:00:e1:
c7:f4:70:b4:92:ab:99:7a:c7:b2:5d:56:34:26:87:
80:30:00:d0:44:93:7a:d5:b4:58:e4:e3:34:fa:88:
d7:19:a3:87:2f:73:e9:43:e1:04:f4:99:13:d4:12:
35:6c:f8:71:34:de:ef:82:15:29:21:12:94:9c:5d:
3c:a6:64:cb:2f:03:11:d9:61:7a:bc:99:65:b5:15:
24:34:71:1b:17:9d:7c:66:6f:e7:09:4c:80:c6:b6:
20:aa:15:eb:f7:11:41:61:58:2c:ec:c4:e6:fa:33:
f7:9e:51:ff:46:34:72:a3:d4:cc:8c:c2:7e:61:82:
62:a7:2c:00:4a:1d:ed:9d:c0:6b:3b:f5:9c:b6:0c:
34:1e:e5:fc:3a:7c:5d:1c:8c:d2:25:b3:f1:fd:53:
93:23:7b:82:4a:89:47:b2:9d:95:04:d0:9a:cb:69:
65:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:5C:4E:2E:C8:4E:0C:12:3A:CE:25:53:36:2E:A8:CA:57:1D:DB:2B
X509v3 Authority Key Identifier:
keyid:0D:72:2E:45:13:A3:96:78:D8:AB:23:B2:D6:49:77:53:40:51:8C:B9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXIuRROjlnjYqyOy1kl3U0BRjLk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/sVxOLshODBI6ziVTNi6oylcd2ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1c084c-982d-4098-af42-3425b125eaa7/1/DXIuRROjlnjYqyOy1kl3U0BRjLk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.249.200.0/23
Signature Algorithm: sha256WithRSAEncryption
be:a2:19:6f:ba:d4:d8:55:54:40:77:5e:8b:3a:3f:a4:9f:78:
b5:f6:b5:df:af:32:78:77:cf:2f:f8:88:74:d8:c8:fd:6b:a3:
0a:29:b5:26:c7:25:4f:56:3a:8b:da:f1:4a:07:b0:23:2b:d7:
68:38:56:23:aa:3e:1f:2f:b7:f1:5a:54:95:58:1c:d5:15:07:
53:56:6e:6e:f7:08:80:67:57:94:a0:b5:11:cc:48:db:82:8a:
6b:7c:4f:15:1c:a5:8f:c2:59:22:a6:f2:e1:b4:bf:45:39:ed:
bb:ce:7f:73:e6:97:58:b9:92:26:42:98:b0:b7:d3:c9:b1:60:
d8:1b:ef:a3:95:26:f2:fb:9a:8a:57:7c:64:cc:5a:f2:ff:90:
7a:f7:30:3e:c7:a2:e9:99:25:0a:5a:3a:1c:99:b7:de:59:45:
8b:03:e8:a1:4b:2f:83:e6:9f:c2:a5:3d:ce:e6:d1:ec:e2:ed:
b6:a0:15:b3:bb:84:b1:35:27:17:0d:46:2e:a8:93:48:c7:22:
31:4e:c0:7c:e7:0a:a1:f1:f8:db:08:b6:e5:eb:ac:ed:56:8d:
db:43:29:04:cc:4f:27:d9:c3:a9:fc:99:7d:9f:3c:87:f8:69:
9f:24:15:16:9c:ff:93:f6:cd:28:c0:84:02:95:84:76:be:83:
90:a4:c9:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:04:53 2025 by rpki-client