Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/AjV2rlIwTElr058YXLjGHHrdXf0.roa
File: AjV2rlIwTElr058YXLjGHHrdXf0.roa (raw, json)
Hash identifier: LTFD7RWDdMyUwIhuINghYkedTIuVGScYQK467Diulf0=
Subject key identifier: 02:35:76:AE:52:30:4C:49:6B:D3:9F:18:5C:B8:C6:1C:7A:DD:5D:FD
Certificate issuer: /CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Certificate serial: 0194DA2997C4C8ECBA53F5254F00DBB468AC
Authority key identifier: B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/AjV2rlIwTElr058YXLjGHHrdXf0.roa
Signing time: Thu 06 Feb 2025 07:29:06 +0000
ROA not before: Thu 06 Feb 2025 07:29:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50371
IP address blocks: 37.32.74.0/24 maxlen: 24
185.129.92.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:da:29:97:c4:c8:ec:ba:53:f5:25:4f:00:db:b4:68:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4e82ba1715d6aeae5b0102725ffe0c834735d7d
Validity
Not Before: Feb 6 07:29:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=023576ae52304c496bd39f185cb8c61c7add5dfd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:19:95:61:24:a7:0e:0f:96:e8:70:20:dd:78:
60:e9:0d:f1:c4:cc:6e:59:fe:cc:62:34:d1:f4:1a:
5e:28:c1:af:07:c6:ac:7a:d5:d6:8b:90:fc:3b:c5:
f7:00:11:3e:52:06:75:6f:67:d7:b6:8a:1b:9f:5e:
00:58:85:21:32:5a:68:0a:54:77:8f:d8:a9:c1:06:
c8:9a:0e:1c:21:e3:4e:b1:d7:4c:c4:8c:20:06:1f:
57:e9:4f:ba:0f:02:c1:4e:0b:ae:72:ba:c0:52:50:
eb:df:04:09:39:25:61:b5:94:f7:a5:63:6b:e6:8c:
7d:26:6a:15:73:f4:88:3d:c3:08:41:e3:cb:ba:37:
89:77:54:98:d1:e0:f0:b0:51:64:bf:84:29:92:26:
15:bb:2f:f3:70:9d:44:78:1c:23:b3:df:75:67:55:
3c:33:07:0b:4f:24:5a:aa:08:5c:8a:77:66:37:7f:
ef:ae:b0:3c:8c:f0:f2:53:cd:27:02:4b:83:e7:ad:
29:a0:0d:8f:49:6b:cb:8c:2a:ee:87:0d:18:c9:86:
4d:e3:57:00:ba:0b:ca:a0:d8:91:0e:3b:ad:68:e8:
0a:fe:81:06:86:06:35:96:ad:99:47:58:38:84:83:
f9:d0:c1:00:57:36:dc:70:3c:3f:9d:f1:f2:ec:24:
14:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:35:76:AE:52:30:4C:49:6B:D3:9F:18:5C:B8:C6:1C:7A:DD:5D:FD
X509v3 Authority Key Identifier:
keyid:B4:E8:2B:A1:71:5D:6A:EA:E5:B0:10:27:25:FF:E0:C8:34:73:5D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tOgroXFdaurlsBAnJf_gyDRzXX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/AjV2rlIwTElr058YXLjGHHrdXf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/9151c0-3326-4801-9363-c7d19930d66d/1/tOgroXFdaurlsBAnJf_gyDRzXX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.32.74.0/24
185.129.92.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:0a:8a:dd:05:84:c4:42:fd:05:0f:d1:ce:3a:00:b7:fc:41:
26:3d:53:c3:99:ec:67:9e:d4:8e:28:a2:8f:d7:41:7d:21:ea:
39:97:71:2f:cb:34:c1:c1:0f:30:ea:5c:01:00:a5:b9:3b:f0:
f8:2d:ee:17:cc:59:a4:5c:8a:d0:ac:2b:1a:ac:ec:71:c4:b0:
45:2b:15:53:b3:39:bc:b3:12:ad:e7:62:6c:be:34:f5:3c:5c:
3e:59:6c:ab:8b:ac:32:d2:64:37:22:7d:36:ea:df:1d:c9:11:
d8:6f:78:ab:e4:3e:6f:e8:73:bd:02:13:1d:e0:b8:72:13:00:
f7:d1:b8:ab:61:3c:d0:ac:22:ff:63:c4:08:c9:d0:fd:b3:4e:
9c:30:c8:c8:d1:63:0c:94:23:62:c2:ed:c6:ed:4a:ba:bc:08:
cb:05:75:33:89:89:4d:cc:15:5d:b9:ef:70:7b:51:8e:57:49:
ca:a7:5b:8f:ca:29:34:3e:55:c6:ab:52:42:af:4d:e7:e2:32:
d3:67:e2:f5:00:fe:88:82:db:af:45:73:75:02:52:65:eb:f7:
7e:89:09:08:44:cf:b2:a6:30:be:93:c0:3e:1a:0c:e4:1b:5c:
d8:e8:cb:89:54:3f:c6:03:f8:78:9f:c2:54:93:1c:81:be:f0:
47:1f:33:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:12:05 2025 by rpki-client