Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/b30e5d-8b3b-4287-9b3b-8232fa3e629d/1/8iF0TI75PKxA6luqVxe6AcPUdIw.roa
File: 8iF0TI75PKxA6luqVxe6AcPUdIw.roa (raw, json)
Hash identifier: zuZGyASOIUwUAnK/KJcy85MR7JAwFUMnhbd2U54FQPI=
Subject key identifier: F2:21:74:4C:8E:F9:3C:AC:40:EA:5B:AA:57:17:BA:01:C3:D4:74:8C
Certificate issuer: /CN=d7d0674bd6f0cc9175219a328c8b396829f6c0af
Certificate serial: 01941FFA254CF65DC1FE7A28860956EDF138
Authority key identifier: D7:D0:67:4B:D6:F0:CC:91:75:21:9A:32:8C:8B:39:68:29:F6:C0:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/19BnS9bwzJF1IZoyjIs5aCn2wK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/b30e5d-8b3b-4287-9b3b-8232fa3e629d/1/8iF0TI75PKxA6luqVxe6AcPUdIw.roa
Signing time: Wed 01 Jan 2025 03:47:54 +0000
ROA not before: Wed 01 Jan 2025 03:47:54 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1136
IP address blocks: 89.147.32.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:25:4c:f6:5d:c1:fe:7a:28:86:09:56:ed:f1:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7d0674bd6f0cc9175219a328c8b396829f6c0af
Validity
Not Before: Jan 1 03:47:54 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f221744c8ef93cac40ea5baa5717ba01c3d4748c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:bb:ec:62:90:b4:c6:32:b3:70:51:6a:6c:03:
13:65:06:13:6b:21:0c:fe:97:74:fa:7e:a2:10:2a:
00:ee:1d:d7:6f:b4:ee:dd:b6:39:bc:0d:d1:01:0c:
fb:21:9f:3d:ca:1c:31:c4:c6:15:7c:8d:29:13:14:
c8:64:d6:40:8a:ff:66:64:d4:72:4e:76:76:60:e0:
b9:a6:2e:ef:d8:36:5b:3a:cd:c5:7b:a0:5e:b5:92:
ef:d8:29:3d:52:d1:8b:07:8c:45:a6:54:da:11:d1:
8b:8a:65:b6:3c:c3:d5:29:6f:43:a9:0d:ca:22:ef:
85:9e:c0:73:fc:ef:cb:aa:a0:db:cf:ae:12:11:8c:
3a:06:ae:70:8c:af:54:85:d1:07:22:75:94:63:18:
a9:43:ea:38:82:da:4e:b5:5f:ad:f2:9e:50:78:9d:
e8:e6:5a:b0:71:a6:2b:4a:26:2a:30:02:78:1a:8f:
8d:eb:06:5b:fc:4b:39:03:d8:c7:ec:65:a4:f1:88:
e9:80:49:12:ca:f3:a2:81:1e:76:ba:2f:11:8d:ec:
a9:be:5e:90:8e:f5:c4:1c:79:14:40:cc:07:a4:7f:
94:28:0b:25:7f:e9:a3:8b:e2:bb:10:7f:70:3c:23:
cd:05:8d:ba:1f:55:89:f7:67:7d:96:ce:cf:01:82:
8c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:21:74:4C:8E:F9:3C:AC:40:EA:5B:AA:57:17:BA:01:C3:D4:74:8C
X509v3 Authority Key Identifier:
keyid:D7:D0:67:4B:D6:F0:CC:91:75:21:9A:32:8C:8B:39:68:29:F6:C0:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/19BnS9bwzJF1IZoyjIs5aCn2wK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b30e5d-8b3b-4287-9b3b-8232fa3e629d/1/8iF0TI75PKxA6luqVxe6AcPUdIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/b30e5d-8b3b-4287-9b3b-8232fa3e629d/1/19BnS9bwzJF1IZoyjIs5aCn2wK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.147.32.0/23
Signature Algorithm: sha256WithRSAEncryption
05:20:62:9f:5c:86:f1:7c:97:c3:0e:25:13:ff:99:eb:c7:2f:
83:f4:5b:93:b6:e1:0c:04:60:9e:4c:82:a3:b3:95:f7:0a:46:
5a:9a:31:59:2a:6d:ba:23:5c:19:99:1f:17:f6:39:53:72:36:
8f:85:e4:4c:54:fb:c6:08:6d:73:ba:77:81:08:f3:be:9b:d4:
ea:bd:ec:16:0a:e0:dc:da:00:19:05:94:87:ff:c8:79:3b:d2:
92:12:a6:6a:d5:73:97:f4:a9:e9:d2:28:9a:73:f5:7b:7a:91:
c1:9f:e7:43:e9:ec:0d:bd:81:d9:b7:96:7e:71:02:ba:ff:66:
b8:d1:23:a3:b3:f9:c2:e0:4b:63:61:9b:7c:f6:b7:58:58:cc:
bc:18:59:fb:01:35:3b:c2:0c:52:8c:19:6d:09:7d:c1:48:d7:
6e:9d:53:ee:2b:4b:de:22:d2:d4:f3:ba:bf:38:36:f2:53:f4:
a3:45:27:95:26:45:92:7e:17:77:08:1b:6d:46:86:89:78:01:
13:95:56:22:0d:f1:e5:75:9b:07:5a:95:2e:6e:93:d5:4a:88:
cb:47:bf:ed:bc:cd:7c:35:e0:70:09:11:3a:9a:0d:ed:5c:f3:
e7:ac:41:b1:16:5a:f8:65:09:66:45:2a:c7:c1:f6:5c:af:1b:
4c:b3:04:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 02:41:55 2025 by rpki-client