Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/g8u27N4QItUirByGNIpicNOy82Y.roa
File: g8u27N4QItUirByGNIpicNOy82Y.roa (raw, json)
Hash identifier: 86XD7A3oPGKMoD9IAzlfVhw0nOpZrI3Tfibq7N31K6c=
Subject key identifier: 83:CB:B6:EC:DE:10:22:D5:22:AC:1C:86:34:8A:62:70:D3:B2:F3:66
Certificate issuer: /CN=464952bc165441ec6e2e2010c933dc830f361731
Certificate serial: 0194228DD4D6DF61654DA278688F5C99363F
Authority key identifier: 46:49:52:BC:16:54:41:EC:6E:2E:20:10:C9:33:DC:83:0F:36:17:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RklSvBZUQexuLiAQyTPcgw82FzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/g8u27N4QItUirByGNIpicNOy82Y.roa
Signing time: Wed 01 Jan 2025 15:48:27 +0000
ROA not before: Wed 01 Jan 2025 15:48:27 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58074
IP address blocks: 89.37.139.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:d4:d6:df:61:65:4d:a2:78:68:8f:5c:99:36:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=464952bc165441ec6e2e2010c933dc830f361731
Validity
Not Before: Jan 1 15:48:27 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=83cbb6ecde1022d522ac1c86348a6270d3b2f366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:6e:c8:a6:35:77:85:d1:4b:80:2b:2a:cb:95:
b0:22:c0:00:9f:33:71:02:8d:76:b3:dd:11:24:db:
bf:2e:c9:55:4f:d4:7b:a9:1f:c7:af:75:dd:d9:05:
e1:7f:d4:47:a6:08:49:d5:d7:c7:19:d2:ec:00:5a:
d7:16:19:e6:9d:ad:70:85:dc:56:10:15:eb:60:49:
88:18:ab:77:be:6e:8c:33:46:b6:3d:f7:f7:83:dc:
bd:3b:f3:59:c4:87:57:90:e9:a8:d0:22:5c:6a:ad:
0d:cc:2d:b5:c5:79:04:29:b4:40:3a:d6:2c:3f:71:
60:59:92:90:9f:94:84:17:cf:ed:3e:fd:f1:7a:2d:
92:9b:2d:0f:d2:ed:79:9b:ce:9d:62:0a:68:19:7e:
7c:2e:96:40:f3:fa:91:fd:36:8e:d9:4b:8d:20:1f:
cb:85:fe:de:19:cd:14:59:df:74:c4:ea:0c:c8:9f:
2c:2e:87:fa:7e:cc:9b:f8:a5:d4:b4:ca:0e:c7:50:
3b:69:e5:02:18:72:c9:bf:87:b3:4d:eb:ed:6c:ed:
66:83:38:a9:0f:81:97:70:05:33:c0:e7:e1:88:ad:
ec:9d:c7:05:5a:bb:b0:cd:a0:35:af:a6:19:17:c5:
7d:14:3c:18:71:c2:bf:48:b0:1d:86:e2:bc:bf:3b:
b1:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:CB:B6:EC:DE:10:22:D5:22:AC:1C:86:34:8A:62:70:D3:B2:F3:66
X509v3 Authority Key Identifier:
keyid:46:49:52:BC:16:54:41:EC:6E:2E:20:10:C9:33:DC:83:0F:36:17:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RklSvBZUQexuLiAQyTPcgw82FzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/g8u27N4QItUirByGNIpicNOy82Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/01058a-4a82-4818-972d-842858122bbc/1/RklSvBZUQexuLiAQyTPcgw82FzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.37.139.0/24
Signature Algorithm: sha256WithRSAEncryption
07:5b:8b:d2:8e:b3:74:a8:32:9c:8b:e6:c7:c1:ce:56:d0:71:
d1:33:8a:07:ac:25:4c:4e:00:68:9b:d5:05:89:26:52:b3:79:
b9:77:97:ab:c5:92:a3:b5:62:11:29:79:e7:dd:d1:93:5f:4d:
c8:ac:8c:4f:f8:cd:28:31:e8:d0:15:3d:61:44:b3:cd:6f:5c:
5d:d2:fa:89:b3:98:40:6e:c4:81:e7:08:e9:e0:99:07:20:db:
4e:50:ad:36:c4:fd:10:19:6f:37:d7:a0:ca:da:c1:f5:52:de:
f7:e4:8f:28:58:c4:9c:17:e8:ec:03:09:ed:d9:9a:43:11:ca:
de:6f:99:44:62:15:d1:2d:5a:32:9f:36:df:92:02:48:9c:d7:
6c:3f:62:84:de:06:a2:e3:29:e6:5a:c6:3b:57:c2:93:1c:c2:
35:41:5f:7f:f3:92:fe:8c:b5:1d:09:10:30:59:b4:12:7e:f0:
55:d0:7a:17:3e:05:f5:46:3c:e3:3b:49:fb:bc:1d:5c:f5:ae:
f6:d9:88:6e:e4:d0:73:82:c9:8b:1e:69:e2:0d:6e:e6:93:07:
90:8f:85:81:d6:61:62:8a:d8:66:23:d3:fa:33:6d:69:c2:cb:
6e:87:f5:37:a9:58:53:54:c9:d8:14:f5:10:67:62:d2:cb:bb:
9c:16:08:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 19:17:02 2025 by rpki-client