Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/g9NVJHz8dFChBBMIyrWOqUKW5Gc.roa
File: g9NVJHz8dFChBBMIyrWOqUKW5Gc.roa (raw, json)
Hash identifier: Bfez3UUTcDh5Uu5XFN2wqmBKV1YsRd5WPJPuNCBRhzc=
Subject key identifier: 83:D3:55:24:7C:FC:74:50:A1:04:13:08:CA:B5:8E:A9:42:96:E4:67
Certificate issuer: /CN=624ad4535ac88dd534199f2a726095af71afe44e
Certificate serial: 0192C3584D988445408C6C1746AA3B58B9D5
Authority key identifier: 62:4A:D4:53:5A:C8:8D:D5:34:19:9F:2A:72:60:95:AF:71:AF:E4:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/g9NVJHz8dFChBBMIyrWOqUKW5Gc.roa
Signing time: Fri 25 Oct 2024 11:03:17 +0000
ROA not before: Fri 25 Oct 2024 11:03:17 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 55154
IP address blocks: 109.104.134.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:92:c3:58:4d:98:84:45:40:8c:6c:17:46:aa:3b:58:b9:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=624ad4535ac88dd534199f2a726095af71afe44e
Validity
Not Before: Oct 25 11:03:17 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=83d355247cfc7450a1041308cab58ea94296e467
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:09:8b:c9:94:55:7f:2d:d8:a8:1c:29:6f:62:
68:72:a2:0a:52:ad:86:01:1c:76:56:44:46:7f:c0:
21:cd:34:b4:49:91:a7:17:49:9a:3d:0f:78:aa:3f:
2a:ba:22:9a:78:a7:1a:58:c6:e9:40:7e:e5:a4:65:
0f:c0:15:06:c9:18:d8:16:eb:96:d6:cd:04:6d:bf:
0b:52:d8:e7:ea:b6:de:d9:d7:b9:91:1c:94:17:2b:
a4:83:28:ef:30:01:54:72:b1:c4:26:9a:61:e5:ab:
50:96:85:a8:da:60:1a:d2:55:44:e7:da:34:3f:27:
18:77:fc:12:8b:0f:6b:76:64:f6:d3:74:0a:1a:1e:
ab:3e:97:ec:a1:7a:da:76:79:35:63:75:92:43:df:
95:ac:91:c9:90:29:fb:f9:22:9a:98:61:c4:fb:c2:
2c:48:9a:15:09:2a:84:92:df:98:18:3a:bf:43:93:
ce:72:83:81:a0:bf:2e:b1:c6:99:2a:18:9b:dd:61:
4b:18:37:82:35:87:cc:68:22:f5:db:46:a5:1a:84:
b2:7a:6e:b3:c2:0d:ee:d8:78:eb:bc:ae:50:5d:8f:
b1:93:c4:ef:e8:ab:b1:39:eb:e8:c6:a7:25:d2:22:
91:ca:c7:64:a1:1d:92:2c:9d:e6:48:9f:2d:75:4a:
cd:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:D3:55:24:7C:FC:74:50:A1:04:13:08:CA:B5:8E:A9:42:96:E4:67
X509v3 Authority Key Identifier:
keyid:62:4A:D4:53:5A:C8:8D:D5:34:19:9F:2A:72:60:95:AF:71:AF:E4:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/g9NVJHz8dFChBBMIyrWOqUKW5Gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/aa1019-564f-4c46-a217-fb5949808ddc/1/YkrUU1rIjdU0GZ8qcmCVr3Gv5E4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.104.134.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:1f:1f:26:0b:d3:48:59:d0:d7:99:bb:fa:f1:0f:9d:b6:5b:
7e:e0:9a:70:5c:28:be:89:a4:6a:82:38:03:a7:b0:a6:25:f6:
5a:76:a4:ea:fc:17:7c:d1:7b:5f:77:69:53:65:f4:b5:b3:e7:
b8:e2:01:06:71:97:44:4c:57:a5:27:28:23:39:4a:b0:62:24:
37:d4:ef:a8:c2:c2:e5:3b:76:93:45:93:75:54:7d:28:b3:2d:
c5:1e:88:01:ca:14:9f:b3:ae:79:a8:8e:4b:a4:e0:93:ac:89:
8b:d0:44:0e:1e:fb:07:22:9d:22:f5:50:cd:4b:36:4e:ed:d3:
b6:69:3d:f2:df:ce:8d:69:a0:ab:81:c4:09:b6:e7:82:03:87:
27:97:e0:f7:25:e1:74:bc:65:20:79:2a:0a:b4:97:70:ea:4e:
fe:a3:49:1f:ea:26:6e:2d:2a:97:fb:6e:db:05:24:4d:b0:c3:
9b:2f:7e:bd:83:07:da:26:f8:db:dd:ea:6f:ff:3e:a9:f8:f0:
19:b9:99:63:f7:65:9f:71:88:8f:6e:f7:d5:ba:bd:5f:ea:29:
0b:aa:c8:b7:db:a6:47:ff:23:26:08:83:95:fc:64:72:93:e2:
10:a9:90:28:8c:82:a1:1b:d1:49:7e:ba:5e:5f:00:80:ca:92:
60:d6:42:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:32:57 2025 by rpki-client