Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/967af2-6b14-4e9b-9c1c-65e51fc339c1/1/klV3OcMx8SXIbTHP5rz0keoTBjs.roa
File: klV3OcMx8SXIbTHP5rz0keoTBjs.roa (raw, json)
Hash identifier: 0LOxmL81SGeAUJYNY91L5amen+je8LeH+pM3ZUoMRwk=
Subject key identifier: 92:55:77:39:C3:31:F1:25:C8:6D:31:CF:E6:BC:F4:91:EA:13:06:3B
Certificate issuer: /CN=5d43adf35b026fcf530d4eedeaf03af5e80b2e50
Certificate serial: 01856C782575DCF187CA78BF8351FF52ABB3
Authority key identifier: 5D:43:AD:F3:5B:02:6F:CF:53:0D:4E:ED:EA:F0:3A:F5:E8:0B:2E:50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XUOt81sCb89TDU7t6vA69egLLlA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/967af2-6b14-4e9b-9c1c-65e51fc339c1/1/klV3OcMx8SXIbTHP5rz0keoTBjs.roa
Signing time: Sun 01 Jan 2023 08:34:51 +0000
ROA not before: Sun 01 Jan 2023 08:34:51 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 51724
IP address blocks: 176.53.144.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:78:25:75:dc:f1:87:ca:78:bf:83:51:ff:52:ab:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d43adf35b026fcf530d4eedeaf03af5e80b2e50
Validity
Not Before: Jan 1 08:34:51 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=92557739c331f125c86d31cfe6bcf491ea13063b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:27:71:7e:e8:7b:31:b6:8e:bb:51:0d:ef:a1:
0f:84:dd:df:01:ab:60:ce:ee:22:53:6e:23:8b:a3:
a5:aa:0f:c5:7e:a3:5f:5b:c6:9a:9f:db:b5:ac:24:
6f:9f:86:27:06:be:af:80:dc:d6:c7:a9:35:ce:51:
06:48:cf:09:ac:ca:43:a9:fd:66:40:9d:79:78:9d:
2c:ea:1c:38:bf:70:25:86:80:ad:d2:ad:cc:a7:a5:
b3:5d:ce:61:2c:55:60:92:b1:12:b2:84:05:d7:f5:
04:cf:b4:29:16:f1:37:c6:67:06:27:6c:f0:f2:12:
c1:0e:f3:4d:92:cd:90:60:5d:17:0e:19:90:fb:a3:
b8:71:d0:44:13:fa:70:37:ab:c9:85:8c:9e:aa:1b:
b8:cd:c8:d1:72:eb:fe:4c:df:29:38:1a:21:47:df:
04:85:b1:f3:07:e2:06:f7:37:fd:27:74:ce:b0:c3:
0d:a6:2a:c9:28:51:d1:07:b4:1d:e3:80:c9:56:75:
27:6a:6e:6a:74:62:98:31:ff:d3:c6:e6:08:fe:ed:
f8:6c:4c:1f:78:9b:c9:0a:c6:7f:ea:9f:85:e9:3b:
21:95:e5:67:73:d2:92:09:cc:e2:b7:78:d1:8a:d7:
04:08:d4:5a:6d:8e:c9:66:29:8e:b9:aa:24:70:83:
ef:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:55:77:39:C3:31:F1:25:C8:6D:31:CF:E6:BC:F4:91:EA:13:06:3B
X509v3 Authority Key Identifier:
keyid:5D:43:AD:F3:5B:02:6F:CF:53:0D:4E:ED:EA:F0:3A:F5:E8:0B:2E:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XUOt81sCb89TDU7t6vA69egLLlA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/967af2-6b14-4e9b-9c1c-65e51fc339c1/1/klV3OcMx8SXIbTHP5rz0keoTBjs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/967af2-6b14-4e9b-9c1c-65e51fc339c1/1/XUOt81sCb89TDU7t6vA69egLLlA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.53.144.0/24
Signature Algorithm: sha256WithRSAEncryption
76:40:43:34:e2:e0:b9:f2:d9:7f:ba:0d:4f:67:9d:38:f4:09:
ab:c6:ea:7b:e9:fa:1a:4c:37:6a:93:46:72:c1:dc:64:30:ca:
71:09:e2:78:93:2b:a6:e6:77:c5:17:78:c9:04:7e:f0:a2:9c:
ba:b6:1c:ba:5c:8d:55:79:b3:14:36:b6:6b:69:34:fd:a0:fa:
0d:fb:fd:cf:5e:17:e6:f8:24:36:74:37:52:bc:7b:14:08:d2:
ad:35:a6:f8:4e:66:74:62:31:43:ff:38:ab:5c:c9:ff:2b:97:
0e:45:1b:71:2b:61:95:61:f7:cb:db:20:87:65:e0:c7:bb:ca:
66:37:bd:f7:40:3c:99:cb:f4:c6:5d:a7:fe:a0:eb:80:13:e6:
c1:19:f7:a9:6a:65:b4:02:30:3f:8b:39:ae:b0:5e:de:e6:bb:
04:c8:d4:66:f7:2c:fa:11:1e:da:2d:c6:58:4d:c2:8b:0e:c3:
bb:2d:52:e8:64:7e:35:00:a0:3f:68:7a:f9:6e:62:3b:09:9e:
f4:72:e3:67:e4:43:21:34:b0:f2:ac:27:75:1c:2b:1a:ea:e7:
59:c9:2a:ae:2c:43:f9:64:3a:1f:1c:a3:57:96:4e:19:b5:fa:
62:6f:49:84:00:7c:79:bc:55:96:a4:52:a0:c8:6a:d4:4d:6d:
76:15:56:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:46:58 2025 by rpki-client