Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/342db7-350f-4014-bf70-7afe04f2670f/1/uVDiEUiH3FPSakg8pEQbiKSlvxk.roa
File: uVDiEUiH3FPSakg8pEQbiKSlvxk.roa (raw, json)
Hash identifier: JRkHdt95dkokELaRDU8A7af7yFzKoMW4itF1pBTxm+U=
Subject key identifier: B9:50:E2:11:48:87:DC:53:D2:6A:48:3C:A4:44:1B:88:A4:A5:BF:19
Certificate issuer: /CN=604e21f91e41ce0994a15e2c36babf1953e7278a
Certificate serial: 018571BA18AFA1562A169BD686ADD306D8A1
Authority key identifier: 60:4E:21:F9:1E:41:CE:09:94:A1:5E:2C:36:BA:BF:19:53:E7:27:8A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YE4h-R5BzgmUoV4sNrq_GVPnJ4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/342db7-350f-4014-bf70-7afe04f2670f/1/uVDiEUiH3FPSakg8pEQbiKSlvxk.roa
Signing time: Mon 02 Jan 2023 09:04:59 +0000
ROA not before: Mon 02 Jan 2023 09:04:59 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 56971
IP address blocks: 109.205.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:ba:18:af:a1:56:2a:16:9b:d6:86:ad:d3:06:d8:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=604e21f91e41ce0994a15e2c36babf1953e7278a
Validity
Not Before: Jan 2 09:04:59 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b950e2114887dc53d26a483ca4441b88a4a5bf19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:4c:e2:d7:ec:d2:a3:19:16:f9:5e:7c:75:7a:
55:56:32:2c:cf:72:71:37:a7:56:43:db:a2:8b:21:
7d:e3:91:a6:a0:e9:a1:f2:00:a5:80:f6:33:95:9d:
e4:27:d8:55:2b:53:23:86:15:4c:31:91:7b:43:89:
8f:bc:d1:23:59:51:9a:aa:a7:83:15:01:5f:74:72:
e8:ed:83:97:76:20:b2:1d:17:9a:41:21:da:77:44:
37:3c:70:8b:6c:09:16:df:9d:7c:cd:9c:79:55:02:
d4:06:4e:5d:f4:db:17:f6:01:2e:b3:92:13:c0:8f:
c6:27:cf:67:27:3f:df:8d:dd:63:fc:1d:08:ec:83:
f1:bd:a6:41:6e:e4:7e:73:58:31:2f:21:e5:94:a2:
16:b1:c7:2f:74:39:20:e6:7e:3d:d0:4c:85:51:30:
d3:65:eb:eb:b9:5e:35:bf:28:2b:7a:c6:9f:1b:1c:
05:58:41:02:7f:51:54:ab:59:b6:a8:5b:84:4c:35:
a8:40:e8:dd:78:49:5f:a9:d0:48:60:6b:e3:89:50:
f5:ee:79:d7:fd:4f:0f:88:20:24:3e:ef:43:7f:9a:
56:f7:3c:e0:e8:f5:a3:cb:48:05:e9:dc:0d:78:8d:
e9:05:e6:37:aa:6a:96:9d:e4:17:06:2c:fd:44:0d:
9a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:50:E2:11:48:87:DC:53:D2:6A:48:3C:A4:44:1B:88:A4:A5:BF:19
X509v3 Authority Key Identifier:
keyid:60:4E:21:F9:1E:41:CE:09:94:A1:5E:2C:36:BA:BF:19:53:E7:27:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YE4h-R5BzgmUoV4sNrq_GVPnJ4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/342db7-350f-4014-bf70-7afe04f2670f/1/uVDiEUiH3FPSakg8pEQbiKSlvxk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/342db7-350f-4014-bf70-7afe04f2670f/1/YE4h-R5BzgmUoV4sNrq_GVPnJ4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.56.0/24
Signature Algorithm: sha256WithRSAEncryption
02:70:1a:a8:97:41:2c:4b:7c:d0:aa:25:e9:45:d1:7f:36:8f:
50:17:4a:b1:61:80:68:3e:a4:9e:69:f2:cb:95:d7:f0:a9:e9:
13:15:58:ae:e2:b6:af:66:b9:86:71:9f:8c:94:e5:7d:c7:3b:
cb:8a:16:4a:0e:cc:30:1b:04:f6:3b:d3:2b:e8:ce:34:35:e3:
95:c3:55:78:3e:bb:ef:97:ce:41:93:53:d1:78:20:be:ca:19:
42:42:38:ee:b1:a6:f9:9f:0d:f3:bc:14:83:ee:48:df:0b:88:
f3:d0:82:3e:7e:49:24:e1:3d:35:83:83:e5:a2:9c:56:68:d2:
23:92:d8:ff:f3:b7:33:75:4b:03:97:52:f3:44:57:de:1c:e4:
70:f0:c1:4e:b1:90:23:85:f8:d7:bf:e1:6a:07:63:63:90:4e:
ba:15:b3:3b:01:d7:89:fb:0b:25:e5:8a:f7:14:b7:8a:73:2e:
e4:44:d9:2e:b0:c4:78:c6:ce:e2:c5:7f:8b:42:30:92:a1:cf:
68:f5:06:f8:98:2a:ac:63:4f:3f:b8:f8:24:f7:20:1d:6c:59:
03:51:04:de:a0:ef:97:db:45:e1:b9:41:b5:37:ca:01:a4:72:
9c:e6:76:49:e6:64:f3:fe:35:49:78:16:81:7e:ce:1e:bd:ef:
2e:f6:1e:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 07:02:27 2025 by rpki-client