Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/hdtt6KxzLbk0DsV1qhORWvabKgw.roa
File: hdtt6KxzLbk0DsV1qhORWvabKgw.roa (raw, json)
Hash identifier: IjzF8LYWiS0ZCo/ISbonlkkloOdj1+/BBE4JpPLvZOQ=
Subject key identifier: 85:DB:6D:E8:AC:73:2D:B9:34:0E:C5:75:AA:13:91:5A:F6:9B:2A:0C
Certificate issuer: /CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Certificate serial: 019428282B17E0E774F6EBF7E84C73C668E7
Authority key identifier: 05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/hdtt6KxzLbk0DsV1qhORWvabKgw.roa
Signing time: Thu 02 Jan 2025 17:55:08 +0000
ROA not before: Thu 02 Jan 2025 17:55:08 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 202043
IP address blocks: 84.252.55.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:28:2b:17:e0:e7:74:f6:eb:f7:e8:4c:73:c6:68:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0548cedf17029ed98a108113c6c109ecaccd82ec
Validity
Not Before: Jan 2 17:55:08 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=85db6de8ac732db9340ec575aa13915af69b2a0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:4b:aa:af:a1:7d:4a:14:49:cd:d5:a1:fc:e9:
f4:b5:58:67:81:84:6d:77:79:84:98:2c:1b:12:95:
17:2e:9d:b6:7d:1b:82:94:bb:86:c1:65:49:32:69:
a2:c8:38:23:c5:ab:6c:0a:f7:73:2c:a7:ed:df:41:
c6:24:70:06:c1:d5:9d:de:5e:ef:7f:fb:5f:95:64:
3c:1f:e8:e6:d1:e6:41:6e:9d:6d:09:e7:69:40:6e:
82:b3:20:43:c5:26:65:04:b1:58:ab:c6:2a:33:eb:
1a:d1:24:90:83:7c:1f:42:33:fc:ec:60:e1:2c:f2:
ba:53:d9:55:83:c1:61:5d:cc:1a:63:c7:5d:5f:91:
f0:9e:e9:e9:61:fc:3a:94:87:ff:01:57:4b:62:72:
5a:43:c6:98:04:bc:35:48:03:f2:15:5c:bd:e9:89:
07:db:0b:4e:1a:5e:86:26:a4:20:19:5c:6c:bc:30:
7e:12:87:62:14:74:89:e9:08:c8:5f:6f:0a:55:9f:
89:5a:79:84:93:b1:97:d5:30:91:07:99:99:e2:54:
11:b6:e6:40:33:be:f2:ff:39:f9:04:c9:a1:7d:d3:
29:be:12:bf:1b:dc:71:08:82:1e:4b:eb:18:81:5c:
5c:d7:66:21:8b:a2:0a:02:39:e6:bd:4c:41:81:36:
0f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:DB:6D:E8:AC:73:2D:B9:34:0E:C5:75:AA:13:91:5A:F6:9B:2A:0C
X509v3 Authority Key Identifier:
keyid:05:48:CE:DF:17:02:9E:D9:8A:10:81:13:C6:C1:09:EC:AC:CD:82:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BUjO3xcCntmKEIETxsEJ7KzNguw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/hdtt6KxzLbk0DsV1qhORWvabKgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/541c05-8d7d-42b8-ab00-7fbbae6f9437/1/BUjO3xcCntmKEIETxsEJ7KzNguw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.252.55.0/24
Signature Algorithm: sha256WithRSAEncryption
74:72:79:d3:ca:b0:5d:25:d5:4c:d7:5f:55:66:fd:b2:52:87:
12:5d:d5:8f:ab:9a:b4:5d:a9:48:33:c6:f7:ed:54:ba:6b:f7:
bf:fd:82:11:e5:90:39:a1:cc:3e:22:0a:dc:1c:3f:b4:51:c5:
14:8c:88:28:8e:9c:2c:9e:0b:6d:e3:bd:6d:13:bb:47:bd:92:
0b:87:43:01:80:81:fd:91:df:d1:3e:56:96:36:24:74:6a:a1:
3f:49:db:ed:db:fd:49:3c:0f:84:1a:49:65:08:60:42:1e:c6:
7e:09:8b:f8:c6:68:59:4a:d8:9f:93:39:1f:7c:9c:10:dd:c4:
bf:7c:67:65:75:58:0a:ae:2d:15:d2:7e:f3:57:3f:f7:bc:dd:
94:1c:04:70:24:25:8c:f1:05:f2:93:96:cc:bf:8d:e9:c4:e7:
89:e3:24:76:10:30:5e:71:78:80:9c:6f:0a:92:a2:1b:fc:85:
8e:b7:0b:67:c9:6c:a8:e8:36:c9:0a:09:22:c1:72:18:ac:7f:
88:c8:28:c8:9a:67:0d:68:9d:35:4a:34:d5:3d:97:7f:92:ab:
46:bc:fa:dd:09:05:68:b4:67:60:02:1b:21:44:87:7c:13:b4:
fa:f9:03:e6:c5:18:41:86:68:52:9f:d5:d5:12:3e:fd:88:50:
4b:c7:5d:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 16:54:50 2025 by rpki-client