Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/8Gj_AcLd-9T9ElQkL6yujjJilEA.roa
File: 8Gj_AcLd-9T9ElQkL6yujjJilEA.roa (raw, json)
Hash identifier: G7dlONSQHhwTAn/hoa+BR/4pDzsWEydI+WamW8EOXu4=
Subject key identifier: F0:68:FF:01:C2:DD:FB:D4:FD:12:54:24:2F:AC:AE:8E:32:62:94:40
Certificate issuer: /CN=86d648bdba965461b1e8c11b9dd436c61382873c
Certificate serial: 019420684A8BBE724EAFE53D79F052BB6DE4
Authority key identifier: 86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/8Gj_AcLd-9T9ElQkL6yujjJilEA.roa
Signing time: Wed 01 Jan 2025 05:48:13 +0000
ROA not before: Wed 01 Jan 2025 05:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62904
IP address blocks: 147.45.126.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:4a:8b:be:72:4e:af:e5:3d:79:f0:52:bb:6d:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86d648bdba965461b1e8c11b9dd436c61382873c
Validity
Not Before: Jan 1 05:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f068ff01c2ddfbd4fd1254242facae8e32629440
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ef:f4:eb:b5:dc:ef:36:6c:d3:3e:da:9a:54:
a0:0c:45:e8:76:29:d5:88:ec:e0:ff:de:ca:3c:58:
2c:43:c0:ed:c9:8a:4d:c8:bc:c5:09:63:b0:47:96:
f4:ed:6b:1b:d4:0e:d4:6a:0b:83:6d:59:e3:68:f9:
11:1a:06:dd:b5:6a:d7:4d:8e:b6:09:4e:c0:0e:e9:
4e:41:0e:af:b6:18:54:ec:3b:4e:d9:1a:64:56:22:
bc:06:d8:48:20:fc:83:ec:c6:24:48:c6:fc:1c:51:
9c:6e:5d:be:5d:60:f5:5f:e9:e3:d7:13:2b:ca:8e:
6a:f2:0c:b4:e1:52:ea:ad:b9:49:a2:4c:01:72:42:
72:a8:b5:a5:c0:b5:99:f6:99:56:e3:8c:85:28:a8:
45:38:c5:1e:bd:6d:96:13:6c:11:8c:80:63:6d:2f:
3c:2b:7b:ff:02:b3:15:8b:a9:c5:1d:46:d6:b1:0f:
39:3b:08:02:5e:5b:52:e4:b0:5d:f0:91:d6:cb:8b:
62:a0:a8:9e:c1:6f:d0:6b:b6:a1:29:ae:64:66:66:
0c:8e:72:d2:53:36:8a:76:d9:26:1c:31:bd:80:d6:
9f:88:f5:c9:cf:57:6c:bc:04:27:8f:f8:7f:4d:b8:
80:d8:35:f4:fe:19:bc:6d:c9:29:5a:d7:47:8f:74:
0f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:68:FF:01:C2:DD:FB:D4:FD:12:54:24:2F:AC:AE:8E:32:62:94:40
X509v3 Authority Key Identifier:
keyid:86:D6:48:BD:BA:96:54:61:B1:E8:C1:1B:9D:D4:36:C6:13:82:87:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/htZIvbqWVGGx6MEbndQ2xhOChzw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/8Gj_AcLd-9T9ElQkL6yujjJilEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ac58ea-c459-48ca-b82b-4dec4dafee49/1/htZIvbqWVGGx6MEbndQ2xhOChzw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.45.126.0/23
Signature Algorithm: sha256WithRSAEncryption
24:ad:e4:6d:68:62:c0:0d:4a:c4:0a:c3:93:e8:5b:5b:5a:37:
d1:07:96:e3:be:6d:5b:aa:f6:63:57:4b:c6:51:e7:22:9c:7f:
1e:6a:b6:0d:8d:92:1e:61:f4:4c:c5:a9:32:2b:ae:2c:aa:ca:
e6:8d:91:e8:32:ce:02:6d:0e:36:04:2f:d8:4e:c7:be:29:dd:
98:ca:43:cf:92:8f:ea:7f:d8:78:c0:aa:c8:03:42:26:53:78:
c2:b9:88:b1:9c:61:49:ca:38:15:e8:1b:26:ad:b4:82:dd:ec:
f8:fe:f0:51:74:40:3d:12:1c:c2:00:dc:88:77:67:d3:47:12:
62:5d:2d:dd:ad:5f:be:c9:04:63:f6:37:78:18:74:8e:7b:6b:
3d:75:a4:69:c9:e1:0a:d1:d3:c5:b8:98:50:87:28:3c:39:5d:
d1:ae:fd:0a:76:75:81:58:74:bf:a6:0e:2b:ff:43:09:12:86:
f0:70:16:2c:c7:1b:94:88:2c:c7:0b:dd:25:7b:1a:93:8f:54:
62:42:c5:09:a2:be:ae:1f:89:65:47:30:79:02:f6:d7:b8:8b:
7d:05:8d:cb:0d:5a:0c:a1:b6:0c:ad:a4:bc:ad:3c:19:89:da:
64:25:d1:80:3b:2f:01:47:8a:29:e2:cd:85:a9:5f:a8:dd:69:
74:1c:68:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 02:11:46 2025 by rpki-client