Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/lLM5HeJOnpwk1eUg_MABaeyC7ic.roa
File: lLM5HeJOnpwk1eUg_MABaeyC7ic.roa (raw, json)
Hash identifier: 2fAj3iZu+ooRgXizmwt8ISA7AUUErzM12s6a0aZG6/o=
Subject key identifier: 94:B3:39:1D:E2:4E:9E:9C:24:D5:E5:20:FC:C0:01:69:EC:82:EE:27
Certificate issuer: /CN=5dd69d9f749630f0256cf0ceab58836b491a58f6
Certificate serial: 01944FD16A70D1545E5D32D81827391815AF
Authority key identifier: 5D:D6:9D:9F:74:96:30:F0:25:6C:F0:CE:AB:58:83:6B:49:1A:58:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdadn3SWMPAlbPDOq1iDa0kaWPY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/lLM5HeJOnpwk1eUg_MABaeyC7ic.roa
Signing time: Fri 10 Jan 2025 10:45:11 +0000
ROA not before: Fri 10 Jan 2025 10:45:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209242
IP address blocks: 147.78.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:4f:d1:6a:70:d1:54:5e:5d:32:d8:18:27:39:18:15:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd69d9f749630f0256cf0ceab58836b491a58f6
Validity
Not Before: Jan 10 10:45:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=94b3391de24e9e9c24d5e520fcc00169ec82ee27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:c5:ab:39:8e:0e:95:2f:1a:a5:ee:8b:bb:a5:
6a:19:f3:69:4f:ad:3a:73:0b:d1:cd:24:07:10:20:
b0:f1:48:39:7a:ed:ff:99:ed:3d:6f:c5:95:d1:27:
9b:ff:93:82:2f:3e:09:9d:89:0f:bc:b6:1f:f0:0c:
ce:ca:52:1f:f2:b9:f2:41:2f:8b:71:b1:33:9d:dc:
f7:1b:98:8a:c1:f8:6e:f4:cc:66:fc:13:2b:cf:9f:
a4:7c:d7:12:5d:22:6f:0c:b9:d1:e2:b7:84:4d:a7:
c3:c8:94:a5:c1:83:a3:8c:15:b1:a7:2d:0c:4d:45:
8b:39:58:17:0f:d8:a0:a3:59:28:6c:93:05:be:8b:
03:b5:47:b1:3c:c4:bb:5b:c0:71:30:fe:ef:05:0e:
6e:1d:f3:d5:44:f6:4d:06:d6:af:84:1c:f0:dc:9b:
cc:bc:32:6c:56:f9:c2:39:81:c0:94:7c:58:f0:59:
7b:1b:a4:1f:ac:9e:5f:47:f4:fe:3b:3e:af:d3:22:
2a:1a:6e:2c:f3:70:7b:29:e1:cc:15:a3:c3:ed:c6:
e2:28:a1:98:d6:59:3b:8a:1f:e6:14:8b:1a:4e:44:
70:c4:8a:c8:43:8c:99:d0:ca:c3:61:d6:ef:b1:0d:
e3:26:c2:c8:df:2c:54:53:03:c8:50:d5:6c:ee:ab:
cb:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:B3:39:1D:E2:4E:9E:9C:24:D5:E5:20:FC:C0:01:69:EC:82:EE:27
X509v3 Authority Key Identifier:
keyid:5D:D6:9D:9F:74:96:30:F0:25:6C:F0:CE:AB:58:83:6B:49:1A:58:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdadn3SWMPAlbPDOq1iDa0kaWPY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/lLM5HeJOnpwk1eUg_MABaeyC7ic.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/616924-93b2-4dcb-aeeb-f3fd64331709/1/Xdadn3SWMPAlbPDOq1iDa0kaWPY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
147.78.140.0/24
Signature Algorithm: sha256WithRSAEncryption
29:f0:76:f4:e8:42:2a:43:51:86:d3:52:d7:15:c0:22:4c:6a:
23:e1:1a:cf:25:61:99:37:45:09:fd:69:a2:b0:cf:ae:a6:83:
44:61:03:7b:8a:4b:2f:99:4d:be:83:f9:e1:e7:66:ef:71:3e:
08:e7:5c:56:59:a9:7f:0c:1c:c4:c8:2b:a7:8d:20:df:81:96:
ab:5a:a4:84:cb:cb:18:fc:12:d8:f7:48:75:79:d2:6f:9e:1f:
43:2f:61:8a:a5:3d:26:d5:a5:5f:d1:67:57:de:e0:9d:c5:73:
46:8c:a2:95:32:25:d9:a4:12:4b:e7:cb:6f:f4:9d:85:a9:71:
08:a2:3c:93:dd:01:fb:a5:8a:92:57:9d:84:58:63:c6:c6:24:
44:63:e0:b0:66:1b:93:e1:a1:05:e8:27:64:3f:2b:c4:ce:d2:
5d:72:11:6b:0a:38:28:24:db:49:18:f9:48:b6:78:2f:48:8d:
40:3d:03:68:ed:b5:52:2e:95:b5:02:b4:82:c8:ac:5d:e0:77:
60:a2:11:75:8e:c2:10:f1:61:dd:73:61:02:03:24:5f:bd:df:
7d:50:62:16:4b:06:1a:aa:bf:0e:f8:d0:69:e6:25:ca:e5:7c:
0e:55:2a:00:23:23:fb:4c:f8:6d:d7:7b:d8:d3:69:d0:8e:fe:
f0:b8:86:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 23:53:37 2025 by rpki-client