Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/SALrx8y5x39WJ8efwGiimpmg788.roa
File: SALrx8y5x39WJ8efwGiimpmg788.roa (raw, json)
Hash identifier: CtpmQiaYAVz0sehGOLMPmKtW82021GvqOFqhQ5ojIPI=
Subject key identifier: 48:02:EB:C7:CC:B9:C7:7F:56:27:C7:9F:C0:68:A2:9A:99:A0:EF:CF
Certificate issuer: /CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Certificate serial: 019422FB28499BFAC7D25064F213C75B0C90
Authority key identifier: 68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/SALrx8y5x39WJ8efwGiimpmg788.roa
Signing time: Wed 01 Jan 2025 17:47:52 +0000
ROA not before: Wed 01 Jan 2025 17:47:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41015
IP address blocks: 185.90.84.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fb:28:49:9b:fa:c7:d2:50:64:f2:13:c7:5b:0c:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=68d2c25d0534a4027c695562a8ce4f001cd5396f
Validity
Not Before: Jan 1 17:47:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4802ebc7ccb9c77f5627c79fc068a29a99a0efcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:45:1e:e1:29:fe:44:ae:b5:40:4a:cb:06:40:
74:7c:55:3c:ef:36:41:eb:04:be:91:14:f5:28:49:
10:1f:4b:f1:84:6c:0f:f0:0b:85:3f:4e:60:e2:41:
ef:e1:da:e1:79:96:35:5a:08:19:52:1a:58:e2:39:
94:87:c2:32:28:0f:d6:e3:31:b1:b3:34:38:92:70:
dd:58:56:3e:49:08:8f:d9:b8:65:78:0d:33:b5:73:
da:f4:a2:f2:10:dd:66:4b:9a:5c:b9:1c:d9:83:a1:
21:2e:e2:28:10:ef:df:ea:47:ba:94:d6:79:1c:3b:
4d:a7:bd:31:4d:04:9e:93:22:5c:c9:42:80:e0:3c:
e6:8a:ef:22:c2:79:f8:30:a9:0a:20:a3:e1:41:f5:
fc:65:1a:63:08:4b:da:bb:1f:2a:f2:96:c1:1a:20:
7b:29:a0:98:ca:86:66:29:a0:b7:05:c0:d2:79:ad:
d6:34:9d:55:74:c6:ae:31:45:f3:fe:2d:ac:7f:11:
87:35:8c:3a:7f:99:34:4d:08:e5:75:39:70:bf:a9:
6b:fa:6a:81:61:fd:a7:83:5d:16:04:93:f8:81:98:
0d:4d:b1:54:9d:f5:11:a5:00:be:e9:63:1a:fa:af:
11:a3:ab:b7:7d:63:e8:e9:40:75:08:c8:bf:63:f5:
46:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:02:EB:C7:CC:B9:C7:7F:56:27:C7:9F:C0:68:A2:9A:99:A0:EF:CF
X509v3 Authority Key Identifier:
keyid:68:D2:C2:5D:05:34:A4:02:7C:69:55:62:A8:CE:4F:00:1C:D5:39:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNLCXQU0pAJ8aVViqM5PABzVOW8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/SALrx8y5x39WJ8efwGiimpmg788.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/ad9756-84d1-4ab9-96e1-14797eac522e/1/aNLCXQU0pAJ8aVViqM5PABzVOW8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.90.84.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:06:04:11:4e:f3:a0:4a:df:b8:4b:40:e7:cb:b8:24:09:dc:
55:e5:4a:c8:89:5c:dd:cb:47:7f:34:3f:94:ed:d5:3a:a2:fc:
22:7c:e7:fa:75:29:23:7a:1c:27:a8:fb:9b:59:2c:41:db:e2:
02:8d:89:64:b0:55:29:9d:78:4f:fb:db:c7:b3:33:bd:01:cf:
31:2d:07:d8:e2:d5:af:2a:df:eb:82:3f:07:12:21:d6:d9:8a:
67:a7:76:0a:34:3a:17:16:e7:30:92:cd:d6:ed:43:c0:e2:8a:
dd:7b:ef:bc:31:50:e6:29:7f:6e:59:82:db:41:f6:0b:f9:8e:
bf:dc:50:91:2d:ff:b3:36:f9:aa:f6:30:8f:78:84:e8:cb:ff:
cf:ba:38:e9:ad:21:76:01:85:a2:45:d7:c6:73:2d:02:a6:6e:
8e:f3:ce:5b:33:f4:18:e4:f0:07:36:f9:20:96:81:ce:0a:ab:
e4:f3:9c:d8:df:69:ac:a5:24:5d:07:a6:01:b1:7b:84:12:04:
9e:fa:c9:2d:65:c8:a3:e5:64:63:5d:2e:93:8f:01:7a:f8:a6:
55:36:72:16:ee:e0:bb:d3:c2:e2:79:74:e9:61:82:7d:ec:a9:
0a:86:90:6e:44:7a:3a:0a:f7:4f:1d:1d:93:82:31:62:3b:ec:
95:25:a5:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:40:10 2025 by rpki-client