Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/OmKHdDTcca_CSwoUIrMMwuGiiyI.roa
File: OmKHdDTcca_CSwoUIrMMwuGiiyI.roa (raw, json)
Hash identifier: MZ/3yBgImYA2Ojo7WgLOp5KzVb+lWSfXoXuiJlvsQuE=
Subject key identifier: 3A:62:87:74:34:DC:71:AF:C2:4B:0A:14:22:B3:0C:C2:E1:A2:8B:22
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0193EB22B41844923671BD94B4B7A3925794
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/OmKHdDTcca_CSwoUIrMMwuGiiyI.roa
Signing time: Sat 21 Dec 2024 21:32:20 +0000
ROA not before: Sat 21 Dec 2024 21:32:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211301
IP address blocks: 5.175.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:eb:22:b4:18:44:92:36:71:bd:94:b4:b7:a3:92:57:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Dec 21 21:32:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=3a62877434dc71afc24b0a1422b30cc2e1a28b22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:7f:22:87:b7:59:d0:65:08:13:03:e1:9c:b1:
b2:2e:35:d0:a9:91:65:8d:2c:cd:88:6a:d0:0f:ab:
32:bb:c8:9d:86:b1:7e:71:46:21:71:01:08:dd:68:
79:8a:e3:37:aa:ed:18:0a:da:e5:0e:9e:35:ce:f3:
1e:c2:9d:20:38:7b:76:c4:39:7b:a5:34:43:6e:91:
7c:d4:ef:55:82:d5:02:21:2a:8b:dc:f0:0d:9f:10:
d6:38:dc:e1:c9:21:db:49:d4:06:36:1f:aa:24:3d:
00:56:a1:d2:6d:6c:ca:ca:27:bd:39:c7:3d:e0:71:
5e:79:bf:d2:cf:b5:70:ab:0e:90:b9:03:cf:d0:c9:
0f:94:e0:4f:25:b5:41:1d:0b:4c:37:01:25:60:75:
ca:f9:a4:e7:37:51:79:5d:cb:92:37:23:1e:a1:e6:
75:18:e6:97:21:9e:0e:0e:47:13:d2:c1:fe:4c:46:
e5:bb:13:3d:07:41:e1:09:78:7f:ea:8c:3f:4c:6d:
4f:1f:55:6c:f2:af:5b:e8:19:d7:dc:75:aa:08:d5:
4e:19:17:0c:c5:fe:12:ce:5e:f0:1f:18:3b:71:3d:
b6:ab:62:2d:40:10:57:c7:c7:7b:5f:a6:26:d9:6b:
e3:0b:6e:17:10:7d:73:2e:28:29:fd:de:6a:fb:ec:
b4:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:62:87:74:34:DC:71:AF:C2:4B:0A:14:22:B3:0C:C2:E1:A2:8B:22
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/OmKHdDTcca_CSwoUIrMMwuGiiyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.249.0/24
Signature Algorithm: sha256WithRSAEncryption
23:8f:40:63:e4:ca:79:07:0a:71:50:00:14:46:7f:13:f0:5c:
ef:33:cb:6f:b5:a6:b8:41:7d:5f:d0:bd:81:97:c4:ee:b7:78:
a4:8b:d5:5a:30:9b:5d:0f:fa:e0:ae:e9:c5:85:20:75:3c:56:
53:2c:72:03:51:73:3e:0f:9f:87:d5:c4:96:9f:03:92:2a:34:
5c:e1:a0:20:b4:e7:dd:14:ba:6a:29:3b:4c:f3:12:d8:f4:5e:
bd:3d:59:cf:bd:63:11:ea:30:5c:9f:ff:d7:e2:1b:75:da:5b:
72:94:2e:03:db:33:25:2a:86:d5:3c:94:87:c7:10:2a:5f:8a:
b0:c5:ef:4c:d5:56:69:a1:be:ed:92:db:11:e5:94:99:63:43:
3b:55:94:89:ac:aa:ff:84:70:59:6d:14:97:8c:e7:38:7c:ac:
75:cf:46:7c:af:82:a0:08:3c:2d:15:47:54:f6:81:4f:7d:dd:
72:1a:b6:ec:0f:14:9e:28:2f:b5:fa:fb:fe:0d:b3:fb:0a:ea:
91:7e:74:cb:9d:a4:e3:dd:6a:f2:33:77:8f:0f:47:48:4a:62:
e6:ec:7c:be:2b:5d:a8:2a:30:16:f3:88:a3:3f:bc:de:ea:d5:
ae:7c:85:c6:ad:d4:a7:aa:90:77:1f:7c:a0:7c:1e:e0:ca:db:
b2:f3:07:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:32:13 2025 by rpki-client