Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/U7wd6yyCrccv4onQtz_SsHuYiH4.roa
File: U7wd6yyCrccv4onQtz_SsHuYiH4.roa (raw, json)
Hash identifier: 00z0ydAC6z4kuk+GyX5ADe4ffQZeGeH2zEwwNF9voLY=
Subject key identifier: 53:BC:1D:EB:2C:82:AD:C7:2F:E2:89:D0:B7:3F:D2:B0:7B:98:88:7E
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 019422200F2E63F2C6603606EF3371B7559F
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/U7wd6yyCrccv4onQtz_SsHuYiH4.roa
Signing time: Wed 01 Jan 2025 13:48:33 +0000
ROA not before: Wed 01 Jan 2025 13:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209242
IP address blocks: 5.175.141.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:0f:2e:63:f2:c6:60:36:06:ef:33:71:b7:55:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=53bc1deb2c82adc72fe289d0b73fd2b07b98887e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:87:ee:30:4e:8c:79:8c:46:90:f4:49:c3:e1:
ca:e3:a8:71:49:c2:12:49:fb:32:9f:3c:72:56:95:
4d:7e:e6:ca:2d:70:34:ce:05:2f:42:57:b5:a9:5c:
b1:40:9d:8d:35:8a:00:b5:fa:28:d5:9a:55:f4:15:
84:48:bf:91:63:62:e3:f2:61:7b:65:1d:22:54:81:
e8:e5:31:3f:78:b3:9d:c2:fa:cd:74:ed:9f:02:15:
0d:7b:fd:1b:96:e7:53:93:0f:73:06:bd:bd:d9:c8:
ba:74:1f:12:2a:aa:4f:d4:b6:e9:af:02:01:bd:da:
b2:a4:14:c3:40:0b:5b:6b:7d:ee:24:d7:fa:5c:30:
ff:df:52:4b:bc:64:ef:2b:f6:dd:4f:9f:db:03:88:
9b:a9:49:93:1e:6a:a2:73:65:0e:94:3e:a5:c6:99:
95:9a:e2:3c:4c:e8:e1:6d:41:d4:e4:f0:aa:22:b6:
cf:76:f1:24:fe:92:7e:79:e5:b3:0d:db:bf:bf:36:
e7:41:d5:7a:b2:8b:56:6b:bb:1a:fe:0c:a6:a5:f4:
d8:7a:d6:b2:d1:f0:3e:ba:cd:12:86:ed:e3:32:6d:
01:c1:ee:0f:0a:6c:a7:4d:76:8e:0f:ed:8a:67:10:
17:3c:37:63:68:4c:bb:53:9a:53:ae:96:8e:92:cc:
a9:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BC:1D:EB:2C:82:AD:C7:2F:E2:89:D0:B7:3F:D2:B0:7B:98:88:7E
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/U7wd6yyCrccv4onQtz_SsHuYiH4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.141.0/24
Signature Algorithm: sha256WithRSAEncryption
54:09:f1:ba:fd:9a:50:88:ae:01:61:09:3c:0c:b2:58:b9:8b:
ad:12:58:7d:d1:49:d4:79:1f:c1:53:52:f8:d7:d3:e6:6b:e3:
9a:2f:c0:4d:40:31:ad:4f:92:c1:11:72:12:53:39:e2:1b:7c:
b6:56:bd:1b:99:68:8c:02:ab:25:e0:bd:e7:7b:28:43:85:f6:
dd:78:16:39:2c:aa:ec:78:21:97:c5:bc:f6:01:1e:d9:94:93:
14:6d:99:80:6f:a6:f7:ae:b8:d9:f1:26:ec:77:63:72:20:e6:
b5:2f:4a:0c:e1:ab:0e:ca:fd:d6:1d:c6:d0:b3:02:c9:e1:90:
c8:13:39:45:26:71:29:e1:93:67:d0:15:3d:da:c7:f5:0c:ac:
d4:71:c0:48:59:d1:eb:de:d3:24:8d:de:e9:f3:b0:c4:dd:45:
63:ed:d8:5d:1e:82:56:31:55:82:7f:32:8c:14:da:c5:e2:d1:
0a:c4:58:ef:0e:b3:38:49:b3:f4:18:e4:b9:f8:a0:ae:8a:18:
75:93:d2:fd:f0:c6:bd:9e:47:3f:14:61:00:84:60:80:34:95:
cd:17:3b:96:44:7b:2a:f8:bb:ab:ff:0f:a1:d2:94:0a:b8:68:
71:a9:b2:17:86:45:18:af:91:c3:df:3d:2e:7b:0b:bf:18:ff:
04:7e:de:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:22:59 2025 by rpki-client