Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/c3Js9Artm-lJBq8mRlBozqDxiJw.roa
File: c3Js9Artm-lJBq8mRlBozqDxiJw.roa (raw, json)
Hash identifier: JzttxR/cDFUQxmTp0f32rQUMFj7WmClPc9Hqc0HP0vs=
Subject key identifier: 73:72:6C:F4:0A:ED:9B:E9:49:06:AF:26:46:50:68:CE:A0:F1:88:9C
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 0194221FF93D56657B88E93D810D887BC324
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/c3Js9Artm-lJBq8mRlBozqDxiJw.roa
Signing time: Wed 01 Jan 2025 13:48:28 +0000
ROA not before: Wed 01 Jan 2025 13:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 5.83.153.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:f9:3d:56:65:7b:88:e9:3d:81:0d:88:7b:c3:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Jan 1 13:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=73726cf40aed9be94906af26465068cea0f1889c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7f:13:72:e6:dc:83:2f:cd:7a:2a:8a:28:11:
fe:da:41:35:50:08:7d:f1:20:8e:bf:25:6c:ef:6a:
44:48:0b:c8:da:c5:58:ae:ec:f7:62:77:5c:fb:2c:
42:9e:38:a9:c9:e7:62:ff:e5:c8:df:cc:ac:2a:ab:
c3:31:fa:d2:b1:34:24:19:4e:6a:86:92:3e:3a:79:
a6:af:7b:68:c2:5a:f8:35:00:1b:49:0e:d0:7f:d6:
48:38:4b:af:44:97:2f:df:f7:bd:bd:ef:f8:0c:ba:
2c:d8:47:a1:88:df:13:65:27:7e:5a:24:95:c6:1e:
bc:95:fb:63:88:f8:34:3c:bb:90:c8:8a:f8:9d:a8:
81:30:e1:63:48:1a:dc:15:ea:18:56:f9:79:a7:3b:
a8:f8:ff:b7:61:3d:68:7e:88:2a:72:c0:e0:5b:93:
5f:95:cc:b2:c7:a3:b0:79:a9:55:45:af:de:75:a3:
ee:80:12:88:4f:5c:87:d6:c3:5b:33:2f:85:13:9a:
ec:b3:4c:c4:6b:51:f2:b1:a6:56:30:72:43:fc:b5:
5a:54:11:44:3d:e4:f1:a7:2e:e9:02:db:ad:21:f8:
0c:b1:ff:e1:3d:b4:a7:91:1f:22:e6:d7:49:2f:1f:
e3:b5:f1:75:91:51:0c:25:25:53:fb:2d:ba:a8:99:
6f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:72:6C:F4:0A:ED:9B:E9:49:06:AF:26:46:50:68:CE:A0:F1:88:9C
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/c3Js9Artm-lJBq8mRlBozqDxiJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.83.153.0/24
Signature Algorithm: sha256WithRSAEncryption
41:bd:fb:6b:20:a4:8c:90:af:c3:25:0d:c0:96:28:f9:17:52:
b2:f3:52:2f:77:47:03:a2:31:01:81:db:13:c3:51:d1:da:ec:
8e:81:a2:67:63:a9:3b:95:b0:58:ba:59:0b:2a:a3:8a:9b:29:
c6:6a:a1:3d:12:84:bc:9d:a5:3a:ea:ff:bb:37:a5:e5:e2:bc:
10:cb:08:b2:e5:c5:03:39:08:a8:27:5a:9d:f8:29:5d:cd:05:
37:19:da:a5:53:5d:f4:66:42:d5:a4:48:4e:78:a2:58:df:8b:
f2:3f:17:58:29:09:c8:30:3d:fe:c2:04:7b:30:2b:bc:a6:b5:
73:74:5e:3f:f0:0c:33:d4:2f:90:fd:5d:c4:d7:7e:ed:23:49:
c6:3a:fc:72:29:85:61:72:7a:71:b9:17:4e:7c:6c:d6:63:d9:
db:55:97:3a:ab:2e:ff:f6:5c:50:03:1e:4a:41:ee:3b:21:82:
0f:7b:a5:8d:55:39:68:c6:7e:e2:1a:68:f1:c5:77:d8:6c:e1:
6c:35:a5:22:bc:19:6d:70:de:75:e2:d2:54:11:22:47:35:19:
a0:97:85:be:91:d6:44:39:c4:e9:e2:89:42:ef:c9:91:6a:85:
d2:1f:f7:69:f5:8e:e3:59:d7:26:92:33:3a:ee:b0:b6:db:e4:
49:9f:13:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 03:20:34 2025 by rpki-client