Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jRGIDLjaacPkiX2VG-irpp4Fvrw.roa
File: jRGIDLjaacPkiX2VG-irpp4Fvrw.roa (raw, json)
Hash identifier: p+l71WbEK/9TlGFi3QK9yWYnlCAvZPiVLvOeM6QWZ5w=
Subject key identifier: 8D:11:88:0C:B8:DA:69:C3:E4:89:7D:95:1B:E8:AB:A6:9E:05:BE:BC
Certificate issuer: /CN=3e6097698686e1555f51f6c883bc5a58549b2362
Certificate serial: 01954354747093E334EEF2FC306E736D8D73
Authority key identifier: 3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jRGIDLjaacPkiX2VG-irpp4Fvrw.roa
Signing time: Wed 26 Feb 2025 17:36:03 +0000
ROA not before: Wed 26 Feb 2025 17:36:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44547
IP address blocks: 5.175.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:43:54:74:70:93:e3:34:ee:f2:fc:30:6e:73:6d:8d:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e6097698686e1555f51f6c883bc5a58549b2362
Validity
Not Before: Feb 26 17:36:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8d11880cb8da69c3e4897d951be8aba69e05bebc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:26:a1:f2:2d:5a:63:c6:19:8c:d1:91:c0:19:
88:79:89:69:7b:37:24:d0:5b:e4:e3:9d:eb:65:12:
f7:ae:b1:7e:c7:ab:ea:15:e2:b2:e2:3e:48:4f:9c:
68:c8:14:5e:ab:9e:47:2d:45:8c:af:84:96:b2:de:
d9:26:60:ca:61:e3:92:4a:ad:e1:b4:57:09:bd:c4:
8c:b7:fd:e7:44:6f:21:78:b2:ee:15:4a:bd:fb:30:
67:3d:26:7c:b7:85:a4:6f:53:3d:d6:1d:37:02:6f:
8f:df:ed:0a:e5:0d:76:31:19:a8:e7:08:08:ad:ec:
b3:43:50:ac:d9:59:7c:da:a2:84:ba:b8:a1:a9:3a:
12:ac:6d:85:46:57:e1:4b:03:e0:57:2e:92:36:49:
20:89:13:05:1d:ef:80:a8:03:4c:ae:ba:7d:9c:26:
7f:dc:bb:0e:8a:1a:82:94:8e:3b:10:d2:f8:53:2a:
23:ba:ce:64:0d:7f:94:ee:3a:8b:85:7d:0b:d6:64:
a0:de:20:f4:f0:1e:de:e9:63:8f:f8:67:17:93:b8:
ad:8c:fe:86:a7:a8:d9:63:64:88:ad:11:ce:7b:f5:
50:f6:84:1a:a5:ba:e2:98:74:a6:cf:19:13:61:5d:
0a:80:85:ae:1c:8b:34:50:58:7a:fb:fc:28:31:53:
fe:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:11:88:0C:B8:DA:69:C3:E4:89:7D:95:1B:E8:AB:A6:9E:05:BE:BC
X509v3 Authority Key Identifier:
keyid:3E:60:97:69:86:86:E1:55:5F:51:F6:C8:83:BC:5A:58:54:9B:23:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PmCXaYaG4VVfUfbIg7xaWFSbI2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/jRGIDLjaacPkiX2VG-irpp4Fvrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/965837-52cb-46b4-aedb-e1bd88d3fd07/1/PmCXaYaG4VVfUfbIg7xaWFSbI2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.175.136.0/24
Signature Algorithm: sha256WithRSAEncryption
58:01:e8:a5:6a:08:f3:04:21:1d:a7:05:e4:46:f4:a1:62:33:
70:dc:fc:4c:aa:39:23:22:d6:ea:dc:84:a9:a0:5d:b6:33:e2:
04:ab:28:8d:e3:6f:8e:89:98:e6:36:06:fd:3c:16:d4:64:cc:
98:b3:df:53:fa:a7:e6:a2:43:b0:23:c2:89:69:68:d0:7f:89:
82:1c:e2:fc:7c:bc:37:73:60:59:c9:f1:a3:07:6e:30:ec:ca:
a8:66:fa:6b:b1:af:98:5c:92:09:fe:03:56:48:5c:dc:86:52:
2e:fc:a7:49:80:8a:8d:3f:73:b5:f0:a6:09:66:7f:25:62:fc:
d0:89:d4:7d:e7:9f:ca:62:3f:9c:36:39:8d:eb:7d:be:13:72:
ca:01:41:99:68:24:43:14:4f:e7:4e:66:89:8a:4f:e8:8b:ac:
ea:f8:34:9b:f6:ee:6b:bd:da:ad:35:76:2b:31:5e:35:6f:58:
44:45:87:c8:c5:ca:7d:94:b5:1e:07:7e:42:ec:13:b5:f8:17:
ec:34:84:e2:f2:a4:c1:66:15:fa:f4:02:e9:8f:5e:c9:a5:96:
8e:b3:cb:4b:3e:8e:29:a9:cb:c5:99:7f:fc:cd:ac:33:fc:f4:
83:bb:e2:88:dc:5f:c2:00:37:43:cc:26:84:cd:34:0d:51:b5:
1c:f9:9c:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 02:30:29 2025 by rpki-client