Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/e_Y1hI8hi1vhpnAyyPdlZVGUpv4.roa
File: e_Y1hI8hi1vhpnAyyPdlZVGUpv4.roa (raw, json)
Hash identifier: i83yx+9jSZwY+zoF1fSuxe8j4wKpnW61JXmPii2JSIk=
Subject key identifier: 7B:F6:35:84:8F:21:8B:5B:E1:A6:70:32:C8:F7:65:65:51:94:A6:FE
Certificate issuer: /CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Certificate serial: 01957ADFC4A17668125DB3722909F4A363EE
Authority key identifier: 0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/e_Y1hI8hi1vhpnAyyPdlZVGUpv4.roa
Signing time: Sun 09 Mar 2025 12:27:20 +0000
ROA not before: Sun 09 Mar 2025 12:27:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 53394
IP address blocks: 163.5.212.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:7a:df:c4:a1:76:68:12:5d:b3:72:29:09:f4:a3:63:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0ce851b6dd5d364ee19e0b38201b3e8df2624bcb
Validity
Not Before: Mar 9 12:27:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7bf635848f218b5be1a67032c8f765655194a6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d9:3a:cf:d2:b2:dd:be:32:d3:96:69:aa:a1:
9f:03:a4:ae:bf:f5:00:16:e2:da:e2:28:6c:6f:79:
bf:02:c2:09:55:71:7b:38:85:ff:ed:4a:36:b4:90:
07:03:21:20:cd:5f:3f:c6:6a:8d:27:14:5c:08:d5:
dc:dd:98:49:ca:b1:5b:21:1e:1f:dd:75:07:1b:6b:
16:83:f1:e8:a6:67:8e:a2:04:2c:7c:6c:1e:17:78:
64:d9:80:0e:e3:17:44:74:d7:c9:be:64:e3:0e:8e:
03:93:77:b7:3d:5b:fe:07:b2:d1:30:f6:e7:fc:b5:
90:13:f4:dd:d7:8a:63:d1:c2:a3:66:a6:02:62:06:
c4:0c:9a:30:c2:d2:b8:6f:92:11:59:af:f2:c2:29:
38:ee:7b:25:ac:de:8d:66:e1:ce:9e:bc:41:12:85:
58:b4:11:31:ca:04:f5:d9:94:c3:ba:b2:fc:41:e2:
60:60:fd:bf:c9:a0:e0:89:da:7c:24:71:19:4c:13:
b3:e1:3f:8e:7a:ff:02:0a:87:8e:f9:82:c9:c6:cb:
d8:0f:1a:7d:61:9b:a6:4b:04:ca:18:d5:03:69:a6:
39:5c:10:55:da:07:ec:c9:fd:3e:34:eb:14:17:9a:
af:c3:73:d4:8d:d7:26:45:ee:db:e5:d1:8e:a6:4d:
02:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:F6:35:84:8F:21:8B:5B:E1:A6:70:32:C8:F7:65:65:51:94:A6:FE
X509v3 Authority Key Identifier:
keyid:0C:E8:51:B6:DD:5D:36:4E:E1:9E:0B:38:20:1B:3E:8D:F2:62:4B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOhRtt1dNk7hngs4IBs-jfJiS8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/e_Y1hI8hi1vhpnAyyPdlZVGUpv4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/d02dfb-9673-49a8-971c-9fe94108ff01/1/DOhRtt1dNk7hngs4IBs-jfJiS8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
163.5.212.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:e3:ce:e1:2c:36:a0:47:67:06:bd:3c:06:61:ca:7f:33:3e:
9e:c8:02:db:f8:d4:91:31:99:03:7f:b4:63:34:fc:ba:7c:49:
73:3a:4f:e1:71:9c:2a:4a:73:e6:91:89:84:b4:9f:9b:e4:34:
e0:12:6c:30:a8:11:23:4f:6f:1e:83:f8:64:62:28:ae:cf:cf:
19:84:87:d8:bf:1d:56:84:0a:82:42:d7:cb:72:c1:43:bb:22:
06:19:98:dc:28:c6:ca:3f:16:81:7e:5d:b0:c9:2b:92:df:02:
e6:2b:e9:fd:79:97:01:46:d5:13:58:e2:11:b5:60:c3:5a:cc:
cd:64:7d:70:48:f0:38:a5:f8:b5:27:ef:6c:74:1b:31:d4:e3:
6f:16:00:4d:6f:cd:1f:6a:ae:6c:7f:dc:2f:36:59:83:c7:21:
04:a2:fb:7b:0f:cb:76:16:03:a6:93:1e:bd:47:28:71:5e:9b:
db:2f:6e:fb:24:67:3d:11:23:d1:31:a0:5d:41:16:a2:c1:c7:
af:64:9b:80:1a:10:7b:05:d4:ef:ed:51:20:e9:2b:b5:eb:4f:
aa:f5:3c:3a:9c:78:4d:b8:cf:fd:32:40:1a:24:59:24:95:7d:
53:fc:e9:08:41:d2:76:b1:1d:c0:b0:84:f8:34:a5:5c:1a:35:
6e:93:8c:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 06:22:13 2025 by rpki-client