Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/eo3YEkR_kIlvbYQzw6Gy-UPzN1Q.roa
File: eo3YEkR_kIlvbYQzw6Gy-UPzN1Q.roa (raw, json)
Hash identifier: JLhOns4DewIU/XF05/PioRQMuqO3MR2c58DWu+qOVVQ=
Subject key identifier: 7A:8D:D8:12:44:7F:90:89:6F:6D:84:33:C3:A1:B2:F9:43:F3:37:54
Certificate issuer: /CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Certificate serial: 01941F8C5B5913FC461DAE535D90AF9E3DA2
Authority key identifier: 08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/eo3YEkR_kIlvbYQzw6Gy-UPzN1Q.roa
Signing time: Wed 01 Jan 2025 01:47:59 +0000
ROA not before: Wed 01 Jan 2025 01:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41403
IP address blocks: 78.136.232.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:5b:59:13:fc:46:1d:ae:53:5d:90:af:9e:3d:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0802b95ce6239d526c35ae7a8e2ceb48aeb82b5f
Validity
Not Before: Jan 1 01:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a8dd812447f90896f6d8433c3a1b2f943f33754
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:73:5d:8a:ba:59:08:40:c4:8c:db:dd:35:29:
ae:02:4b:f2:a9:fa:57:d4:97:71:6f:ad:14:fb:74:
d5:bf:0a:4c:83:97:6f:49:82:18:6f:ab:08:50:87:
b6:aa:e8:b4:b4:f8:13:c5:39:1c:d3:0f:a0:32:8f:
35:e3:ef:e0:e3:e9:2a:d6:6f:cf:49:59:3d:95:89:
67:8c:9a:18:27:b1:1c:44:4f:cf:c2:5a:64:a8:f1:
de:c3:66:59:b0:2a:8d:3a:de:12:89:20:bb:90:60:
6e:23:aa:2b:ec:9e:91:1e:b8:2d:75:c1:a8:e6:16:
74:90:fb:65:0b:a0:4d:c1:c7:4c:89:53:2b:65:67:
2c:45:ab:8c:c7:70:fc:28:a0:36:0d:c6:da:73:44:
a3:39:56:50:29:cb:bd:46:dd:1c:4a:bd:80:3f:48:
2c:32:9f:b6:0c:37:ce:6e:8a:ce:f9:9b:54:45:85:
8f:ce:e1:ef:0b:8c:91:b9:bc:40:e5:14:56:f4:f6:
6b:19:d2:de:de:c7:c1:2a:f9:27:56:dd:27:3e:a7:
cc:f8:c7:7b:61:24:65:ae:15:6f:28:d0:f2:30:44:
d2:88:32:73:cd:b8:22:60:f3:ee:5b:cf:c0:89:14:
45:89:01:89:29:ff:28:79:9f:27:32:e2:e7:0f:4a:
03:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:8D:D8:12:44:7F:90:89:6F:6D:84:33:C3:A1:B2:F9:43:F3:37:54
X509v3 Authority Key Identifier:
keyid:08:02:B9:5C:E6:23:9D:52:6C:35:AE:7A:8E:2C:EB:48:AE:B8:2B:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CAK5XOYjnVJsNa56jizrSK64K18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/eo3YEkR_kIlvbYQzw6Gy-UPzN1Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/10e965-7409-44d8-9502-cf0aa3ecad28/1/CAK5XOYjnVJsNa56jizrSK64K18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.232.0/21
Signature Algorithm: sha256WithRSAEncryption
38:cc:45:e2:18:43:31:b1:94:12:18:2c:d0:2d:32:4f:68:1c:
f2:dc:f1:1b:cc:21:e1:00:57:7d:d5:c6:dc:af:27:d7:e7:cb:
2c:c0:a0:d3:f4:7c:b5:f5:52:22:11:3d:5d:df:52:01:d0:76:
9b:19:41:f6:70:20:33:c5:03:ad:44:dc:96:70:15:f3:65:fa:
4f:c1:6c:7d:bc:ff:ee:52:bf:3f:1b:e9:62:21:56:18:6e:8f:
1d:52:19:2f:4b:54:b6:0d:7a:03:fc:6c:39:6c:32:c8:37:0b:
d0:1b:b1:c2:d0:e5:d8:59:49:c0:e3:da:77:bb:c2:ce:eb:02:
70:32:20:9b:50:6d:a7:1f:a1:02:73:ea:6f:21:18:08:97:f3:
0f:29:55:bf:35:7d:a8:52:89:32:61:76:c0:ae:70:bf:fd:65:
a8:2c:e4:83:f6:07:2f:eb:ae:f9:70:58:c3:e5:21:66:f7:5e:
bf:59:7d:e7:27:0f:f1:08:a4:ed:1b:ad:c5:3d:17:1a:91:9a:
cc:69:92:75:48:89:b2:79:c7:06:ba:aa:9e:2e:6b:76:95:09:
fa:01:43:67:59:fc:be:71:7d:54:63:e6:4b:34:8b:49:ce:79:
fa:5e:5d:a4:67:e8:06:f2:19:d1:8f:2b:03:08:ae:81:ec:93:
b9:84:86:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:37:19 2025 by rpki-client