Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/biEUqCkAyoPq-Mnm3P1_OvhDdi8.roa
File: biEUqCkAyoPq-Mnm3P1_OvhDdi8.roa (raw, json)
Hash identifier: Gi+zixTezsMvQDObpXCaUkc6hzyFUma3jDwHSH/UkhU=
Subject key identifier: 6E:21:14:A8:29:00:CA:83:EA:F8:C9:E6:DC:FD:7F:3A:F8:43:76:2F
Certificate issuer: /CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Certificate serial: 01942823A1A3A56E06ACD01269D4DD29F833
Authority key identifier: 77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/biEUqCkAyoPq-Mnm3P1_OvhDdi8.roa
Signing time: Thu 02 Jan 2025 17:50:11 +0000
ROA not before: Thu 02 Jan 2025 17:50:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 399641
IP address blocks: 87.248.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:23:a1:a3:a5:6e:06:ac:d0:12:69:d4:dd:29:f8:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77f61fc7c0ab41ce154e7bcb08ef962351a46784
Validity
Not Before: Jan 2 17:50:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e2114a82900ca83eaf8c9e6dcfd7f3af843762f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:34:c6:57:4e:95:bf:ec:0e:10:6d:d8:d1:e9:
cf:df:41:11:01:cf:bb:fc:ee:46:66:6e:b5:74:88:
a5:63:4a:21:3f:7f:7c:e6:5c:91:80:9b:9f:f7:9a:
c9:82:29:fd:5e:3f:31:0d:e1:2c:6c:e8:76:ff:a7:
be:fc:81:e1:7b:7e:76:18:98:a7:ab:2c:90:95:b7:
7a:54:b3:2f:6d:91:d2:24:86:f0:41:77:d4:7d:9c:
29:81:0a:2a:8c:80:61:28:2a:1a:8c:2e:d9:0c:71:
31:8b:7c:b8:04:96:c8:6a:15:aa:81:40:78:4f:dd:
ec:8f:ce:91:f4:27:b7:13:02:0b:fa:2a:76:a2:85:
3e:91:f8:90:49:47:94:5f:9d:93:61:5a:c4:3c:c9:
80:4c:e8:82:23:82:83:84:53:72:1e:98:8b:c3:b7:
81:52:19:c6:d6:44:65:e9:9b:78:a7:f5:78:8a:6f:
c7:36:c5:f1:96:18:20:b7:e8:24:8d:cc:00:76:6d:
b4:0a:69:7f:7f:46:95:d3:a4:6d:6d:25:d8:6c:31:
b0:98:66:87:8e:cb:5a:c1:da:71:e1:c2:7e:91:77:
4b:f6:19:d4:13:22:de:f8:62:3f:38:5d:e9:63:4e:
29:8b:7c:4a:7f:66:81:60:af:bd:c4:c9:e5:59:40:
fd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:21:14:A8:29:00:CA:83:EA:F8:C9:E6:DC:FD:7F:3A:F8:43:76:2F
X509v3 Authority Key Identifier:
keyid:77:F6:1F:C7:C0:AB:41:CE:15:4E:7B:CB:08:EF:96:23:51:A4:67:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/biEUqCkAyoPq-Mnm3P1_OvhDdi8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/9213ec-85a9-48d6-aa69-edc9d02faf54/1/d_Yfx8CrQc4VTnvLCO-WI1GkZ4Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.248.149.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:66:62:f1:e0:47:f9:1f:c5:89:28:fd:79:f2:9e:26:36:db:
74:7f:cf:cc:fb:2e:ff:02:fa:1c:66:1a:f7:25:37:bf:2b:80:
c4:74:1f:14:df:9f:3c:b4:ca:a6:14:39:0d:72:8c:85:b7:29:
77:1f:67:e3:5f:69:89:b9:ce:11:09:0a:62:82:a4:6f:b2:72:
0c:e1:6c:b7:62:a3:9c:61:7e:2c:90:13:ef:12:e1:03:22:bc:
eb:10:e3:00:a9:c8:01:f5:2a:d8:c6:4a:f8:56:0c:21:66:64:
27:11:dc:6a:ad:9d:31:30:d4:26:1d:f1:ef:ee:63:46:c1:24:
0c:93:62:71:e4:da:b6:82:d9:91:49:2e:b2:d1:52:39:6d:25:
1a:db:fe:26:a1:76:ef:2e:06:02:8a:42:a8:4e:a4:f6:70:fa:
03:32:70:18:35:6d:91:eb:63:57:bb:07:9b:27:42:97:08:3b:
3e:ee:5e:a0:b7:5b:66:f3:66:31:26:95:80:5f:79:14:93:a2:
9f:9b:0d:24:a0:55:3b:8b:cf:2b:b1:5c:e3:d3:59:0e:dc:69:
d1:f7:8b:4c:f9:a1:93:de:8b:ec:d8:31:60:54:53:70:bb:d6:
3e:ec:90:c3:97:05:f6:61:b1:11:b3:68:ba:d3:50:48:31:7c:
5a:6d:ed:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 20:44:43 2025 by rpki-client