Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/L-90XcnT8BpYJ70GoTfdyGi3jOQ.roa
File: L-90XcnT8BpYJ70GoTfdyGi3jOQ.roa (raw, json)
Hash identifier: Uf1j2dLJXEIC3YJJp9u1vdAX5IdXOiet4PrdHeU+76o=
Subject key identifier: 2F:EF:74:5D:C9:D3:F0:1A:58:27:BD:06:A1:37:DD:C8:68:B7:8C:E4
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01942067DC5F08596DD14EABA93C522EBB96
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/L-90XcnT8BpYJ70GoTfdyGi3jOQ.roa
Signing time: Wed 01 Jan 2025 05:47:44 +0000
ROA not before: Wed 01 Jan 2025 05:47:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16276
IP address blocks: 95.214.173.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:dc:5f:08:59:6d:d1:4e:ab:a9:3c:52:2e:bb:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jan 1 05:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2fef745dc9d3f01a5827bd06a137ddc868b78ce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:92:84:87:01:14:d6:4d:24:2f:d0:eb:e5:2d:
6b:e9:8c:8c:4b:c4:f4:c7:21:e4:49:07:90:b9:71:
68:a5:d2:65:18:50:65:9d:0e:9a:6f:d1:62:74:01:
ed:de:64:52:a5:8c:18:46:ac:d3:11:d9:3a:44:4f:
5e:e2:f9:5e:4f:1e:0d:11:8b:d3:56:28:84:0e:b5:
aa:21:d7:3a:9b:67:4e:97:b6:dc:f5:75:25:0e:5c:
67:c6:30:db:d8:7a:f7:c5:ae:1b:29:33:4a:f5:87:
d4:c5:c4:7f:6f:31:b4:56:7a:83:44:65:02:a8:15:
69:2c:05:21:da:be:c5:c3:9b:2d:73:79:c2:25:5f:
07:e5:98:1c:ee:bc:1a:f2:c2:e3:cb:6a:70:ea:4d:
9e:a9:cb:21:ee:23:91:b4:1e:33:9d:75:02:4f:46:
89:81:c6:5e:87:af:0d:a7:92:77:dc:87:ab:ba:4a:
8a:33:b4:3f:37:f0:e9:8e:3c:21:5f:07:de:04:48:
1d:2b:2b:e7:61:1b:39:8e:f8:92:01:a6:4e:6a:24:
c4:a8:bf:56:31:02:9b:ff:e1:9e:b4:73:24:00:56:
bf:b9:95:d8:d6:e6:40:f6:d7:c4:77:d3:a5:74:b6:
2a:ca:b2:69:85:92:d9:76:9b:e5:90:e2:df:5b:d5:
eb:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:EF:74:5D:C9:D3:F0:1A:58:27:BD:06:A1:37:DD:C8:68:B7:8C:E4
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/L-90XcnT8BpYJ70GoTfdyGi3jOQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
95.214.173.0/24
Signature Algorithm: sha256WithRSAEncryption
01:78:e9:89:42:64:51:6a:6b:0d:3e:ac:0c:19:57:3a:3d:41:
a8:62:2a:10:78:37:fa:9e:22:97:72:f0:9e:cf:88:87:bc:88:
c3:ad:57:2a:1e:8e:fb:6d:55:1f:5c:82:25:bc:6e:de:4a:20:
06:70:28:61:63:26:96:82:28:ee:51:88:de:7e:8a:45:67:bb:
98:48:19:f3:fe:25:77:c8:be:83:20:19:1e:0b:b2:fc:fa:ba:
e4:27:30:f8:9a:10:18:96:f1:8a:03:92:dd:f6:ec:3c:27:52:
20:df:a4:8b:49:fa:f2:72:6d:73:bc:ee:a2:0a:f5:20:a1:86:
f0:6f:78:f1:72:aa:4e:98:1a:00:da:e4:eb:54:d1:74:5f:46:
53:11:a5:e5:53:2e:59:ed:4f:89:4b:7c:a3:ca:99:74:c9:59:
a9:89:1b:04:a1:42:e5:9b:a2:86:8d:d1:4b:dd:f3:73:c2:ca:
4c:9f:d6:9e:48:11:87:38:d8:ac:93:61:a1:3d:dd:fb:2b:62:
9d:99:3c:76:7f:78:a8:9a:31:db:24:94:6e:44:f7:7c:69:97:
7f:11:68:80:a6:03:0f:d1:9f:5b:4a:3a:ce:1b:d5:04:e6:dc:
21:ce:5b:b4:b8:b8:27:4e:59:e7:c9:5e:17:cb:ad:46:60:39:
b5:d7:d5:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 21:15:59 2025 by rpki-client