Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/vRM-SZQZ9WJ0XQQ278XKE1t0Eew.roa
File: vRM-SZQZ9WJ0XQQ278XKE1t0Eew.roa (raw, json)
Hash identifier: ox+5CMMHJyI+TwmBaJfMwL8IhAyocB1xWi95CBSAXM0=
Subject key identifier: BD:13:3E:49:94:19:F5:62:74:5D:04:36:EF:C5:CA:13:5B:74:11:EC
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 019426D8664CB957F2ABF350DF9D8ADD5E38
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/vRM-SZQZ9WJ0XQQ278XKE1t0Eew.roa
Signing time: Thu 02 Jan 2025 11:48:23 +0000
ROA not before: Thu 02 Jan 2025 11:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43350
IP address blocks: 94.74.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:66:4c:b9:57:f2:ab:f3:50:df:9d:8a:dd:5e:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Jan 2 11:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bd133e499419f562745d0436efc5ca135b7411ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:1e:05:27:16:3c:d3:0f:53:e1:e6:5f:c3:1a:
44:70:97:84:8c:a0:1e:00:88:a7:a8:ca:36:a4:06:
1f:90:85:af:a0:e1:1c:0b:14:a9:8c:82:f6:b3:e9:
46:2b:0b:b6:bd:74:a7:0d:7b:39:16:77:d4:06:c9:
0b:fe:f5:99:3e:86:6d:b5:55:84:4b:9c:b3:c7:52:
1f:a5:00:ad:af:2f:93:c6:d0:76:84:c1:4a:e6:2c:
fb:22:ef:10:49:6e:c7:0a:03:1c:c2:ad:b2:38:d1:
c8:79:e0:ad:a7:db:3c:87:fa:86:71:9e:4b:5d:98:
0a:d6:9b:59:df:a1:18:a7:d2:49:3a:b1:6e:3b:6a:
ba:93:a8:60:cf:ac:ae:c0:e3:af:56:b1:28:c0:8e:
24:3a:3e:fb:bf:f3:aa:e9:f4:ce:aa:4b:03:c0:31:
3a:4f:22:e0:82:c9:2d:6a:dd:bb:ce:86:ae:b2:24:
92:ca:5e:fe:d8:11:8a:7b:69:cc:8b:d2:46:5d:b8:
99:d0:91:68:4c:88:57:48:7a:f5:98:50:ba:34:da:
a2:4a:d2:de:d1:8b:20:ee:17:aa:ce:ee:2b:29:be:
5d:fe:20:79:b4:fe:35:92:f3:ee:88:e2:0c:b0:7e:
7d:fb:cf:2a:ee:71:ff:13:93:cf:bd:ac:cf:21:b2:
c2:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:13:3E:49:94:19:F5:62:74:5D:04:36:EF:C5:CA:13:5B:74:11:EC
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/vRM-SZQZ9WJ0XQQ278XKE1t0Eew.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.74.157.0/24
Signature Algorithm: sha256WithRSAEncryption
19:45:33:62:15:b0:88:a1:fa:c4:0a:6e:79:be:a9:21:a6:17:
9a:09:1c:26:07:44:c6:c0:00:28:62:bd:a8:3c:7d:27:e7:58:
ce:24:de:a4:c9:c5:6d:11:bb:92:dc:f9:65:b3:50:cd:29:44:
9b:42:fe:db:05:f4:5c:61:71:94:e7:75:2c:b7:9f:45:46:e4:
0c:b8:63:94:db:08:6f:b9:84:bb:f8:5a:cf:6a:b7:fe:b2:91:
88:d6:68:8a:7a:ec:15:52:44:07:23:48:7c:7e:0e:ed:73:3a:
12:8d:93:a9:97:66:64:99:8d:f6:9b:85:aa:d6:b4:bc:6a:fb:
52:a2:4a:f7:ce:af:ab:27:92:66:4a:c7:f7:f0:0f:88:ac:b1:
c2:78:cf:7b:55:a0:15:f8:d4:09:21:6d:11:e9:48:05:b1:12:
01:e7:17:30:5d:3e:e6:79:64:40:d8:0f:14:78:eb:a4:c7:7c:
45:62:b3:ec:dd:bc:ac:89:6f:b3:fb:ae:6a:46:c8:69:61:34:
fb:1b:ea:ca:c6:c7:53:3f:d8:a3:78:ea:3a:f6:56:90:73:93:
c9:5f:c4:96:5d:ed:a2:af:3d:3a:d2:0a:47:43:f2:5c:4f:2b:
47:b2:c0:26:8d:7a:ff:36:8e:70:61:2e:2f:af:15:fa:86:78:
74:67:64:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:56:42 2025 by rpki-client