Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/1fc627-a373-474d-bc7e-e2d846849482/1/crLPMCLXufFmk5JWVKp5VcK8TgM.roa
File: crLPMCLXufFmk5JWVKp5VcK8TgM.roa (raw, json)
Hash identifier: YNo5LlcmxdPpx/UYh+crxJHa+r1xiA2h5iT8bwm5x4Y=
Subject key identifier: 72:B2:CF:30:22:D7:B9:F1:66:93:92:56:54:AA:79:55:C2:BC:4E:03
Certificate issuer: /CN=2efb9e6d7566dfef9d5cb98d929cb70323d389f2
Certificate serial: 019425213AB47FDD71CFF19E72D7C69EB4E2
Authority key identifier: 2E:FB:9E:6D:75:66:DF:EF:9D:5C:B9:8D:92:9C:B7:03:23:D3:89:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LvuebXVm3--dXLmNkpy3AyPTifI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/1fc627-a373-474d-bc7e-e2d846849482/1/crLPMCLXufFmk5JWVKp5VcK8TgM.roa
Signing time: Thu 02 Jan 2025 03:48:42 +0000
ROA not before: Thu 02 Jan 2025 03:48:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49354
IP address blocks: 37.18.128.0/22 maxlen: 26
2a05:280::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:3a:b4:7f:dd:71:cf:f1:9e:72:d7:c6:9e:b4:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2efb9e6d7566dfef9d5cb98d929cb70323d389f2
Validity
Not Before: Jan 2 03:48:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=72b2cf3022d7b9f16693925654aa7955c2bc4e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6f:51:28:e1:9b:db:a8:01:40:6a:8b:f4:1e:
0c:c1:77:aa:fc:2c:72:07:e8:66:6b:14:7b:46:17:
ee:6e:32:7e:f1:79:c2:93:f3:3b:77:0e:a2:a1:b9:
b8:f3:fa:0e:62:ff:e2:d9:6f:34:64:17:17:b3:d8:
a8:b5:f5:4b:e9:27:1e:18:47:e3:fb:88:84:13:76:
ad:8b:c6:05:e6:d3:17:c6:dc:37:d4:ab:2f:18:97:
03:63:19:ed:3b:9e:60:93:ba:9d:5c:71:00:c7:9b:
c6:12:22:23:08:76:1e:71:b1:be:98:cc:57:04:ad:
30:3c:df:06:9f:01:fa:04:07:98:42:cf:37:30:96:
93:6e:59:c8:8a:d8:b6:fe:ef:42:35:25:b8:dc:33:
74:11:af:8d:c7:78:37:79:e9:ed:0f:43:76:83:ca:
f8:20:eb:60:78:67:8a:ff:58:ea:8d:a3:81:bb:cc:
ef:26:00:71:99:e7:97:6a:f6:c8:35:9a:66:4c:eb:
5e:4b:f1:90:1d:6a:75:a9:34:fb:ff:80:63:d9:1c:
ba:1c:6c:9d:82:36:ae:5c:08:4e:40:26:df:c7:74:
5f:8b:c6:7f:37:77:e0:62:3a:67:75:b3:07:11:d8:
82:32:7a:ea:98:ee:3b:b5:1d:da:cb:e5:28:99:f2:
99:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:B2:CF:30:22:D7:B9:F1:66:93:92:56:54:AA:79:55:C2:BC:4E:03
X509v3 Authority Key Identifier:
keyid:2E:FB:9E:6D:75:66:DF:EF:9D:5C:B9:8D:92:9C:B7:03:23:D3:89:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LvuebXVm3--dXLmNkpy3AyPTifI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/1fc627-a373-474d-bc7e-e2d846849482/1/crLPMCLXufFmk5JWVKp5VcK8TgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/1fc627-a373-474d-bc7e-e2d846849482/1/LvuebXVm3--dXLmNkpy3AyPTifI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.18.128.0/22
IPv6:
2a05:280::/29
Signature Algorithm: sha256WithRSAEncryption
30:e2:58:43:5b:2c:c0:83:00:77:c9:98:fe:33:eb:be:e0:af:
1f:d4:c8:71:13:50:54:5d:f2:71:f2:19:42:32:c6:58:4a:cb:
d3:0f:0b:70:23:71:c6:02:35:c4:a3:63:fb:e4:e5:41:9e:c7:
0f:e8:27:3b:90:16:ef:3b:64:4f:c3:16:ea:7a:22:89:bb:21:
05:47:45:9a:89:bb:e5:c9:83:22:b8:31:ce:5c:cc:b9:c6:ea:
95:79:c2:26:ce:50:93:4b:a8:32:c5:b4:46:bc:d2:88:3d:d5:
01:a0:27:30:5c:b3:2c:6b:16:b7:e7:11:02:37:70:d5:a1:fc:
25:1e:62:10:40:e7:95:f2:a3:1f:ab:72:bb:c4:f7:34:4f:0e:
64:88:e8:83:b7:86:2e:cc:2e:00:5a:43:43:f9:97:d6:8a:b7:
01:f0:d6:55:e0:6f:2a:ee:ad:ec:ac:49:2c:89:48:50:f5:ba:
63:4e:56:c6:a9:f0:b3:69:7d:8a:e2:4d:28:2e:52:c4:0a:65:
2d:82:82:50:13:7b:a7:99:cc:9b:cc:79:66:15:bb:f5:87:f5:
dc:4f:df:b3:cb:29:b7:33:d0:84:4c:81:3f:55:96:26:10:99:
1f:20:1a:71:7b:a6:af:e1:0a:da:46:6b:bd:d2:9b:24:ad:6d:
00:39:71:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:10:39 2025 by rpki-client