Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/c7e47d-c08e-4769-86d2-c7f8b057aed0/1/UsAeeJKz5x5UM9R7HFO2Dgzi0jA.roa
File: UsAeeJKz5x5UM9R7HFO2Dgzi0jA.roa (raw, json)
Hash identifier: FFiDVfqG1v30MyW/O7JaJbrLiihT2L0idYJ853z7lV4=
Subject key identifier: 52:C0:1E:78:92:B3:E7:1E:54:33:D4:7B:1C:53:B6:0E:0C:E2:D2:30
Certificate issuer: /CN=c11f603de409a710fdae62cac1c55393a953b5b5
Certificate serial: 01941FFA44C38633A685F922CA6116BA8620
Authority key identifier: C1:1F:60:3D:E4:09:A7:10:FD:AE:62:CA:C1:C5:53:93:A9:53:B5:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wR9gPeQJpxD9rmLKwcVTk6lTtbU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/c7e47d-c08e-4769-86d2-c7f8b057aed0/1/UsAeeJKz5x5UM9R7HFO2Dgzi0jA.roa
Signing time: Wed 01 Jan 2025 03:48:02 +0000
ROA not before: Wed 01 Jan 2025 03:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201548
IP address blocks: 5.252.40.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:44:c3:86:33:a6:85:f9:22:ca:61:16:ba:86:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c11f603de409a710fdae62cac1c55393a953b5b5
Validity
Not Before: Jan 1 03:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=52c01e7892b3e71e5433d47b1c53b60e0ce2d230
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:91:c7:d2:72:a2:3c:97:df:fb:00:4a:0d:67:
87:3f:cf:77:5a:ae:dc:93:e3:b2:cd:a1:58:cb:20:
2a:da:ea:ed:79:c6:52:87:79:ee:8a:90:9b:2b:bd:
93:b0:b3:4d:2a:26:dd:fd:87:a9:41:57:bf:43:c4:
14:87:7d:0c:63:70:3b:9e:a6:f6:8b:86:4d:9d:d4:
03:31:d1:65:cf:d7:36:ad:29:f9:ad:74:4a:59:b3:
7f:5c:65:fe:7c:da:87:b4:71:08:ed:fc:d3:f8:88:
ed:73:1a:cd:a4:1f:44:db:83:24:a3:84:60:24:3d:
1f:b2:f5:c5:c3:54:b4:41:41:28:41:d3:76:29:04:
c1:3a:ba:09:15:3a:58:1c:11:7e:af:4a:f0:e2:89:
cd:9d:5b:6b:17:05:42:0a:6e:fa:95:30:80:7d:a6:
f9:1e:47:e4:11:9d:20:c1:d5:dd:07:9a:cd:08:0b:
d1:ae:5e:13:6f:79:e8:85:42:82:ba:6a:0e:c1:2a:
85:6a:8a:e5:70:19:72:28:4f:50:b0:4e:df:bb:b5:
1a:08:c0:2f:ea:5d:79:97:47:b6:ac:7a:bf:72:e9:
9a:e0:d3:c4:08:31:08:54:07:e6:58:8a:97:1d:55:
72:06:23:81:a6:28:1c:9a:a7:dc:2b:fb:e4:a4:44:
b0:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:C0:1E:78:92:B3:E7:1E:54:33:D4:7B:1C:53:B6:0E:0C:E2:D2:30
X509v3 Authority Key Identifier:
keyid:C1:1F:60:3D:E4:09:A7:10:FD:AE:62:CA:C1:C5:53:93:A9:53:B5:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wR9gPeQJpxD9rmLKwcVTk6lTtbU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/c7e47d-c08e-4769-86d2-c7f8b057aed0/1/UsAeeJKz5x5UM9R7HFO2Dgzi0jA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/c7e47d-c08e-4769-86d2-c7f8b057aed0/1/wR9gPeQJpxD9rmLKwcVTk6lTtbU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.252.40.0/22
Signature Algorithm: sha256WithRSAEncryption
05:9c:10:03:2d:db:ff:09:7b:ed:0d:b8:64:87:9e:13:e0:f3:
28:e2:58:b7:d4:67:51:2d:8a:b9:83:72:e5:3f:07:f9:bc:f5:
dd:35:31:24:38:21:bd:22:bd:4a:7f:76:c8:a1:de:fe:10:36:
55:27:fe:36:b7:3b:59:d6:97:3e:52:5a:b1:a4:52:5a:25:36:
17:e4:b9:83:6c:de:54:18:0e:06:8c:56:49:54:8c:be:ae:19:
da:4e:f1:bb:75:7f:06:46:5f:f4:bc:43:90:73:fc:a2:4c:fc:
83:32:52:61:0f:7d:59:cb:43:14:12:d7:12:8c:49:46:70:93:
6d:8d:4a:29:1e:25:91:3c:ca:7e:66:f6:54:d6:a7:a6:5d:0a:
14:ea:9b:e4:2a:8d:01:9a:e0:cb:0c:f0:12:e1:1d:0d:09:51:
70:21:e4:71:5e:3c:73:74:bc:9c:39:35:65:fd:0d:86:d9:e0:
a9:db:0c:9a:ce:b7:b7:1f:b3:ce:7a:3f:62:bd:29:7d:68:cb:
73:cf:fa:42:c8:94:f3:6a:74:c4:ba:0e:8c:3a:67:f4:b0:97:
11:0b:6d:f1:81:e9:65:e1:09:74:ca:db:84:ab:bf:93:e6:2f:
d5:d1:5d:dd:b1:7b:9b:ed:bd:ab:87:49:45:da:e3:89:66:14:
52:9e:cc:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 03:34:38 2025 by rpki-client