Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/mTvSgsKtYgRt8pu16sczwcA1b5Q.roa
File: mTvSgsKtYgRt8pu16sczwcA1b5Q.roa (raw, json)
Hash identifier: HA7KgQxth/bMhlTtQkd1v9hx7TIOnotP3RRusUYr7/4=
Subject key identifier: 99:3B:D2:82:C2:AD:62:04:6D:F2:9B:B5:EA:C7:33:C1:C0:35:6F:94
Certificate issuer: /CN=4456c14cd8724f9a909627b94e006cf69d12307b
Certificate serial: 0194228DC7A338BDD906CCB176AF229ED11B
Authority key identifier: 44:56:C1:4C:D8:72:4F:9A:90:96:27:B9:4E:00:6C:F6:9D:12:30:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/mTvSgsKtYgRt8pu16sczwcA1b5Q.roa
Signing time: Wed 01 Jan 2025 15:48:24 +0000
ROA not before: Wed 01 Jan 2025 15:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 57043
IP address blocks: 109.205.8.0/24 maxlen: 24
109.205.9.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:c7:a3:38:bd:d9:06:cc:b1:76:af:22:9e:d1:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4456c14cd8724f9a909627b94e006cf69d12307b
Validity
Not Before: Jan 1 15:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=993bd282c2ad62046df29bb5eac733c1c0356f94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:e6:20:3b:a8:be:d0:65:fe:5d:9b:3f:c5:d5:
c2:c1:4b:18:74:50:63:87:44:2d:f4:14:34:9f:46:
b1:1f:8e:76:af:5b:4a:ea:49:51:5b:5c:f9:5e:df:
26:3b:e6:01:54:68:02:69:40:32:c8:94:e3:d2:8d:
0d:c0:be:15:d9:a1:89:89:aa:fb:82:d1:2a:bc:b7:
8f:65:0c:eb:f0:d5:01:41:fd:f1:f9:52:af:11:e6:
64:f6:bf:98:2b:54:14:ec:e4:93:19:25:52:e3:93:
b4:96:32:fd:89:e3:b9:21:b3:15:c2:a5:ef:bd:d6:
5d:b0:ca:18:6f:b4:a0:2e:3c:d6:2b:1a:db:58:45:
50:11:d5:55:f1:ce:bc:54:08:63:02:b8:8b:a8:38:
ec:ed:6c:59:78:99:89:bb:53:d7:57:b0:8d:02:43:
99:a6:d1:e0:94:fa:7a:1a:08:34:b7:b6:29:71:7e:
af:83:7f:2a:d5:94:12:e2:1d:72:ab:12:24:12:87:
f7:29:50:36:bd:1c:88:de:e4:55:75:c6:29:96:79:
e9:ef:e3:98:ab:35:6d:62:6b:03:5c:87:8c:d8:c4:
48:7a:4c:2a:2a:0c:87:b6:76:58:94:b7:99:9d:14:
a1:bc:5e:89:5a:4d:8e:6c:37:7d:c1:dd:bf:12:05:
05:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:3B:D2:82:C2:AD:62:04:6D:F2:9B:B5:EA:C7:33:C1:C0:35:6F:94
X509v3 Authority Key Identifier:
keyid:44:56:C1:4C:D8:72:4F:9A:90:96:27:B9:4E:00:6C:F6:9D:12:30:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFbBTNhyT5qQlie5TgBs9p0SMHs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/mTvSgsKtYgRt8pu16sczwcA1b5Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/5ecfc2-da70-4333-8f96-5b87825c07ee/1/RFbBTNhyT5qQlie5TgBs9p0SMHs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.205.8.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:31:8a:a9:d4:92:8e:a4:b2:5b:a2:48:87:66:9a:7d:d3:62:
b0:bb:b2:dd:68:ce:ca:53:9a:3e:b8:e6:9d:ef:9f:aa:28:d9:
9a:16:84:13:53:ba:e5:7e:98:97:34:38:e1:d4:09:52:bb:12:
0e:1b:73:25:8e:e2:f2:ff:81:64:d7:f2:2b:a5:c8:9a:a6:5c:
04:d0:a8:64:57:7a:1b:98:91:0e:c9:ce:20:6b:d0:76:bc:91:
4f:e4:67:8b:d1:ac:4f:ca:e8:c7:9f:fb:de:e2:24:db:0d:10:
67:9f:6b:21:11:d1:d7:c9:e1:dd:69:a8:c5:c8:2f:69:26:ca:
c3:30:e9:ee:2f:e5:89:f1:0f:0c:c8:6f:0f:22:d4:ff:92:08:
02:1a:ff:dd:16:64:f1:35:f9:0e:67:da:05:8d:f1:cc:6d:05:
ec:e7:58:fe:83:89:3c:9c:13:af:77:24:4a:50:4a:eb:cd:14:
5d:e0:1b:aa:0d:07:f4:6f:dc:02:ab:59:4e:68:e6:c5:58:23:
68:6e:dd:cb:f7:9d:5f:57:58:e7:e6:9b:0d:3e:7e:b0:03:21:
cb:05:57:1b:1b:19:c6:38:77:7c:cf:ab:75:44:3e:06:d7:25:
e1:a3:c6:3b:8b:c5:14:14:f4:bc:ca:b4:c0:a7:b6:93:88:f5:
c9:2c:a5:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 19:38:17 2025 by rpki-client