Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/Lmx81pWtUloDJsWHeg4phYSHFYY.roa
File: Lmx81pWtUloDJsWHeg4phYSHFYY.roa (raw, json)
Hash identifier: cxvaA95OUPJS//eMJOLMPfN1nU4IykxLKP7Xvmq3Lgg=
Subject key identifier: 2E:6C:7C:D6:95:AD:52:5A:03:26:C5:87:7A:0E:29:85:84:87:15:86
Certificate issuer: /CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Certificate serial: 019424451B84239C844D3887EA1F833A1572
Authority key identifier: D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/Lmx81pWtUloDJsWHeg4phYSHFYY.roa
Signing time: Wed 01 Jan 2025 23:48:16 +0000
ROA not before: Wed 01 Jan 2025 23:48:16 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49770
IP address blocks: 37.16.88.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:1b:84:23:9c:84:4d:38:87:ea:1f:83:3a:15:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d76bb48e93e8a0058c5c72a81a8799455307ee56
Validity
Not Before: Jan 1 23:48:16 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2e6c7cd695ad525a0326c5877a0e298584871586
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4a:7c:3b:d6:b3:07:7b:f3:ee:e9:23:90:4b:
70:d7:6b:6c:8d:6e:9b:f7:05:1b:42:2b:66:49:e6:
fa:8d:0e:d5:53:3c:b2:2e:59:60:ce:2f:0a:96:e7:
5d:10:df:56:7e:cf:f5:08:f9:e6:10:e0:59:70:53:
62:de:42:71:01:23:a1:93:29:50:b1:06:04:2d:e4:
a9:26:55:a8:bf:1f:c8:be:89:fc:73:1b:96:1a:52:
c2:b8:62:0b:03:14:e0:7b:c0:12:04:5f:7a:23:91:
5e:64:6b:74:f7:c4:e8:17:db:c5:84:1d:87:c3:76:
6b:44:94:4d:ae:cc:76:98:39:b1:fa:a7:4f:31:91:
2e:cf:9d:a1:a7:d6:69:e8:57:b4:68:98:55:a9:aa:
a5:62:22:96:89:20:9f:da:07:51:94:de:18:b2:5f:
4e:c3:e4:0c:cc:4e:e1:74:aa:85:04:47:9e:9e:32:
5c:89:76:7d:ac:ad:86:f3:50:04:04:9e:4d:f8:cb:
ab:01:82:8d:75:ec:01:d7:82:9e:c3:3e:d3:db:8b:
5b:fe:1f:5c:58:9d:40:50:9f:b7:8d:39:c3:1c:bc:
35:18:57:96:c4:3a:e4:ed:37:cb:82:77:27:c8:da:
0d:9a:7b:e9:82:31:83:29:e8:ac:78:f8:f6:f8:f9:
81:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:6C:7C:D6:95:AD:52:5A:03:26:C5:87:7A:0E:29:85:84:87:15:86
X509v3 Authority Key Identifier:
keyid:D7:6B:B4:8E:93:E8:A0:05:8C:5C:72:A8:1A:87:99:45:53:07:EE:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/12u0jpPooAWMXHKoGoeZRVMH7lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/Lmx81pWtUloDJsWHeg4phYSHFYY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/a5bfb6-6a10-4fbc-af48-8bfbdd45cb62/1/12u0jpPooAWMXHKoGoeZRVMH7lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.16.88.0/24
Signature Algorithm: sha256WithRSAEncryption
91:be:e7:20:f8:d2:26:31:bc:4b:57:58:ba:e7:4c:35:dc:9a:
09:74:59:80:d5:4c:55:fe:c4:1a:be:4d:42:18:70:53:19:c1:
b1:c9:c9:97:0b:e8:cf:a1:6e:db:cc:3b:5e:bf:96:0a:e9:6e:
84:1d:db:7a:02:cb:c0:1e:b2:c3:50:5b:68:90:12:e7:5b:6a:
19:42:37:d4:76:46:08:14:63:c4:8e:30:4f:af:e0:17:fe:bd:
54:9e:24:f3:4a:bc:4f:b1:8c:9f:02:ea:cf:d8:c0:3a:8d:ad:
e9:c8:9f:90:9b:66:4d:1d:84:d4:f3:bc:c7:1a:5b:24:f3:2c:
d1:52:01:9e:52:7e:36:2c:d9:c8:55:41:d9:46:31:d1:7d:31:
24:d4:aa:eb:0d:b1:c7:87:07:71:3f:74:8b:1e:9d:6e:3e:4b:
f9:8a:3c:5f:4c:bd:27:31:cc:97:64:c3:e5:d1:ff:5c:35:7e:
6f:9d:41:c4:f7:64:06:f8:d3:53:a1:2c:b8:f0:df:9f:98:94:
dc:1f:60:8e:db:f9:d3:8d:f8:5b:62:cf:4e:68:06:fb:b8:ce:
90:9e:92:79:3b:69:45:28:f5:33:18:eb:ad:6e:a0:39:03:a0:
a7:3b:97:33:ce:6e:d2:b7:d1:0f:d9:12:71:90:08:3a:92:14:
01:c5:ab:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:39:54 2025 by rpki-client