Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/tGmZ6VYdh-hNveRIQ0My_ZFm8x8.roa
File: tGmZ6VYdh-hNveRIQ0My_ZFm8x8.roa (raw, json)
Hash identifier: CiTX2tKsZ4+E4bKM9gC2L070M+trjN2qLxB52SKJftQ=
Subject key identifier: B4:69:99:E9:56:1D:87:E8:4D:BD:E4:48:43:43:32:FD:91:66:F3:1F
Certificate issuer: /CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Certificate serial: 0194206833BE6624071870C927C6BA817351
Authority key identifier: 96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/tGmZ6VYdh-hNveRIQ0My_ZFm8x8.roa
Signing time: Wed 01 Jan 2025 05:48:07 +0000
ROA not before: Wed 01 Jan 2025 05:48:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44477
IP address blocks: 5.42.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:33:be:66:24:07:18:70:c9:27:c6:ba:81:73:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=96062f5ddb18f96d78492b3538d7745cc4714a26
Validity
Not Before: Jan 1 05:48:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b46999e9561d87e84dbde448434332fd9166f31f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:99:3d:3e:7f:84:1d:21:ee:39:37:67:ea:fd:
bd:50:91:a0:1c:08:29:8e:a6:f5:e4:a9:87:7c:27:
78:92:ae:0b:ea:cb:e4:00:3c:35:2b:38:25:de:4c:
48:10:61:61:fd:59:35:e6:cf:95:21:f9:29:8a:3b:
ea:bd:72:27:73:6b:95:dc:e4:98:cd:94:01:d6:9e:
c0:28:05:9e:89:32:60:1b:12:9f:51:8f:bc:f3:65:
73:05:24:4d:40:bd:1d:f2:9e:56:6b:72:7f:fb:ea:
f2:6f:fa:9e:5d:6d:12:5d:f3:2f:d0:b6:91:68:19:
d0:f8:9b:65:2a:6c:79:5e:32:a4:76:7f:c0:10:0f:
e3:78:b6:8c:49:9f:fa:e4:da:0a:b2:16:12:4f:61:
2f:ed:4a:c5:d2:dc:80:c5:d9:31:bf:68:cd:e2:1f:
b3:ba:20:2d:0e:b9:59:e9:cc:90:3d:86:fb:8a:85:
7c:37:f8:5c:4e:55:40:88:9f:17:72:a4:fe:ec:50:
43:be:7a:69:08:60:6c:13:e8:12:9f:0a:7d:8d:cb:
c2:59:74:f8:7f:b3:7b:00:73:d2:cc:d1:ce:61:70:
da:4f:4c:a0:b8:af:b2:3b:cc:f1:06:88:c0:97:5b:
98:71:80:5e:c4:95:9f:82:d4:2e:1e:cb:0f:30:7a:
2a:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:69:99:E9:56:1D:87:E8:4D:BD:E4:48:43:43:32:FD:91:66:F3:1F
X509v3 Authority Key Identifier:
keyid:96:06:2F:5D:DB:18:F9:6D:78:49:2B:35:38:D7:74:5C:C4:71:4A:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lgYvXdsY-W14SSs1ONd0XMRxSiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/tGmZ6VYdh-hNveRIQ0My_ZFm8x8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/e05975-da8e-460b-9ebb-3fcb5f3f3c59/1/lgYvXdsY-W14SSs1ONd0XMRxSiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.42.67.0/24
Signature Algorithm: sha256WithRSAEncryption
42:af:ab:ec:31:21:0b:70:1c:d8:48:d3:4b:6c:57:bc:02:60:
7a:19:bb:47:da:85:2b:75:ad:de:29:38:7b:96:98:89:c7:47:
0a:4a:e0:c0:f5:d4:1f:ef:27:87:ee:f2:94:8a:fb:df:75:68:
14:3e:23:47:28:45:bb:90:88:a1:d7:80:7b:0f:f8:f5:25:4c:
76:b4:62:86:4e:fd:4a:1c:06:8a:58:b4:5f:b5:5f:bf:22:86:
6a:75:9d:c9:d4:e9:c9:55:fb:03:80:3b:f5:64:10:98:5c:c2:
11:b7:1f:94:a2:b0:4f:57:13:23:83:b4:d3:19:a8:29:78:00:
cd:2f:8c:32:e8:9c:d8:6f:e9:3e:95:1c:ef:12:0a:c1:21:27:
d3:7e:64:78:1f:fd:b0:75:bf:71:ad:b3:1e:97:9b:d9:8d:3d:
3f:58:a7:f8:c1:13:e0:01:4e:0d:47:a4:88:82:9d:8e:13:d4:
9b:9a:b2:fe:c3:fd:51:c9:62:e6:2d:3e:e1:dd:22:54:62:4d:
c9:bb:18:fb:1b:02:47:20:d9:38:dd:99:91:22:d7:64:79:8a:
49:0c:f6:88:7b:8f:68:9e:1e:e3:41:04:0c:ec:14:84:62:b7:
e1:17:c0:41:ff:f4:88:22:6c:fc:51:20:a8:87:c9:3d:e7:65:
31:67:35:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:44:42 2025 by rpki-client