Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/ldDxAeYQrIfG6H11J8Y4R0UiY_4.roa
File: ldDxAeYQrIfG6H11J8Y4R0UiY_4.roa (raw, json)
Hash identifier: +MVbXh43byGJaZ/c6/dDHzN7QuCiwQrSMfjUl/b08/c=
Subject key identifier: 95:D0:F1:01:E6:10:AC:87:C6:E8:7D:75:27:C6:38:47:45:22:63:FE
Certificate issuer: /CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829
Certificate serial: 0F528087
Authority key identifier: 6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/ldDxAeYQrIfG6H11J8Y4R0UiY_4.roa
Signing time: Sat 01 Jan 2022 04:58:17 +0000
ROA not before: Sat 01 Jan 2022 04:58:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 553
IP address blocks: 144.41.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 257065095 (0xf528087)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6a5d410f425d35e74d456f7f87bae8ed92b3c829
Validity
Not Before: Jan 1 04:58:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=95d0f101e610ac87c6e87d7527c63847452263fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:92:e5:e0:a2:7d:39:c3:f4:59:d9:d2:04:8c:
25:28:0c:fb:e6:57:fe:b9:80:fe:0d:c6:6f:97:07:
f9:4a:03:95:84:35:8b:bc:29:32:47:53:61:52:5d:
ad:f9:dd:cf:c0:c2:33:22:a7:63:92:2b:bd:42:fc:
80:28:95:e3:50:11:08:09:05:ae:b7:01:b6:69:89:
0a:93:57:ce:6e:c8:55:51:8b:ed:9c:d3:e4:b4:6b:
63:59:67:7c:4b:b8:d3:79:a6:5a:a0:27:8c:97:7a:
82:a6:fc:64:df:eb:eb:6c:76:ce:14:cc:79:1b:80:
1f:be:de:3a:d3:a9:14:77:71:9f:2d:e3:30:48:ba:
fc:96:71:a5:f8:e8:97:10:44:07:68:61:f1:7d:6e:
c2:f1:46:31:df:4f:f8:da:ee:73:ea:cb:ee:83:bc:
1f:a4:f7:39:3f:6f:b5:60:f6:fd:cb:1e:63:77:3a:
9d:a2:0a:2b:d7:e7:14:13:73:23:f6:86:bc:0e:7d:
79:01:63:71:ff:a2:0f:0f:ae:1c:e2:f9:be:3d:de:
da:23:86:ca:bb:28:c4:32:21:86:7f:b3:f6:17:13:
05:43:7d:49:f7:79:9a:64:e3:ef:5e:32:89:47:79:
82:9b:b2:3a:11:6b:c0:27:c1:68:7d:50:3c:5b:03:
ef:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D0:F1:01:E6:10:AC:87:C6:E8:7D:75:27:C6:38:47:45:22:63:FE
X509v3 Authority Key Identifier:
keyid:6A:5D:41:0F:42:5D:35:E7:4D:45:6F:7F:87:BA:E8:ED:92:B3:C8:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/al1BD0JdNedNRW9_h7ro7ZKzyCk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/ldDxAeYQrIfG6H11J8Y4R0UiY_4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d5f14f-2705-42ec-900f-6934cafb6bcd/1/al1BD0JdNedNRW9_h7ro7ZKzyCk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
144.41.0.0/16
Signature Algorithm: sha256WithRSAEncryption
00:60:8a:9b:a5:5d:50:b0:6d:ff:a3:ee:05:03:d7:f8:e2:61:
4f:06:1a:fd:e8:23:b6:41:9a:66:93:58:65:ea:98:22:50:0f:
a6:a3:a3:ec:9a:94:3b:9e:6d:e0:03:30:17:7c:da:4d:34:e8:
22:1d:c7:a8:a1:00:06:47:18:31:34:ee:f7:43:47:a7:70:87:
b8:c7:85:03:f8:ad:59:85:e0:d8:50:92:21:30:a9:05:ca:c5:
c9:39:0f:27:e1:ce:7c:fe:4c:08:fd:4b:ff:e3:04:f0:fb:de:
3b:e6:50:08:f4:40:53:05:cd:e8:83:3d:0b:e9:cb:4d:96:49:
04:1e:ed:89:57:be:b6:a9:90:dd:d7:2a:b2:9c:33:09:85:e4:
c0:58:f8:de:97:2e:1f:ba:e3:31:2d:78:ec:9e:1b:0a:2e:a6:
e3:20:45:f8:fd:9d:e9:51:c6:66:e3:b4:60:58:4e:9d:bf:20:
58:56:58:65:c1:91:0e:34:e8:12:f9:2e:18:36:6d:dd:d1:74:
83:dc:29:56:0b:e5:48:68:c3:a3:49:0e:87:34:7b:07:f0:a0:
ce:34:00:9b:f0:50:1b:0e:3d:1d:c9:63:1a:9f:8c:f2:a8:71:
d1:ef:99:42:c6:1c:cd:ef:c3:73:e2:9e:09:d6:ca:94:71:0d:
1c:1d:a2:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 23:32:38 2025 by rpki-client