Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/5E90rYIvCMDpGsIs3-NkraLYuv8.roa
File: 5E90rYIvCMDpGsIs3-NkraLYuv8.roa (raw, json)
Hash identifier: +YypfQeEbAGU3FeS2PhNIE1YSOJOl4GeH2O/62cFjDI=
Subject key identifier: E4:4F:74:AD:82:2F:08:C0:E9:1A:C2:2C:DF:E3:64:AD:A2:D8:BA:FF
Certificate issuer: /CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Certificate serial: 0194258F7CAF304E969D7F87BC38B2B7D651
Authority key identifier: 20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/5E90rYIvCMDpGsIs3-NkraLYuv8.roa
Signing time: Thu 02 Jan 2025 05:49:07 +0000
ROA not before: Thu 02 Jan 2025 05:49:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8368
IP address blocks: 82.150.128.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:7c:af:30:4e:96:9d:7f:87:bc:38:b2:b7:d6:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=201fe30fc6b4b0d0f6db4e1bfbbd50195dca575c
Validity
Not Before: Jan 2 05:49:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e44f74ad822f08c0e91ac22cdfe364ada2d8baff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:48:ad:1c:df:fc:f7:de:c0:ab:41:83:79:f8:
34:f2:bf:f9:9a:5b:56:06:a9:10:ec:0a:53:21:dd:
e7:1a:87:82:1b:4d:dd:ee:cd:e6:ff:85:32:f6:bb:
fc:93:a6:ec:72:6b:3e:c2:59:e9:6b:c8:8b:28:52:
0e:aa:cf:b0:87:2d:19:29:a9:d1:c0:2d:9b:3f:3c:
ee:e4:e4:b0:f0:47:e3:24:2f:fd:91:05:50:5c:9a:
ad:e3:8f:8a:c6:cc:ba:8a:ce:20:bd:3c:b1:82:b7:
5c:3d:5d:a4:2a:d3:ab:45:a8:57:da:5a:0f:a6:1a:
0f:e1:20:b0:f6:16:cb:5e:37:9d:c8:3b:ea:d7:74:
0b:05:53:73:35:41:00:44:34:a5:30:26:9d:0e:d7:
ef:7a:79:1c:07:e5:7b:7b:7d:05:26:82:77:d1:bf:
03:b5:06:f7:06:22:cb:32:12:8a:4c:d3:47:aa:e8:
3a:07:d6:1e:83:92:03:56:05:88:a9:cc:f9:54:b5:
32:75:b4:a4:e0:49:33:fc:81:65:e8:25:26:8c:ba:
6d:a1:af:60:df:66:2c:7f:d6:cf:ec:38:cc:a2:44:
9f:27:48:ee:3a:a7:d5:2b:5f:02:90:09:e2:06:57:
dc:e9:90:57:23:0f:4c:12:43:da:d1:ca:2f:a0:2a:
5d:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:4F:74:AD:82:2F:08:C0:E9:1A:C2:2C:DF:E3:64:AD:A2:D8:BA:FF
X509v3 Authority Key Identifier:
keyid:20:1F:E3:0F:C6:B4:B0:D0:F6:DB:4E:1B:FB:BD:50:19:5D:CA:57:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IB_jD8a0sND2204b-71QGV3KV1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/5E90rYIvCMDpGsIs3-NkraLYuv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/8d80f9-494e-4abb-9956-fc121c800b30/1/IB_jD8a0sND2204b-71QGV3KV1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
82.150.128.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:ca:71:24:24:de:7b:7c:f5:8f:de:7e:67:bb:93:5f:63:2d:
f7:83:12:83:e1:27:e3:df:07:e5:87:0b:d1:25:41:11:b7:81:
11:f9:e2:53:b7:28:75:43:c6:16:0e:10:62:3f:62:15:39:d0:
33:c7:1f:ac:12:5f:56:0f:62:55:37:16:bb:41:41:b6:8f:85:
70:75:36:49:2e:ae:5e:3e:38:2e:56:ab:53:3a:2e:a3:29:2c:
18:05:6b:63:e1:58:13:0e:b9:d9:f6:82:cc:2e:bc:3e:ef:50:
fe:f2:08:6d:ee:d6:4c:ac:5c:b8:13:79:d0:80:b8:05:92:a3:
c3:b1:ce:02:84:bc:46:33:46:04:07:76:82:b1:b9:90:c3:55:
38:b3:b0:9f:3f:e6:ee:b6:1e:31:c9:7e:f1:0f:74:60:3e:dc:
4f:c7:a6:1b:90:a8:96:10:af:99:c5:bf:11:ad:12:73:08:fe:
2b:b1:ff:49:a7:38:c9:a6:61:1e:4c:4b:d5:51:ad:4a:18:df:
12:4c:69:24:70:ca:02:03:6b:39:b1:32:ef:ff:d2:20:57:68:
c2:56:b1:0d:91:e8:0b:75:f7:81:b1:33:69:8d:8a:99:fb:34:
2b:42:f9:a4:0b:3e:ed:5d:50:9a:29:fe:4e:26:8c:3c:a2:c8:
50:98:93:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 19:11:45 2025 by rpki-client