Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/g0XVqIe3DENhz80nwbI1SOS903Y.roa
File: g0XVqIe3DENhz80nwbI1SOS903Y.roa (raw, json)
Hash identifier: dJlTeq/5RKwnH95tztSCSEdSUSKL3SKEepOZve8yP6w=
Subject key identifier: 83:45:D5:A8:87:B7:0C:43:61:CF:CD:27:C1:B2:35:48:E4:BD:D3:76
Certificate issuer: /CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Certificate serial: 0194266BD13B5672B94CE63DAA35D9B657AF
Authority key identifier: B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/g0XVqIe3DENhz80nwbI1SOS903Y.roa
Signing time: Thu 02 Jan 2025 09:49:47 +0000
ROA not before: Thu 02 Jan 2025 09:49:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15503
IP address blocks: 213.216.65.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:d1:3b:56:72:b9:4c:e6:3d:aa:35:d9:b6:57:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9954499977278a75570b3403f4d3aa00b1b36e8
Validity
Not Before: Jan 2 09:49:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8345d5a887b70c4361cfcd27c1b23548e4bdd376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d0:b1:51:92:b9:6e:fa:bc:70:1c:39:5b:c5:
e7:68:b4:d3:4d:8b:67:39:82:71:59:eb:b2:9d:6c:
a3:97:30:ab:df:74:35:05:a2:a4:21:a2:9a:e8:e6:
b5:56:52:af:a0:46:cf:ff:37:c4:3a:e9:80:f7:4c:
32:f4:95:1b:68:ee:b1:64:0c:e0:e4:a9:c1:79:95:
2c:8a:61:6a:05:b4:da:5b:24:f8:b6:fb:4e:9b:f0:
b2:e3:b7:d0:f0:c6:08:9a:e6:c7:00:d3:87:68:8c:
99:82:e8:81:10:4c:ac:e1:e2:7f:34:23:19:19:78:
16:57:b2:37:06:da:83:72:07:fe:70:cf:92:a7:57:
ca:32:f7:d5:ab:7d:88:7b:5f:f2:31:34:ad:c0:2d:
df:10:3a:ab:d0:6b:a2:5d:4e:b2:98:af:a1:18:3e:
cf:04:e3:be:9f:83:67:47:0d:5f:dc:fa:78:4b:f1:
b5:36:9c:5c:80:06:ac:c5:90:07:1e:13:6e:0f:8a:
0d:fa:3c:ee:93:e9:47:ee:71:e9:11:3b:7d:3e:87:
98:55:ba:27:fd:19:d0:3f:9e:3d:1f:0d:06:1b:5e:
db:be:ed:74:e1:c7:2a:ba:4b:bf:92:22:0f:83:41:
ac:c8:78:8b:22:b9:60:43:fe:29:06:16:b6:9e:4c:
c9:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:45:D5:A8:87:B7:0C:43:61:CF:CD:27:C1:B2:35:48:E4:BD:D3:76
X509v3 Authority Key Identifier:
keyid:B9:95:44:99:97:72:78:A7:55:70:B3:40:3F:4D:3A:A0:0B:1B:36:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uZVEmZdyeKdVcLNAP006oAsbNug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/g0XVqIe3DENhz80nwbI1SOS903Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/788803-be12-433f-a8d0-024b1655c247/1/uZVEmZdyeKdVcLNAP006oAsbNug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
213.216.65.0/24
Signature Algorithm: sha256WithRSAEncryption
10:b1:98:65:2d:52:c9:d2:d8:e1:75:2f:98:08:5a:43:3a:d1:
1c:56:68:ec:e0:5a:f6:8a:28:bf:fb:49:13:11:9e:5b:3c:95:
80:be:f6:1e:fd:79:18:1f:76:cb:da:2c:d7:0e:c6:da:fe:e4:
48:d0:de:1f:4b:07:10:b7:af:9f:ee:52:b9:d2:0e:93:99:38:
bf:45:4f:27:09:e4:0c:de:f1:4d:0f:64:56:da:1b:35:4d:3d:
8f:94:44:2c:4f:ed:7d:a7:0e:cd:95:a2:55:8c:97:8b:ae:c1:
82:96:d2:fd:c3:57:b8:b9:77:9c:ef:6c:eb:e6:02:e7:63:4f:
1d:96:ec:60:54:57:04:9e:8d:8b:76:3a:a1:36:20:ae:fd:37:
29:01:19:fc:a5:8b:3d:35:80:31:3e:4e:bb:2f:4b:14:ff:d0:
a5:b8:49:b6:f8:01:f5:25:92:db:cc:66:fb:05:ff:f9:04:37:
4a:3e:45:ed:4b:ec:57:72:fd:2e:26:06:a3:30:1d:2f:a8:fd:
a5:e0:d8:6a:92:0a:7a:b6:fa:6e:36:de:92:6f:e3:c1:35:cd:
7c:6e:e9:65:2d:75:b7:b3:80:39:95:3c:f5:ea:8d:e0:6c:f7:
51:97:2a:e0:14:a3:4a:4b:63:09:24:ed:53:db:08:6a:4d:05:
1e:ce:ba:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:23:33 2025 by rpki-client