Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/Dpy95jXaeVWXPozFztldShHCRU4.roa
File: Dpy95jXaeVWXPozFztldShHCRU4.roa (raw, json)
Hash identifier: /YGR1d8dV4jSlropxf6JRB0rYbUE70tJU0k00P3NxfE=
Subject key identifier: 0E:9C:BD:E6:35:DA:79:55:97:3E:8C:C5:CE:D9:5D:4A:11:C2:45:4E
Certificate issuer: /CN=76a75826e991225a429ff8a1e7ffdc80466420df
Certificate serial: 019426D8E89F15F0133D285D7C9E15BDB1C8
Authority key identifier: 76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/Dpy95jXaeVWXPozFztldShHCRU4.roa
Signing time: Thu 02 Jan 2025 11:48:57 +0000
ROA not before: Thu 02 Jan 2025 11:48:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 12693
IP address blocks: 153.96.42.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d8:e8:9f:15:f0:13:3d:28:5d:7c:9e:15:bd:b1:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=76a75826e991225a429ff8a1e7ffdc80466420df
Validity
Not Before: Jan 2 11:48:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0e9cbde635da7955973e8cc5ced95d4a11c2454e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0f:5a:bc:8b:f2:4e:a9:fd:87:9b:6c:64:1e:
c4:14:41:8f:1f:2f:c2:00:fc:8b:5f:30:54:e0:7d:
34:9f:30:5b:e3:2c:aa:35:6c:1d:55:33:46:08:bd:
63:d0:55:86:06:6b:a2:e6:c4:a4:00:e3:61:d7:db:
22:75:f9:05:8f:63:8e:97:50:fd:55:1e:56:7e:47:
22:59:87:b2:68:b2:23:66:80:ab:58:6b:6b:43:77:
58:67:ce:e8:30:68:71:12:43:17:f4:a1:ab:fa:97:
b6:17:2f:48:22:a4:ed:ab:7f:6a:3a:59:a6:a8:43:
e3:f4:e9:15:01:8e:e8:42:dd:f9:fc:03:4d:19:5d:
28:e7:57:3e:80:37:6c:a6:85:61:34:65:bc:f3:1a:
45:48:d7:01:c0:47:e0:5b:39:f3:3a:22:3b:be:09:
33:05:3f:c8:27:27:67:aa:ad:f8:47:89:3c:19:54:
cb:07:ac:7b:e4:48:b7:c4:2d:4c:42:db:a9:48:c0:
c9:76:1e:cc:14:d5:6f:82:3d:10:35:86:d9:fb:92:
80:31:d1:27:f6:e9:e6:f4:52:a5:19:0f:0a:33:6a:
ba:12:bc:bf:b8:73:8a:ca:be:f1:11:8f:42:6c:4b:
a7:f8:65:15:17:22:f4:60:ac:8f:19:3a:e1:ad:e5:
23:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:9C:BD:E6:35:DA:79:55:97:3E:8C:C5:CE:D9:5D:4A:11:C2:45:4E
X509v3 Authority Key Identifier:
keyid:76:A7:58:26:E9:91:22:5A:42:9F:F8:A1:E7:FF:DC:80:46:64:20:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dqdYJumRIlpCn_ih5__cgEZkIN8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/Dpy95jXaeVWXPozFztldShHCRU4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/1d33ca-8d1c-49c0-be97-ad8fbeaa8dd9/1/dqdYJumRIlpCn_ih5__cgEZkIN8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
153.96.42.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:62:47:e5:5a:7a:f4:43:0d:7b:16:58:b8:51:d7:57:9a:39:
a4:a5:b8:1b:dc:06:d3:c2:29:5c:c9:cc:c6:42:2d:34:ba:e0:
6b:43:d9:66:b1:b0:fd:8c:5c:7c:d7:3b:aa:72:ae:48:f9:e4:
76:c6:a1:10:31:db:bc:2e:ad:e5:59:c1:1e:6a:c3:cd:9e:2b:
4b:ec:f5:9b:9e:53:e0:fb:e1:bd:df:de:48:bb:e0:b4:d2:ae:
76:3e:4c:89:f0:bd:b3:9d:6d:82:48:90:19:c1:ae:92:2d:64:
72:8d:7d:a2:8e:ee:87:33:34:44:a2:2a:19:6d:7c:6b:eb:83:
61:6d:ba:7a:ac:5b:4f:49:f9:32:7e:91:2c:77:e7:46:aa:4c:
fa:0a:d5:8b:45:27:da:ba:55:7b:82:a9:00:53:fd:2b:78:04:
73:53:4e:66:0c:7a:7b:49:3f:32:0b:5d:38:1c:01:cd:9a:2a:
31:b7:2b:84:8e:e2:a0:90:a5:30:40:7b:f4:97:44:31:d0:9a:
90:59:4f:96:2f:8c:47:af:80:13:8f:4b:20:9c:2c:09:e3:6a:
18:ed:2e:3f:61:14:ce:e2:f0:63:a8:de:5c:79:6b:f9:5e:fc:
1b:61:e6:2d:fa:b3:21:5c:12:f9:54:6e:57:d1:4f:47:28:e9:
d0:cc:7c:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:33:02 2025 by rpki-client