Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EU4QWvJeKnbJ2gVJ_l-zXW58tiI.roa
File: EU4QWvJeKnbJ2gVJ_l-zXW58tiI.roa (raw, json)
Hash identifier: 2GTsiEN1pVkfT8wxoGUw+kBia4yRrXQI1p3cFmoAfU0=
Subject key identifier: 11:4E:10:5A:F2:5E:2A:76:C9:DA:05:49:FE:5F:B3:5D:6E:7C:B6:22
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 019422202DC0EDC11BD0F938875DA6DFBA50
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EU4QWvJeKnbJ2gVJ_l-zXW58tiI.roa
Signing time: Wed 01 Jan 2025 13:48:41 +0000
ROA not before: Wed 01 Jan 2025 13:48:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51395
IP address blocks: 5.182.36.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:20:2d:c0:ed:c1:1b:d0:f9:38:87:5d:a6:df:ba:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Jan 1 13:48:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=114e105af25e2a76c9da0549fe5fb35d6e7cb622
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:8d:cc:77:69:b2:70:bc:cf:e4:c0:74:27:8e:
f3:6d:52:38:95:03:87:a3:de:54:b6:5f:02:e0:ba:
a3:fc:93:30:db:b1:25:5b:07:a2:86:32:2f:77:c2:
af:8b:aa:2d:80:32:bd:b5:0d:e1:d3:b7:fc:10:dd:
f2:de:1e:7d:07:d1:5a:59:5a:30:1c:04:06:ac:b5:
89:aa:d0:03:7a:34:2a:8c:64:cb:67:b7:fb:61:1e:
b6:8a:70:58:aa:f4:65:03:cb:6c:2a:56:fb:a1:09:
f6:4c:f9:13:e5:43:76:f4:ad:31:53:4e:eb:85:d7:
85:ce:1a:7c:1b:b0:e8:6f:14:a2:47:c2:50:24:64:
bc:b8:cb:5a:d2:64:3c:a3:b2:34:e3:a9:a0:95:ba:
a4:ba:53:02:75:dc:89:92:00:6b:f2:d1:32:f6:be:
86:e6:0e:73:35:ab:1b:8b:a6:54:c0:9a:56:3d:58:
fb:b3:1c:de:e2:6b:90:1e:8f:c1:b2:cd:29:3b:7f:
c8:b2:fd:73:4f:cb:8f:86:54:94:ac:e8:77:cf:71:
ec:5e:95:34:c3:b1:c7:3b:d4:6a:de:ed:6d:9e:1a:
64:87:e3:88:ef:43:b0:76:96:47:02:f5:27:1b:ae:
6f:b8:47:8b:77:1d:24:21:db:fd:73:4a:85:5c:c0:
6f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:4E:10:5A:F2:5E:2A:76:C9:DA:05:49:FE:5F:B3:5D:6E:7C:B6:22
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EU4QWvJeKnbJ2gVJ_l-zXW58tiI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.36.0/24
Signature Algorithm: sha256WithRSAEncryption
50:3d:e1:fa:0d:1b:9d:26:4d:da:ea:8a:1e:f7:1a:cb:aa:ac:
f5:02:a6:ee:eb:c9:36:79:b6:d7:76:61:aa:c9:eb:31:a1:73:
b6:77:fa:b0:f8:22:68:85:26:65:05:8f:35:1a:17:69:0d:00:
24:7e:02:79:54:97:5b:50:0b:04:8a:b9:36:7f:02:f4:98:33:
aa:11:08:5b:49:d6:49:4e:45:99:d7:a2:47:18:a9:d5:b6:05:
e6:dc:4f:75:2c:2a:48:50:4f:84:9c:28:ef:0f:1b:d9:ea:de:
8c:d2:37:f6:cd:9d:62:a9:17:98:3e:f2:eb:54:3f:4a:6d:9b:
ae:a3:14:ab:a4:18:25:6a:23:49:8f:72:2b:01:96:34:ef:29:
fe:68:52:df:ef:64:62:b1:43:5e:ac:e8:74:47:12:27:3f:9c:
0d:95:23:82:71:1f:fb:f2:39:bc:d5:99:26:7b:d9:98:14:fe:
4c:f2:1e:03:94:7c:53:2b:3a:8b:6f:5c:b2:ca:25:c7:a4:45:
e2:a2:74:5b:fe:62:86:6d:77:45:db:85:9b:42:89:34:cd:09:
e2:dc:14:43:11:34:82:4c:6c:18:d8:c9:da:30:18:16:53:9f:
7d:75:eb:06:4f:f4:6f:02:1f:02:7e:68:5d:c6:65:f1:7e:8e:
1d:16:40:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:11:21 2025 by rpki-client