Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/AvKD7TB4Vxk1qQBbsXLDVc091Cg.roa
File: AvKD7TB4Vxk1qQBbsXLDVc091Cg.roa (raw, json)
Hash identifier: KDjzuPI0UVPxONdk4UxuaQptgKoidIBIdYKCgFGe35g=
Subject key identifier: 02:F2:83:ED:30:78:57:19:35:A9:00:5B:B1:72:C3:55:CD:3D:D4:28
Certificate issuer: /CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Certificate serial: 01942826B89984DA746B479BBB99ECAF8982
Authority key identifier: 4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/AvKD7TB4Vxk1qQBbsXLDVc091Cg.roa
Signing time: Thu 02 Jan 2025 17:53:33 +0000
ROA not before: Thu 02 Jan 2025 17:53:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62164
IP address blocks: 84.32.5.0/24 maxlen: 24
88.216.99.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:26:b8:99:84:da:74:6b:47:9b:bb:99:ec:af:89:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4fbd45fce356e2a65f1e4d1daf7814b6d6bda3c5
Validity
Not Before: Jan 2 17:53:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=02f283ed3078571935a9005bb172c355cd3dd428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:c4:d2:cb:a0:c4:20:13:4d:72:90:7b:66:65:
75:a9:0b:cf:2b:a0:fb:d7:85:cc:52:50:e7:9e:03:
d2:3e:13:b0:a5:f1:50:64:42:cc:78:31:41:7c:b4:
8d:b3:6c:45:a7:19:b9:a7:35:ff:3f:5e:86:d6:6b:
bd:57:16:7f:e8:aa:01:22:07:4b:7b:c9:1a:cc:13:
50:b0:32:79:ad:a8:32:8d:80:3d:8a:95:da:52:eb:
99:19:b8:0e:60:fa:f6:7d:9c:50:5f:ac:24:86:24:
9b:c8:12:c7:17:a0:a0:f9:e2:d8:17:e1:5b:b7:75:
e0:2a:2c:91:21:5e:44:46:40:5f:da:c0:6b:57:8c:
e3:cf:82:50:68:1a:d7:98:aa:93:09:a8:4f:99:97:
aa:66:3a:aa:ab:16:6f:0f:63:bb:66:ee:e5:a7:a2:
96:5c:76:f7:21:dd:5a:ca:75:41:c2:b6:9a:f2:e9:
88:3c:36:08:29:c0:20:4e:87:37:32:fd:04:4b:f9:
dd:21:4f:c3:1a:42:15:c9:a6:eb:66:a6:29:c9:bc:
7d:8f:a7:b1:26:f8:86:c7:13:fc:85:3a:d8:7d:4a:
bf:27:85:c3:82:4c:ef:dd:19:43:ce:dd:27:44:ad:
86:4d:f3:82:d2:55:7c:b2:78:53:be:8e:d7:ba:51:
4a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:F2:83:ED:30:78:57:19:35:A9:00:5B:B1:72:C3:55:CD:3D:D4:28
X509v3 Authority Key Identifier:
keyid:4F:BD:45:FC:E3:56:E2:A6:5F:1E:4D:1D:AF:78:14:B6:D6:BD:A3:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T71F_ONW4qZfHk0dr3gUtta9o8U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/AvKD7TB4Vxk1qQBbsXLDVc091Cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/394c93-dca3-4bc5-8c9b-23481bf091c3/1/T71F_ONW4qZfHk0dr3gUtta9o8U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.32.5.0/24
88.216.99.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:5d:10:1c:64:d0:e3:04:d5:d3:50:96:cb:83:5f:e5:36:57:
f3:49:e0:56:12:ff:b4:8e:d1:94:37:5d:44:bd:24:c3:c1:0b:
91:e2:6f:bf:bc:3b:7a:41:37:03:3c:c7:b9:cf:de:7d:4f:f5:
7c:c9:23:08:86:c5:f1:57:a4:93:b9:73:cc:23:47:79:c4:3c:
2d:22:8e:02:9b:ca:d5:66:b0:d9:f3:81:11:d8:7b:2f:22:c3:
ab:00:22:29:b0:13:98:7b:51:31:24:98:18:63:73:45:90:a6:
57:dc:6e:d1:73:e5:85:6a:c7:33:f6:a1:7f:05:db:2f:18:6d:
20:ba:86:73:89:5d:b7:06:8e:ca:06:d2:8f:66:ad:13:ce:d3:
64:97:e9:77:4c:22:f8:cc:a2:d3:be:5c:47:18:a3:b6:fe:27:
f5:e1:9c:ec:dc:15:7b:d3:b1:29:80:2f:ed:17:e6:62:59:c1:
6f:05:e3:f0:cc:e9:a3:5f:ed:cf:89:4b:d1:2e:cb:56:80:62:
2f:8c:6e:e3:70:37:e0:c7:cc:f1:77:df:58:27:bf:07:3a:7e:
34:00:53:40:db:6c:ed:85:3a:c0:41:46:75:4c:7c:40:c1:77:
ed:fd:b4:09:59:e8:8c:57:3a:6c:47:17:41:05:9e:60:4c:ed:
e9:0f:6d:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 20:51:41 2025 by rpki-client