Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/lnMedtsWp-bgx_qGux0u4Jemg6Y.roa
File: lnMedtsWp-bgx_qGux0u4Jemg6Y.roa (raw, json)
Hash identifier: fvofVrcDHJL/VFOzoV5reTZHNKsWHRjL9AAzUyIF6RA=
Subject key identifier: 96:73:1E:76:DB:16:A7:E6:E0:C7:FA:86:BB:1D:2E:E0:97:A6:83:A6
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 019542E202107D8431461C68605160DD280E
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/lnMedtsWp-bgx_qGux0u4Jemg6Y.roa
Signing time: Wed 26 Feb 2025 15:31:02 +0000
ROA not before: Wed 26 Feb 2025 15:31:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 204490
IP address blocks: 87.251.67.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:42:e2:02:10:7d:84:31:46:1c:68:60:51:60:dd:28:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Feb 26 15:31:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=96731e76db16a7e6e0c7fa86bb1d2ee097a683a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ab:e8:03:a2:40:46:29:e7:86:63:e2:e1:ae:
e0:51:e6:12:51:de:de:a9:aa:da:f9:78:d5:8d:d5:
0e:7f:50:8f:67:46:32:94:7a:95:5c:89:21:d9:1c:
f0:34:3d:14:41:49:0b:16:46:9c:d7:61:d5:0a:98:
33:9a:92:94:93:bb:f6:24:f4:7a:e9:66:b8:b6:be:
c3:aa:02:b1:f2:10:15:d0:01:0b:5b:84:55:29:66:
30:75:1a:16:c2:92:85:cb:90:63:f3:c8:1f:1d:70:
f5:bd:76:04:99:56:dc:a6:18:13:3e:be:4a:dc:19:
a6:cc:10:a7:4f:17:25:4c:9e:7a:8e:91:2a:74:82:
22:41:66:73:7e:cf:4e:90:96:02:85:fb:e5:02:09:
ff:a1:87:27:49:5e:6e:ad:f0:d5:43:58:f6:71:fd:
99:78:6b:7e:12:a7:a8:ca:4c:d8:e0:a8:70:dd:15:
ba:68:26:71:08:34:f9:2e:f0:2a:40:df:a5:d0:41:
39:e2:e7:00:ec:84:3e:8b:fa:d9:46:5a:e4:ac:d3:
d5:bf:d2:e0:37:66:5d:74:43:61:3a:26:58:ba:84:
6f:6f:6b:36:3d:3c:e1:53:29:e1:d0:fa:48:0a:0d:
90:64:01:9c:8d:06:24:ff:45:d8:bd:81:12:df:b6:
fc:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:73:1E:76:DB:16:A7:E6:E0:C7:FA:86:BB:1D:2E:E0:97:A6:83:A6
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/lnMedtsWp-bgx_qGux0u4Jemg6Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.67.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:a1:d1:59:2f:00:ee:b8:89:b3:bb:83:e5:11:09:a1:c5:37:
a5:81:e1:3a:cf:e2:0b:a2:d1:f2:98:19:14:50:c8:b1:9c:27:
c9:a9:49:32:3d:b4:a4:24:41:ec:45:8b:3f:82:44:60:66:c1:
d3:6b:93:60:e6:4a:8b:06:5f:a1:f4:70:d1:48:90:77:62:21:
75:21:1f:0b:cc:0b:68:29:6a:0e:ac:00:17:53:38:6d:fc:7c:
16:a8:1c:db:6f:99:f2:39:bd:5b:d7:dd:7b:9a:8a:90:a9:c4:
ae:86:7e:78:bb:88:e3:cf:f8:bd:f1:36:a1:63:99:78:c1:3a:
51:f2:ec:18:3a:86:e2:4a:5e:e7:e7:04:2e:c7:d7:07:c7:c9:
ae:3f:dc:cb:18:38:e4:f0:1d:e9:cb:94:4e:45:07:8f:fc:93:
3a:26:6f:05:c7:aa:37:28:b1:b0:c7:68:56:0f:8f:bc:16:55:
35:4d:16:cd:c5:c8:0a:53:0b:db:61:24:16:03:a3:8b:2b:d9:
45:0c:84:3b:ea:ad:56:80:ed:36:87:f0:de:fb:21:81:62:52:
44:77:bd:4a:b4:3e:ea:14:38:a3:30:16:da:e7:91:f1:cd:8e:
60:d6:c8:df:78:5f:25:2d:57:50:08:26:65:20:f6:7e:7a:b3:
ab:7f:7a:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:28:08 2025 by rpki-client