Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/tGpqNPu0JaVrEP2hNeWqb0Udvw0.roa
File: tGpqNPu0JaVrEP2hNeWqb0Udvw0.roa (raw, json)
Hash identifier: D+m0LYqPwCOY4O1LDGcfgg698dddGpXrLwpQiirbbSE=
Subject key identifier: B4:6A:6A:34:FB:B4:25:A5:6B:10:FD:A1:35:E5:AA:6F:45:1D:BF:0D
Certificate issuer: /CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Certificate serial: 018570950CCBA5007FC516365121CBBEAECB
Authority key identifier: 07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/tGpqNPu0JaVrEP2hNeWqb0Udvw0.roa
Signing time: Mon 02 Jan 2023 03:44:54 +0000
ROA not before: Mon 02 Jan 2023 03:44:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48080
IP address blocks: 87.251.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:95:0c:cb:a5:00:7f:c5:16:36:51:21:cb:be:ae:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=073b4c1248c4bcf22b0577dfca9b14d9063c28c0
Validity
Not Before: Jan 2 03:44:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=b46a6a34fbb425a56b10fda135e5aa6f451dbf0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:44:a2:c5:b5:c0:43:79:46:02:0e:7b:01:16:
05:87:4a:f4:ba:57:16:3f:f6:da:08:a4:c5:fa:b9:
01:94:f0:2a:04:fc:ee:3e:29:e7:e5:ab:77:de:f6:
fa:de:b7:e5:f0:74:88:03:b6:d3:d6:05:7f:49:51:
ad:73:74:79:24:6f:8e:bf:86:ac:28:65:3f:b6:f0:
45:ed:7d:7e:0b:7f:66:78:85:c3:39:6a:ea:0d:8e:
2c:b1:27:f4:51:1d:1e:2f:88:55:31:e9:47:d5:67:
e9:aa:d5:61:7b:11:74:0b:db:6f:bc:3c:ce:3d:52:
8a:ff:02:8b:10:8e:94:c6:7e:31:d8:e9:7e:74:a1:
6b:77:d3:c8:39:e0:a9:a1:20:14:03:a1:8e:3b:9f:
24:3a:5a:a2:0a:4b:e9:02:3b:1a:59:67:e7:89:27:
3c:b5:58:10:a8:e3:1d:e6:5b:6b:69:45:a2:0e:42:
52:27:c2:14:58:5b:b4:77:fe:d0:02:5a:bb:7d:51:
98:91:66:d9:3b:ff:62:30:85:3e:66:2c:75:96:3e:
d9:2d:48:a0:d7:d5:aa:58:21:c3:13:33:57:6b:f6:
fd:a9:dd:60:09:8e:3f:a7:ba:89:d3:22:34:00:f5:
4a:9d:84:bb:16:a8:bd:6e:8d:37:ef:fb:72:c5:19:
f5:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:6A:6A:34:FB:B4:25:A5:6B:10:FD:A1:35:E5:AA:6F:45:1D:BF:0D
X509v3 Authority Key Identifier:
keyid:07:3B:4C:12:48:C4:BC:F2:2B:05:77:DF:CA:9B:14:D9:06:3C:28:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BztMEkjEvPIrBXffypsU2QY8KMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/tGpqNPu0JaVrEP2hNeWqb0Udvw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/63dbe5-5aa3-4f19-8da4-a8d361ce64aa/1/BztMEkjEvPIrBXffypsU2QY8KMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
87.251.64.0/24
Signature Algorithm: sha256WithRSAEncryption
80:42:61:4a:d6:7f:b5:5c:94:1a:b5:06:a2:28:fb:57:9e:22:
eb:8b:ca:32:7a:a0:08:6e:a8:d2:14:88:ef:f6:85:b1:da:a1:
65:0d:38:a4:aa:e7:8d:8c:58:79:c7:2f:45:57:ae:2e:1e:0b:
39:e1:9f:f4:f2:ba:0e:c6:48:ef:29:6e:67:8a:b6:d8:53:20:
6d:1f:15:31:8f:70:b3:b2:3e:ae:af:29:0b:0e:ef:89:7a:38:
47:01:21:79:d9:d5:23:9f:2f:6f:03:76:de:48:84:bc:1f:d4:
f7:b2:58:b6:3a:43:ea:dd:48:a5:48:b0:98:ee:72:ba:4f:ab:
bd:53:51:4f:1f:29:3a:c8:70:71:d3:20:a0:eb:96:03:a1:57:
eb:f2:98:e3:0c:f9:e2:4f:35:fc:9d:f4:76:05:30:1d:5a:11:
8f:4e:1b:d2:51:e5:b3:16:13:08:3b:b7:08:95:2b:74:51:06:
1e:59:92:ba:a1:83:fc:aa:fa:cc:29:55:b2:23:ff:08:08:73:
7e:49:cf:1c:b8:6e:e3:ca:8b:22:82:40:ab:60:5c:c3:d0:6a:
60:c5:d7:33:ab:84:1c:0f:cd:ae:15:c0:7a:b5:a3:7e:96:85:
39:04:ee:8d:90:61:4d:96:a9:c4:3b:04:dd:e6:ef:5b:14:9a:
14:9a:85:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 07:01:02 2025 by rpki-client