Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/XPFiWMxyldtvX56f-B4FfOe9PAo.roa
File: XPFiWMxyldtvX56f-B4FfOe9PAo.roa (raw, json)
Hash identifier: jcS4njaJgrX4t3ySQgl7QrcDTJWrH2OU/R21Ws0zirY=
Subject key identifier: 5C:F1:62:58:CC:72:95:DB:6F:5F:9E:9F:F8:1E:05:7C:E7:BD:3C:0A
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 01942746AD398C1C2C1A42DDF2B682208833
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/XPFiWMxyldtvX56f-B4FfOe9PAo.roa
Signing time: Thu 02 Jan 2025 13:48:50 +0000
ROA not before: Thu 02 Jan 2025 13:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206558
IP address blocks: 77.92.150.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:46:ad:39:8c:1c:2c:1a:42:dd:f2:b6:82:20:88:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Jan 2 13:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5cf16258cc7295db6f5f9e9ff81e057ce7bd3c0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a1:af:52:07:84:32:29:27:45:95:71:26:3d:
e9:71:93:12:82:aa:32:77:cb:c8:7f:5e:5c:79:d5:
59:27:66:37:19:08:b3:8d:10:2b:c1:15:a7:cb:36:
64:9f:f1:4f:51:b1:79:af:10:60:58:03:70:a3:c6:
e0:89:8a:e5:3b:5c:b2:78:eb:52:eb:a7:8e:e9:80:
7d:37:8b:01:b9:ce:5d:6e:d8:0e:7e:cc:17:83:d4:
84:6a:b9:cc:40:71:a0:b0:fe:77:c5:d9:0e:27:7d:
eb:71:1e:04:8d:b8:2f:61:55:d7:7d:fe:66:c5:8e:
9d:58:d7:4a:2a:cc:1d:bc:9e:f4:fe:31:c3:ca:c3:
26:cc:90:a1:b5:dc:21:f2:79:02:53:32:a6:a1:8e:
5c:25:09:01:a7:06:e8:1b:9a:8a:51:5a:2d:ef:1f:
6c:68:2c:c0:b2:db:cc:bc:96:30:33:ee:1f:04:5e:
6b:66:8f:a4:c4:4e:43:fc:fd:e5:8c:bd:ca:51:5d:
1d:5e:98:a4:7e:48:11:8d:d3:59:53:de:b8:0e:bb:
ef:4c:65:87:09:28:2e:ae:ad:7b:3a:75:25:f3:0e:
35:c9:ac:43:b1:dd:c8:a5:07:73:53:7c:fe:72:6e:
d9:f3:ef:63:89:c5:27:6b:c4:cd:0c:07:a9:94:7a:
33:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F1:62:58:CC:72:95:DB:6F:5F:9E:9F:F8:1E:05:7C:E7:BD:3C:0A
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/XPFiWMxyldtvX56f-B4FfOe9PAo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.150.0/24
Signature Algorithm: sha256WithRSAEncryption
14:cc:32:87:cf:6e:9c:4c:f1:f0:08:fc:81:fb:fa:a2:57:d6:
22:d2:ff:c8:bc:d8:68:22:d4:37:2c:d0:98:50:fc:19:44:31:
df:e9:72:94:93:f8:5f:f8:ca:07:da:bd:d9:ba:28:91:3d:a5:
c5:c1:de:ec:78:ab:5e:26:8d:fc:df:8b:59:b0:aa:4f:1b:45:
98:e3:5a:13:c9:12:67:7a:4e:a6:14:0f:8c:1f:25:40:82:e8:
8e:44:83:65:99:70:3c:76:e1:60:57:a7:0e:29:00:1b:03:68:
fe:be:fa:1a:e1:1a:b3:77:1a:ec:fd:70:4d:7c:4d:67:78:47:
bb:7f:cb:3d:9f:48:79:3b:89:9a:46:86:95:99:bc:87:b8:68:
67:6b:59:eb:26:64:dc:02:c1:19:dc:c5:5f:64:af:84:a6:cd:
6d:54:2d:c1:66:c8:ee:dd:63:46:1b:a7:fe:38:f9:39:10:77:
d4:22:c5:9a:2d:e9:73:88:30:72:ad:5e:85:22:25:b4:51:fa:
f2:6a:61:20:1f:6e:db:1c:02:b1:aa:fd:05:16:8b:fe:ed:64:
f8:6d:4c:49:49:51:93:ed:88:25:c1:23:63:2b:b3:d9:4b:85:
89:d3:60:77:ba:b5:d2:1b:2a:df:b0:05:3b:15:70:88:b1:65:
b8:de:a1:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 08:17:16 2025 by rpki-client