Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/1Dk1x9YSG3BVVIbM2O2ifNME7O4.roa
File: 1Dk1x9YSG3BVVIbM2O2ifNME7O4.roa (raw, json)
Hash identifier: bxHAHEV4CTUi3kyjkeY9dH18wMJTnBz71aOw3+/p61U=
Subject key identifier: D4:39:35:C7:D6:12:1B:70:55:54:86:CC:D8:ED:A2:7C:D3:04:EC:EE
Certificate issuer: /CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Certificate serial: 01941FFA30E264477A938EA6BA783A3B4AFE
Authority key identifier: 29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/1Dk1x9YSG3BVVIbM2O2ifNME7O4.roa
Signing time: Wed 01 Jan 2025 03:47:57 +0000
ROA not before: Wed 01 Jan 2025 03:47:57 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44066
IP address blocks: 37.114.56.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:30:e2:64:47:7a:93:8e:a6:ba:78:3a:3b:4a:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=296593b747e76a56492511bb3612e4d5e4cbe7ec
Validity
Not Before: Jan 1 03:47:57 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d43935c7d6121b70555486ccd8eda27cd304ecee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:db:77:c0:dc:18:4a:5c:63:6a:cc:21:de:46:
fa:7f:76:56:cd:98:22:f0:3c:72:91:da:5b:28:17:
9a:98:5f:24:df:16:85:aa:12:4a:0e:11:33:06:eb:
7f:35:29:14:ca:85:f6:e3:ab:26:bd:74:2d:5f:b6:
7b:70:8c:34:7f:1c:15:c4:3d:e0:04:b0:55:45:a7:
03:32:a1:a8:45:0c:5d:db:2a:47:07:33:d4:36:c8:
18:00:64:28:66:cb:6b:c1:56:b4:9b:93:ef:5d:44:
20:4f:79:e7:8b:63:03:b8:1f:b2:08:90:59:22:c2:
8c:61:a0:79:67:a8:06:20:93:c2:85:35:97:c0:2f:
72:05:d3:96:5b:27:66:71:ab:9c:a7:af:82:cc:eb:
2f:95:8c:b2:cc:01:49:c5:98:fe:8f:5f:38:63:4c:
29:27:15:e1:d5:8b:8c:4d:77:8a:80:d9:18:ca:bd:
ee:08:a7:79:ae:f2:11:29:cf:ec:9b:86:50:4c:4b:
1b:d0:cd:28:3b:10:ce:8f:3d:97:16:e0:f5:87:12:
c0:f9:12:50:15:5e:4b:fe:a8:87:38:d1:15:50:23:
74:f4:68:7c:0b:5c:02:0b:bc:b3:a7:cb:01:19:ba:
88:22:8d:18:97:a9:09:36:ea:44:bf:6d:3f:28:d0:
8a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:39:35:C7:D6:12:1B:70:55:54:86:CC:D8:ED:A2:7C:D3:04:EC:EE
X509v3 Authority Key Identifier:
keyid:29:65:93:B7:47:E7:6A:56:49:25:11:BB:36:12:E4:D5:E4:CB:E7:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWWTt0fnalZJJRG7NhLk1eTL5-w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/1Dk1x9YSG3BVVIbM2O2ifNME7O4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/c58bdc-14e7-499c-9d9c-1b7cbb08d73f/1/KWWTt0fnalZJJRG7NhLk1eTL5-w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.114.56.0/24
Signature Algorithm: sha256WithRSAEncryption
57:f3:7d:13:64:35:2a:f5:45:55:dd:47:1e:74:20:a4:b7:6e:
72:7b:c5:b7:10:4e:7f:0a:02:92:62:c0:27:cc:6a:15:6d:ab:
47:50:cc:f8:7c:76:4e:85:27:ae:88:6f:00:28:f9:8e:fc:95:
05:72:d3:ca:c6:8b:40:80:00:d7:7b:70:f6:c1:58:d1:cf:07:
c8:07:80:ab:ac:f7:bc:a3:b5:3e:3e:56:2c:72:f5:30:b1:9f:
4e:6a:82:4d:79:82:ee:c7:e5:c7:c7:a2:0b:0c:17:f6:87:35:
0d:38:ea:a4:47:7d:95:11:4b:32:2b:bb:f7:3d:40:20:f5:04:
81:ad:89:30:a9:67:77:b9:e5:8d:02:b3:24:c2:40:ca:95:2e:
a2:f1:70:dc:3d:09:83:df:6e:c1:9c:95:cd:08:aa:93:a3:82:
64:31:17:4d:32:48:a7:e4:64:8b:3c:e9:a9:e8:bb:a0:49:78:
cf:68:ca:95:cf:a0:d7:5e:f8:35:26:87:49:45:79:e5:a8:de:
c5:c9:e0:5b:db:1f:fb:1e:55:1e:6b:9e:73:ac:b5:b0:c1:65:
d8:df:c0:fc:eb:87:04:7f:e8:d0:78:1e:83:49:10:fa:58:ce:
c9:47:fb:b9:62:b1:c8:d6:f6:68:c5:fc:8a:a0:5b:86:5c:bf:
32:08:83:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:29:44 2025 by rpki-client