Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/AlF6QUDYgPNFHoKES1GWsxqjDZg.roa
File: AlF6QUDYgPNFHoKES1GWsxqjDZg.roa (raw, json)
Hash identifier: b7yXTIUjvVlWzsxXNANwzdQ/qhc6RpUsiAkzEgXrpaU=
Subject key identifier: 02:51:7A:41:40:D8:80:F3:45:1E:82:84:4B:51:96:B3:1A:A3:0D:98
Certificate issuer: /CN=19426325acb8ce609a686fa655b058968809b346
Certificate serial: 0194258F8A7EF93E3081D81B635D9D440B4E
Authority key identifier: 19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/AlF6QUDYgPNFHoKES1GWsxqjDZg.roa
Signing time: Thu 02 Jan 2025 05:49:11 +0000
ROA not before: Thu 02 Jan 2025 05:49:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211936
IP address blocks: 77.47.152.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:8a:7e:f9:3e:30:81:d8:1b:63:5d:9d:44:0b:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19426325acb8ce609a686fa655b058968809b346
Validity
Not Before: Jan 2 05:49:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=02517a4140d880f3451e82844b5196b31aa30d98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:67:61:8c:c1:05:c1:12:67:38:b5:f1:83:88:
be:c3:a9:74:45:42:ba:e8:92:a7:ce:91:73:9b:46:
b5:65:8d:54:d8:7b:6f:b9:d0:41:6a:dc:08:9e:ff:
89:18:2c:4a:8f:24:28:36:e6:40:cd:59:ce:e7:6b:
53:56:69:dc:4d:d2:e7:82:8a:be:4a:f1:f6:c3:33:
02:45:4d:5b:21:21:ac:c3:45:54:b9:9b:1b:e5:2b:
3e:b8:90:95:4d:48:8c:fa:4c:01:03:c7:16:d0:f0:
f6:a3:3d:ea:e1:85:41:3c:8c:17:7f:c4:8a:9d:cb:
67:87:e2:3a:8d:ef:26:d1:f9:85:a3:aa:c7:ec:c1:
57:c1:a1:42:a7:b6:ad:8f:9c:8d:d9:5a:a0:4b:c6:
e3:3b:a5:4e:ab:06:75:36:7c:5d:ed:72:3d:22:35:
d9:06:a9:ba:9a:1a:75:33:58:4d:2c:9f:fa:7c:71:
c9:03:e1:b0:b4:60:a9:e8:b8:d9:d6:32:68:8f:b6:
2f:bb:62:4d:3b:34:63:f5:fe:53:1d:66:3b:7d:77:
f2:ae:96:5b:a5:ca:1a:08:29:c3:d7:8d:fe:14:60:
8a:78:fe:f3:36:a8:24:af:3e:7e:08:64:f4:d3:3e:
63:3c:7b:35:fc:a6:97:f7:61:d2:61:aa:d8:9a:ba:
80:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:51:7A:41:40:D8:80:F3:45:1E:82:84:4B:51:96:B3:1A:A3:0D:98
X509v3 Authority Key Identifier:
keyid:19:42:63:25:AC:B8:CE:60:9A:68:6F:A6:55:B0:58:96:88:09:B3:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GUJjJay4zmCaaG-mVbBYlogJs0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/AlF6QUDYgPNFHoKES1GWsxqjDZg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/8b6fb0-a875-4947-8ae4-03f4c7113c34/1/GUJjJay4zmCaaG-mVbBYlogJs0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.47.152.0/22
Signature Algorithm: sha256WithRSAEncryption
ba:e5:60:c5:76:ed:ec:cc:d7:8b:10:21:11:16:36:0f:1d:4c:
b6:8c:9f:76:ba:6b:50:fa:25:d4:5e:04:6b:de:dd:62:0a:ef:
50:b0:e6:d7:0e:da:7f:6c:a1:ad:82:5d:ae:29:e2:84:8d:0b:
6e:04:d6:ad:1f:44:d2:7e:f2:a2:c5:e7:80:2a:c7:1a:b2:b0:
20:b5:bf:ff:05:0a:c8:b4:72:8c:71:94:ac:dd:89:68:18:c4:
9b:51:e4:f7:75:2c:6b:3f:bd:a3:12:62:8b:02:60:05:e7:60:
05:0b:a1:17:e4:d3:b0:65:39:92:d4:1d:03:fd:41:28:1f:06:
fa:58:a0:de:4c:e9:7c:f2:58:3e:72:ef:fc:75:3a:72:a0:72:
f4:2a:38:68:07:81:b0:1a:87:48:39:2e:3e:64:2c:3b:99:2d:
c2:ee:94:54:24:86:bf:ca:99:be:fb:2a:e9:6e:40:76:eb:29:
18:82:7b:c2:45:2e:dd:cc:2d:ac:bf:fd:3e:ac:b0:53:f1:ef:
20:bb:a5:14:4c:55:76:62:2b:e0:49:33:8c:6b:7f:8f:7e:97:
36:63:a7:33:eb:99:cb:6a:7e:9d:9e:9d:42:99:cc:ba:21:ff:
e0:21:d5:58:e7:b7:06:39:ee:5f:d1:6a:c5:81:1c:43:af:dc:
7f:4b:d8:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:48:10 2025 by rpki-client