Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/52b634-6148-4e2e-b8f3-0c98c570a6e0/1/rDRUKkzZmI7yjCKpqiCtK-fUy7Q.roa
File: rDRUKkzZmI7yjCKpqiCtK-fUy7Q.roa (raw, json)
Hash identifier: uAeF6E4mouy6Lmf4flTkP1sxauS/RBJXZig4r2f6XkE=
Subject key identifier: AC:34:54:2A:4C:D9:98:8E:F2:8C:22:A9:AA:20:AD:2B:E7:D4:CB:B4
Certificate issuer: /CN=607548c37abebc58b928ed285433d69e95df9c3b
Certificate serial: 0194221FBA1C3F5A99AE1B6CF2EB11C7E2C2
Authority key identifier: 60:75:48:C3:7A:BE:BC:58:B9:28:ED:28:54:33:D6:9E:95:DF:9C:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YHVIw3q-vFi5KO0oVDPWnpXfnDs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/52b634-6148-4e2e-b8f3-0c98c570a6e0/1/rDRUKkzZmI7yjCKpqiCtK-fUy7Q.roa
Signing time: Wed 01 Jan 2025 13:48:12 +0000
ROA not before: Wed 01 Jan 2025 13:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50608
IP address blocks: 83.220.167.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:ba:1c:3f:5a:99:ae:1b:6c:f2:eb:11:c7:e2:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=607548c37abebc58b928ed285433d69e95df9c3b
Validity
Not Before: Jan 1 13:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ac34542a4cd9988ef28c22a9aa20ad2be7d4cbb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:2c:99:16:46:ff:53:a5:d7:e6:16:a8:ec:cf:
d2:01:36:0f:ae:ea:14:89:43:35:05:78:9f:f2:09:
c4:bc:da:e1:fa:07:5a:36:96:56:e0:84:fc:12:e4:
78:20:38:e4:2a:09:a8:42:98:f1:55:f3:1c:9a:83:
d1:db:1f:2c:93:0a:d4:07:9f:c0:b2:70:ff:c6:a3:
ab:16:3b:61:0f:11:f3:87:62:2b:e1:4e:15:86:a3:
b5:81:69:2b:03:fe:1d:72:ae:06:6e:66:ee:48:e8:
ec:db:bb:99:a6:ee:bf:86:e9:a0:2f:63:44:c8:9f:
fa:72:78:da:4f:f9:da:07:fd:55:63:b8:02:7c:98:
5d:20:f1:c1:83:37:1f:df:37:35:d4:f7:6d:c9:38:
24:56:1f:ae:b3:03:d2:7c:ad:67:78:9f:f6:5e:8f:
3a:10:35:5f:1b:d2:ee:1f:3a:d3:64:49:21:49:82:
86:f7:76:27:5e:00:f7:8f:b4:3f:a3:98:93:a9:dc:
f4:d9:24:a9:28:50:fe:c1:f9:54:5f:84:94:cf:81:
89:d0:36:f5:71:cc:52:27:4f:2e:88:e2:21:c4:6d:
fc:41:bc:19:6e:cf:8b:fd:e0:30:1a:a6:3b:f7:0a:
46:e1:99:74:4a:5c:1a:8f:08:0a:b5:59:dd:60:45:
cf:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:34:54:2A:4C:D9:98:8E:F2:8C:22:A9:AA:20:AD:2B:E7:D4:CB:B4
X509v3 Authority Key Identifier:
keyid:60:75:48:C3:7A:BE:BC:58:B9:28:ED:28:54:33:D6:9E:95:DF:9C:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YHVIw3q-vFi5KO0oVDPWnpXfnDs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/52b634-6148-4e2e-b8f3-0c98c570a6e0/1/rDRUKkzZmI7yjCKpqiCtK-fUy7Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/52b634-6148-4e2e-b8f3-0c98c570a6e0/1/YHVIw3q-vFi5KO0oVDPWnpXfnDs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.220.167.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:5d:fd:ff:28:4c:f1:78:fb:45:2e:4a:46:17:5b:31:96:de:
9e:a7:fc:d2:c3:a6:00:c0:32:36:8e:a7:8d:dd:68:c0:ff:96:
c6:02:64:b2:b9:b5:b8:0b:80:44:4d:ac:fd:33:7d:59:f6:0d:
ef:b8:57:61:2e:71:c5:9a:1f:23:91:0a:3f:7d:cf:44:e9:04:
28:2f:3e:b5:42:5d:df:4e:c6:02:91:98:cf:ad:c0:04:d1:1a:
7b:7f:15:5d:b6:76:df:14:9c:8f:28:0f:f0:2b:fb:aa:06:62:
fc:59:1d:11:de:29:37:ec:3e:29:97:5c:1e:26:c8:f5:b4:55:
28:0f:9c:1a:31:f7:a1:0f:11:03:a6:3a:9d:fd:b9:00:36:58:
e9:50:fd:60:92:5d:74:9d:dc:99:5c:04:54:29:eb:72:fe:86:
c6:fd:3c:64:48:80:49:33:f0:a0:b7:5d:05:b5:bf:8e:07:1b:
30:61:d4:9d:b8:29:1b:52:c3:de:f8:67:39:22:cc:b7:1d:a6:
fe:5a:29:e4:92:dc:8e:4d:10:db:2c:75:01:3a:9a:af:84:bd:
33:e9:86:15:ec:e2:53:22:c8:41:3e:4c:96:0b:19:7f:79:65:
c8:d6:d3:49:16:28:01:cf:4f:fb:10:64:9b:8a:d9:56:ee:cf:
53:bb:42:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:42:49 2025 by rpki-client