Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/tuLu-KxTyWECQsa7jsPHvbBC7-c.roa
File: tuLu-KxTyWECQsa7jsPHvbBC7-c.roa (raw, json)
Hash identifier: sICitbN0hdJLsCXmDSmpQhmRlzSQyxGdXNXHPCYmLv0=
Subject key identifier: B6:E2:EE:F8:AC:53:C9:61:02:42:C6:BB:8E:C3:C7:BD:B0:42:EF:E7
Certificate issuer: /CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Certificate serial: 01942445873EFF061506CE1784DA2002A5AF
Authority key identifier: AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/tuLu-KxTyWECQsa7jsPHvbBC7-c.roa
Signing time: Wed 01 Jan 2025 23:48:43 +0000
ROA not before: Wed 01 Jan 2025 23:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39543
IP address blocks: 89.18.30.0/23 maxlen: 23
89.18.31.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:45:87:3e:ff:06:15:06:ce:17:84:da:20:02:a5:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab8c6c58b607ff23ae7175a61682c75480f1e214
Validity
Not Before: Jan 1 23:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b6e2eef8ac53c9610242c6bb8ec3c7bdb042efe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:15:69:c8:35:94:7d:75:4a:73:08:b7:d8:48:
0a:27:bc:ef:b1:fa:1d:d1:0d:0b:a4:47:3b:21:b7:
a8:14:9f:cc:98:c5:f4:1d:e8:f6:8e:59:fb:e7:17:
2a:f4:f4:77:1e:08:1d:49:5c:35:70:63:dc:52:8b:
e3:4b:2c:7c:37:37:94:ef:22:11:0d:16:7d:23:d3:
66:ea:1c:55:b4:91:68:47:50:f1:78:80:5a:da:c6:
46:f3:0c:3f:61:b3:46:25:b1:ee:fa:88:f0:2a:8c:
2d:c9:a9:3d:85:c9:fb:53:37:fb:4c:13:ba:e8:c6:
37:33:e2:d4:b2:46:02:52:d0:c6:2e:a4:4b:d7:34:
30:22:51:3c:d8:1a:3a:6e:89:06:8d:28:e5:7f:3a:
5a:81:2f:d1:db:59:da:08:ba:77:3b:9b:61:8c:b9:
74:50:7c:4b:4d:d1:da:4a:54:a6:1e:84:80:2f:75:
dd:75:f7:e9:48:8c:5c:3c:0a:85:b6:b2:e0:78:26:
19:3a:f6:17:4f:9e:61:84:8f:ef:ad:26:8f:71:d3:
1c:fd:4d:ec:86:8d:ac:2e:8f:a6:40:5c:cb:a1:36:
c1:92:5b:cd:ee:dc:b9:cb:dc:85:78:29:18:82:15:
27:03:11:fa:96:92:d0:e3:41:ec:6f:01:68:7e:05:
95:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:E2:EE:F8:AC:53:C9:61:02:42:C6:BB:8E:C3:C7:BD:B0:42:EF:E7
X509v3 Authority Key Identifier:
keyid:AB:8C:6C:58:B6:07:FF:23:AE:71:75:A6:16:82:C7:54:80:F1:E2:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q4xsWLYH_yOucXWmFoLHVIDx4hQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/tuLu-KxTyWECQsa7jsPHvbBC7-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/efb8ee-c5c4-4467-a0cc-88a3c41faee2/1/q4xsWLYH_yOucXWmFoLHVIDx4hQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.18.30.0/23
Signature Algorithm: sha256WithRSAEncryption
03:4b:4e:57:90:12:dd:cd:01:b3:a3:92:4f:5e:8f:90:75:84:
70:43:3e:83:80:97:95:78:2e:83:92:8c:68:09:5c:e9:33:24:
2d:f3:79:ff:db:46:58:90:0d:ab:d4:84:60:b5:10:aa:85:90:
29:4a:65:24:bc:7a:99:b2:1b:2b:36:75:c9:f2:3c:51:2b:89:
29:3c:d5:51:9a:da:e4:98:b9:41:45:5a:93:93:50:d8:a8:f6:
42:89:9b:fd:34:b7:63:b6:dd:0b:4e:e1:57:ea:2b:a6:cc:b8:
97:1b:94:e6:40:b6:27:b4:a5:88:6e:ba:4a:a1:e0:05:25:a4:
13:d2:8c:9b:94:92:38:c1:25:75:fa:af:e3:58:13:88:d7:42:
b3:b0:04:66:85:48:5c:9f:89:1c:4f:0e:60:54:ea:8e:7d:d1:
54:06:a0:ac:e2:1d:5d:ab:e3:94:95:99:51:df:c3:a2:9c:9e:
6e:c2:65:8e:2f:51:05:82:4d:cb:df:28:7a:c2:bf:2a:6d:7b:
bd:da:bf:60:1c:4c:6e:0b:ac:79:f6:18:5c:1f:c7:ef:76:14:
6e:0f:58:7d:3c:11:f8:b4:3d:0d:b3:ba:8c:e4:94:8a:08:d8:
c6:8c:0a:7b:54:0d:02:4a:e8:7a:4b:82:6a:77:bf:5a:89:a1:
fc:ad:10:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 03:31:55 2025 by rpki-client