Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/8897fd-1862-4393-aa4b-447617a4a744/1/LY3QpAnEcrZ44dK1ed4IJLaBjRw.roa
File: LY3QpAnEcrZ44dK1ed4IJLaBjRw.roa (raw, json)
Hash identifier: M2pHvb/iV5OhRzTOdsYqG0PG0QuxNK/EUT1YPfC/yeY=
Subject key identifier: 2D:8D:D0:A4:09:C4:72:B6:78:E1:D2:B5:79:DE:08:24:B6:81:8D:1C
Certificate issuer: /CN=7d7b4bcabeb29605ea511de973e4675c4b8a29df
Certificate serial: 018CC500AB7F09023A0A418836FCE333A0C0
Authority key identifier: 7D:7B:4B:CA:BE:B2:96:05:EA:51:1D:E9:73:E4:67:5C:4B:8A:29:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fXtLyr6ylgXqUR3pc-RnXEuKKd8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/8897fd-1862-4393-aa4b-447617a4a744/1/LY3QpAnEcrZ44dK1ed4IJLaBjRw.roa
Signing time: Mon 01 Jan 2024 12:30:04 +0000
ROA not before: Mon 01 Jan 2024 12:30:04 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 201005
IP address blocks: 151.237.7.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c5:00:ab:7f:09:02:3a:0a:41:88:36:fc:e3:33:a0:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d7b4bcabeb29605ea511de973e4675c4b8a29df
Validity
Not Before: Jan 1 12:30:04 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2d8dd0a409c472b678e1d2b579de0824b6818d1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:24:07:23:9c:01:8e:05:61:18:84:12:29:94:
af:8a:cb:5c:34:a5:78:75:87:94:a4:5c:16:b3:5d:
15:a2:55:35:46:c4:82:35:ad:d8:28:26:ff:91:9f:
6e:75:84:15:2e:ee:68:d1:29:0a:52:59:13:4e:17:
22:c7:5e:4e:39:75:38:95:17:62:ff:6a:2a:1e:bf:
49:80:c1:cd:a8:d8:a7:30:7f:28:07:65:9d:f4:d5:
94:a8:e5:e3:3a:7b:3b:ea:46:c2:4a:48:87:c1:96:
17:54:7b:1b:6a:0b:2e:3a:38:e1:fb:64:19:b0:d9:
87:7b:c4:12:b0:72:3e:5d:15:b0:b6:23:45:15:f0:
69:ab:47:1e:4f:a2:78:b4:b9:ad:e7:40:a7:9c:09:
9c:06:1d:1e:9e:93:39:1c:fe:71:a1:7f:55:de:70:
fe:da:35:78:4e:cd:a0:66:0c:f6:16:df:55:33:b9:
9c:b6:78:2f:c5:50:4e:b6:c7:78:de:2d:62:b5:fb:
e9:38:ba:59:6f:7a:47:91:98:2f:06:49:81:53:07:
4d:f1:1a:f5:ea:d5:98:4a:1f:64:be:2e:c3:5b:67:
4a:24:3a:69:77:0d:4d:c1:6c:85:b7:28:4f:8d:96:
85:44:c0:4e:fe:ff:bf:ec:c1:b8:65:ec:8e:22:10:
35:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:8D:D0:A4:09:C4:72:B6:78:E1:D2:B5:79:DE:08:24:B6:81:8D:1C
X509v3 Authority Key Identifier:
keyid:7D:7B:4B:CA:BE:B2:96:05:EA:51:1D:E9:73:E4:67:5C:4B:8A:29:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXtLyr6ylgXqUR3pc-RnXEuKKd8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/8897fd-1862-4393-aa4b-447617a4a744/1/LY3QpAnEcrZ44dK1ed4IJLaBjRw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/8897fd-1862-4393-aa4b-447617a4a744/1/fXtLyr6ylgXqUR3pc-RnXEuKKd8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.237.7.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:07:39:71:c9:46:a9:95:41:1c:04:28:c2:68:8e:b0:f2:13:
08:1b:85:6e:14:f4:d3:ca:9c:f6:c2:c9:1c:4c:ce:4d:99:e0:
73:c1:f4:1d:38:c8:d0:cc:6e:8b:2a:51:ca:00:4d:26:76:9a:
ff:c9:21:84:83:00:10:c1:e1:c2:8c:54:4a:b3:df:07:89:ce:
52:a9:aa:41:9e:5b:81:24:b9:a7:f0:a8:d0:34:63:07:84:b4:
fc:1f:7c:96:0a:02:de:36:97:21:87:53:7b:2d:ee:f5:30:47:
ba:5b:94:c6:ff:0b:ce:f8:54:fa:42:cf:c2:55:93:3b:ae:38:
a7:f0:b5:7b:ae:0b:b8:fd:1f:2e:fc:ee:e2:5f:68:89:61:16:
57:3c:9a:de:5b:8f:7c:fd:52:b5:3d:88:d1:12:ad:63:43:94:
c4:5b:3d:ec:40:1f:05:e5:79:d0:62:09:75:3e:14:2a:b0:96:
9a:03:d6:d7:8b:07:49:8e:26:d5:dd:da:c3:27:fe:88:5f:fa:
bb:0f:90:e6:d6:d4:ba:64:a2:09:9e:31:3e:43:71:ff:cd:c2:
1c:b4:ef:13:c4:a8:f7:7b:21:d7:bf:70:50:40:d6:ea:6e:b3:
e7:ae:6b:47:7a:fe:d5:d2:fc:20:f9:f6:20:65:30:56:d0:22:
d0:a2:6e:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 04:02:09 2025 by rpki-client