Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/5fuh3MDvvFTdM9YPWplIlmW8ZkA.roa
File: 5fuh3MDvvFTdM9YPWplIlmW8ZkA.roa (raw, json)
Hash identifier: Wdi/0+eUolZTOBljIE3hewam0WUu332lXIc8cs32Fgk=
Subject key identifier: E5:FB:A1:DC:C0:EF:BC:54:DD:33:D6:0F:5A:99:48:96:65:BC:66:40
Certificate issuer: /CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Certificate serial: 01941F8C50999CC0941B903F7FB22B6E1E62
Authority key identifier: 61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/5fuh3MDvvFTdM9YPWplIlmW8ZkA.roa
Signing time: Wed 01 Jan 2025 01:47:56 +0000
ROA not before: Wed 01 Jan 2025 01:47:56 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39151
IP address blocks: 185.27.249.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:50:99:9c:c0:94:1b:90:3f:7f:b2:2b:6e:1e:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61a5d217759e861696fc77ed9aa63b94edb3be7d
Validity
Not Before: Jan 1 01:47:56 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e5fba1dcc0efbc54dd33d60f5a99489665bc6640
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fb:29:ae:12:72:e4:68:15:12:bf:bb:9f:d6:14:
63:a2:05:a7:b4:58:40:38:46:6d:06:29:e5:33:10:
14:b9:74:a5:cf:93:bd:a6:e9:e5:82:ff:38:29:d8:
31:15:4b:bc:cf:7b:51:61:2f:b0:9f:0b:98:bd:8a:
a3:77:19:23:17:e9:c6:62:e6:4a:18:24:fd:73:28:
44:7c:21:38:f2:31:8c:46:96:81:15:27:d5:77:6d:
92:e7:4d:c6:4f:77:9c:04:2a:26:3b:7d:e1:d9:9e:
d6:94:0f:de:d6:f2:b9:5a:1a:dd:ce:4d:a3:1c:27:
b3:d0:1c:2a:82:31:da:c1:0d:bc:8b:1a:69:53:b4:
1a:a7:56:6f:ac:97:0a:c1:4d:87:36:4e:f0:1e:67:
68:e4:cf:c0:c2:ad:09:ec:5c:a0:d5:cc:ef:f2:60:
0a:e8:59:b3:62:93:43:ca:85:50:43:4f:df:e3:1d:
ce:f8:7e:3b:28:4f:4f:43:93:63:a2:6b:bc:9a:59:
42:6d:77:b3:54:ab:15:e5:95:22:ed:20:5c:dc:6f:
f1:52:c8:a1:e4:99:a3:24:bf:53:3c:d5:88:46:5c:
8d:fe:eb:28:e3:cc:c1:af:53:23:74:4a:d4:a6:6e:
5e:0c:3f:14:5c:4d:65:9a:00:58:8d:36:03:8a:65:
80:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:FB:A1:DC:C0:EF:BC:54:DD:33:D6:0F:5A:99:48:96:65:BC:66:40
X509v3 Authority Key Identifier:
keyid:61:A5:D2:17:75:9E:86:16:96:FC:77:ED:9A:A6:3B:94:ED:B3:BE:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YaXSF3WehhaW_HftmqY7lO2zvn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/5fuh3MDvvFTdM9YPWplIlmW8ZkA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/72f6cf-9bd4-467a-a92a-5a64a5fc8a64/1/YaXSF3WehhaW_HftmqY7lO2zvn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.27.249.0/24
Signature Algorithm: sha256WithRSAEncryption
17:23:9d:15:21:a4:f4:3b:e5:ea:28:90:92:5f:1c:8e:98:82:
c4:e8:ce:8d:53:a8:6e:54:55:9b:24:a8:97:60:10:6f:b1:d7:
d1:fe:57:ff:1a:7f:29:19:f9:5d:c8:89:41:13:74:5f:87:82:
80:5a:a3:97:a7:f3:69:55:72:0e:07:7d:f9:42:3d:b7:a5:b2:
1d:51:55:67:aa:3b:1f:4a:b0:75:86:b5:fd:e1:0f:14:10:e1:
7f:27:bb:4a:84:65:ca:6c:ee:7f:ca:70:fc:56:f1:23:6b:e9:
1e:11:a6:be:d5:12:f2:c8:fb:12:c2:34:5e:0d:92:2f:26:1c:
b7:99:e8:54:51:8e:9f:4a:01:b5:0a:eb:ce:cb:29:f8:b3:d7:
0d:ae:fb:fb:cd:89:42:2a:c8:33:62:e2:11:18:0b:82:bd:be:
35:59:5b:dc:6d:aa:4c:59:c2:fa:03:b6:a9:f1:e8:fc:27:ec:
2a:8a:85:98:e3:5f:36:5f:c8:f0:3e:19:9d:d3:58:26:81:18:
4a:0d:28:f9:6d:0c:29:d7:45:f7:25:cf:91:55:18:01:67:4a:
eb:16:6e:61:cc:19:3b:51:3e:62:a2:f8:56:c9:c1:28:e4:30:
41:1b:5f:8d:58:9e:0b:4a:bd:91:5b:2b:e4:ff:7f:b4:f5:6a:
04:4c:ae:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:15:44 2025 by rpki-client