Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/53a721-1f91-488a-b5a3-59c9c3fb9947/1/egLJr-eSZpk4sDdrCGxUJjm8wVU.roa
File: egLJr-eSZpk4sDdrCGxUJjm8wVU.roa (raw, json)
Hash identifier: NBKYZF7j3MH2zl3XNbkXJFKVIPixuj4t75EEGhwneCE=
Subject key identifier: 7A:02:C9:AF:E7:92:66:99:38:B0:37:6B:08:6C:54:26:39:BC:C1:55
Certificate issuer: /CN=84056e22dd123c834c0a4aa74516d5fb3cc77dd1
Certificate serial: 01942444A0E72A59D69CB32E9C9B93CD86ED
Authority key identifier: 84:05:6E:22:DD:12:3C:83:4C:0A:4A:A7:45:16:D5:FB:3C:C7:7D:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hAVuIt0SPINMCkqnRRbV-zzHfdE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/53a721-1f91-488a-b5a3-59c9c3fb9947/1/egLJr-eSZpk4sDdrCGxUJjm8wVU.roa
Signing time: Wed 01 Jan 2025 23:47:44 +0000
ROA not before: Wed 01 Jan 2025 23:47:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 39808
IP address blocks: 89.107.88.0/21 maxlen: 21
185.123.212.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:a0:e7:2a:59:d6:9c:b3:2e:9c:9b:93:cd:86:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=84056e22dd123c834c0a4aa74516d5fb3cc77dd1
Validity
Not Before: Jan 1 23:47:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=7a02c9afe792669938b0376b086c542639bcc155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ff:6d:4f:ee:0a:9e:90:7f:73:2d:42:a9:c8:
ae:c4:58:bd:0c:25:6d:56:f6:49:e7:28:f0:b9:63:
59:79:50:9a:a8:39:b6:25:23:0c:4a:29:2d:34:40:
80:bf:90:dc:67:61:bb:b9:4d:75:ee:e8:9f:d6:be:
91:43:50:48:4b:4c:2a:81:d2:d5:d2:0d:b3:2a:31:
40:96:96:37:fd:54:34:50:5f:ec:e4:ef:94:e7:c7:
23:35:d3:f8:b5:f5:26:ea:87:4a:7a:6c:54:d4:24:
63:07:de:13:79:6b:4d:bf:a6:55:aa:e6:e9:6f:97:
65:5c:41:b9:80:c3:f6:5c:a6:e6:37:17:66:f0:a6:
80:e7:c9:17:eb:72:ea:13:56:52:57:af:29:e5:7e:
19:99:b2:73:8d:e2:8a:cb:c8:fd:2c:fe:d9:cf:98:
96:3c:26:77:95:0e:37:bd:6e:39:c7:d1:1f:28:9c:
e9:1e:70:a6:ff:16:51:f7:7c:bb:6e:cc:c8:ee:7e:
f9:7d:ca:61:d0:58:14:92:91:e0:38:e5:3b:df:5d:
cf:60:6c:13:f7:56:49:51:c4:88:f5:0b:b8:3d:8f:
ba:12:a6:b9:18:5c:95:a3:fe:6a:f6:c4:02:a8:6d:
1b:ee:1c:46:84:c2:c7:ac:65:0e:04:ae:92:5a:9c:
a7:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:02:C9:AF:E7:92:66:99:38:B0:37:6B:08:6C:54:26:39:BC:C1:55
X509v3 Authority Key Identifier:
keyid:84:05:6E:22:DD:12:3C:83:4C:0A:4A:A7:45:16:D5:FB:3C:C7:7D:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hAVuIt0SPINMCkqnRRbV-zzHfdE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/53a721-1f91-488a-b5a3-59c9c3fb9947/1/egLJr-eSZpk4sDdrCGxUJjm8wVU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/53a721-1f91-488a-b5a3-59c9c3fb9947/1/hAVuIt0SPINMCkqnRRbV-zzHfdE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.107.88.0/21
185.123.212.0/22
Signature Algorithm: sha256WithRSAEncryption
44:f7:fe:5e:fc:1f:ed:47:a2:a7:db:de:76:b0:98:b3:a3:17:
04:85:25:df:57:6d:75:a0:2a:46:94:af:d4:31:63:da:31:a9:
e0:3d:b1:21:d7:8b:91:b7:1b:7f:2a:a3:e8:ad:54:5e:67:2c:
34:49:69:8f:15:a5:b7:04:e5:8b:3b:1c:4f:49:f3:30:76:e5:
61:73:6f:9e:91:f2:24:9b:c0:b0:f9:66:f9:70:8e:44:27:bc:
88:eb:1b:d2:21:04:d1:9d:65:21:d5:72:6c:95:08:f6:80:99:
ba:b9:0c:82:30:38:4c:61:3f:64:b3:38:51:4e:66:6e:5a:05:
14:55:08:e1:2a:3e:56:a2:6d:bf:ee:db:4d:3a:a8:a4:60:88:
87:9b:f6:85:9d:8b:98:05:af:e6:42:cc:93:5e:f8:5d:3a:5a:
53:ed:32:94:ee:f6:71:6a:33:2a:73:f5:b2:ed:ff:71:ff:d6:
4b:fc:84:fd:16:ff:24:26:14:92:4e:f8:d6:62:3c:0d:03:88:
3b:94:92:a0:dd:65:67:5c:49:df:89:af:e3:7e:c7:95:e4:2c:
d2:71:ca:50:b9:0e:58:47:41:e4:26:6c:0b:74:2e:e7:27:ff:
8e:73:7a:9e:3b:1b:4e:ce:b1:99:d8:65:48:e3:a0:e6:53:da:
7c:75:b5:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:39:41 2025 by rpki-client