Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/b7d1b5-7cb8-46aa-ad58-cbf2a3b6a284/1/xRcmRRI7cJbjjDDpwXYPAzS-KSc.roa
File: xRcmRRI7cJbjjDDpwXYPAzS-KSc.roa (raw, json)
Hash identifier: +JILVppUk45vww/N3lSTziP5G1U9pzpXHROPOpD0HAQ=
Subject key identifier: C5:17:26:45:12:3B:70:96:E3:8C:30:E9:C1:76:0F:03:34:BE:29:27
Certificate issuer: /CN=05f221f5f04cf9d96ddea44251b2b823f7114663
Certificate serial: 01941FFA6CCCB975E5D112EE49C94836D823
Authority key identifier: 05:F2:21:F5:F0:4C:F9:D9:6D:DE:A4:42:51:B2:B8:23:F7:11:46:63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfIh9fBM-dlt3qRCUbK4I_cRRmM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/b7d1b5-7cb8-46aa-ad58-cbf2a3b6a284/1/xRcmRRI7cJbjjDDpwXYPAzS-KSc.roa
Signing time: Wed 01 Jan 2025 03:48:12 +0000
ROA not before: Wed 01 Jan 2025 03:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 6730
IP address blocks: 192.54.122.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:6c:cc:b9:75:e5:d1:12:ee:49:c9:48:36:d8:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05f221f5f04cf9d96ddea44251b2b823f7114663
Validity
Not Before: Jan 1 03:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c5172645123b7096e38c30e9c1760f0334be2927
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:61:5a:d4:47:91:81:39:cb:e6:1d:e1:b5:2b:
51:70:d0:a0:07:5a:e8:02:ed:3c:25:10:a3:75:a7:
22:73:65:17:0a:a9:cf:88:01:c4:83:0b:9b:31:99:
58:61:2f:33:e9:c7:1c:94:16:fa:57:f3:7a:dc:15:
6f:76:67:cc:58:eb:06:04:0c:33:2f:fb:5e:2e:33:
c9:95:a4:ae:6a:64:e9:16:6c:6b:02:a7:a6:9d:d4:
bc:24:34:8b:df:d5:aa:e7:e1:a7:ed:1a:6f:57:64:
6c:f7:d9:dc:69:d5:c3:38:b4:7e:cb:5e:98:ed:db:
09:b7:74:db:bf:21:f7:32:a1:90:20:5e:b1:b0:6f:
1a:f9:e4:2d:20:04:f9:55:de:2f:a3:de:72:51:c3:
6e:07:c6:9b:b7:4a:a3:0b:0e:9a:bd:93:6a:67:5b:
15:e9:b6:f4:59:9d:b8:c1:ca:3c:56:0f:f0:7f:8f:
76:4b:89:cc:64:7f:25:8f:15:55:41:02:51:c0:17:
e1:c3:2d:7f:e8:7b:35:c1:15:68:3e:7d:33:c3:c1:
77:b6:bd:95:d0:78:38:27:0c:1e:ba:ac:9d:52:8e:
5a:2f:9b:88:a9:21:a1:f1:6a:75:5f:e3:eb:62:39:
95:27:69:b4:f9:eb:d9:8d:1f:0d:8b:ab:66:c3:6c:
cb:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:17:26:45:12:3B:70:96:E3:8C:30:E9:C1:76:0F:03:34:BE:29:27
X509v3 Authority Key Identifier:
keyid:05:F2:21:F5:F0:4C:F9:D9:6D:DE:A4:42:51:B2:B8:23:F7:11:46:63
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfIh9fBM-dlt3qRCUbK4I_cRRmM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b7d1b5-7cb8-46aa-ad58-cbf2a3b6a284/1/xRcmRRI7cJbjjDDpwXYPAzS-KSc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/b7d1b5-7cb8-46aa-ad58-cbf2a3b6a284/1/BfIh9fBM-dlt3qRCUbK4I_cRRmM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.54.122.0/24
Signature Algorithm: sha256WithRSAEncryption
d1:51:d9:bf:35:d7:d3:05:cf:b4:a2:28:93:c9:41:f5:c6:80:
17:c3:07:d0:4e:a7:89:f8:70:4d:88:39:c1:e9:18:a5:75:b0:
27:06:86:2b:d9:0c:cd:71:65:95:aa:58:70:25:83:62:c5:21:
ac:34:2e:e2:8e:a0:27:64:bf:40:ce:ff:71:c3:f2:7b:70:14:
e1:a0:0f:53:24:37:03:e5:d7:2d:d8:9a:b7:37:4b:c1:27:b3:
70:0e:55:b3:f6:46:ef:fe:05:6e:ec:3d:c0:5e:7a:1b:f1:ef:
13:c8:30:3b:73:52:ca:59:ab:1c:e2:de:53:e4:d3:14:95:07:
da:ee:10:07:17:26:d4:ca:f2:b1:8f:df:8f:9b:3f:a6:e4:75:
7c:af:36:ff:df:0d:da:5c:1c:f0:dd:ac:a8:ee:92:ec:19:71:
37:48:61:60:69:fa:78:1d:82:dc:25:c7:34:4d:bd:fd:d1:94:
4f:b2:85:3b:9e:5e:30:47:09:1e:d1:bc:61:64:20:cf:c6:30:
32:c2:dd:95:6c:0e:d2:1b:8a:9e:ca:98:36:71:0b:08:70:52:
e9:72:7d:41:a4:80:a0:72:9a:fc:a8:68:c7:35:57:77:ed:25:
9f:6c:c9:23:a8:23:ca:4c:3e:de:cd:43:e0:2c:6f:73:bb:69:
67:4a:b5:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 00:24:46 2025 by rpki-client