Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/671gBYW6ETXc3uLLcMWFydigIAE.roa
File: 671gBYW6ETXc3uLLcMWFydigIAE.roa (raw, json)
Hash identifier: uojR24E1qs72oxVJvoIC5cuU67AWyV57CVyY3tIitjE=
Subject key identifier: EB:BD:60:05:85:BA:11:35:DC:DE:E2:CB:70:C5:85:C9:D8:A0:20:01
Certificate issuer: /CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Certificate serial: 0194258FA677D99D20CE3D68BE77F615221C
Authority key identifier: 5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/671gBYW6ETXc3uLLcMWFydigIAE.roa
Signing time: Thu 02 Jan 2025 05:49:18 +0000
ROA not before: Thu 02 Jan 2025 05:49:18 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 206862
IP address blocks: 5.200.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:a6:77:d9:9d:20:ce:3d:68:be:77:f6:15:22:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b698c4b612afee2cbb1cdd509e4f0246fbb80e1
Validity
Not Before: Jan 2 05:49:18 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ebbd600585ba1135dcdee2cb70c585c9d8a02001
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:f0:54:54:4e:6e:e5:7e:96:c0:d6:98:31:5f:
47:a3:63:61:e1:a6:93:e6:c1:6a:cb:13:71:f4:cb:
ec:f5:aa:ca:1a:c0:33:18:e5:48:54:3d:cb:8a:f3:
ad:5a:12:c4:20:ed:78:24:6e:ec:0b:31:e7:fb:b8:
5d:3b:ea:b0:7f:a7:40:83:54:fc:7d:dd:ec:37:aa:
52:f6:56:89:bd:a4:e7:e2:ca:f4:3f:61:c7:42:b9:
4b:50:90:dc:1d:e9:96:c0:ab:53:67:39:b1:74:4f:
c2:99:7b:f3:53:f1:e2:3c:11:aa:c5:b9:31:46:1c:
e4:35:69:79:47:67:07:24:10:1d:f6:01:f2:e6:d7:
f7:f3:44:8d:18:75:78:66:75:9d:7f:87:89:02:78:
47:18:00:6e:59:4f:d5:8d:9e:8a:ee:a2:82:53:34:
06:08:39:ff:d0:44:71:4a:14:4b:36:47:a2:8f:68:
d4:7b:36:89:c4:7e:db:57:f6:e4:e0:62:fb:76:2f:
e2:35:66:4e:a8:58:02:a6:2d:27:a8:18:03:da:0a:
de:85:43:86:74:bc:19:84:40:41:06:53:b0:de:cf:
b1:7c:a1:72:d3:02:2b:27:e9:39:2f:9f:64:a8:cc:
71:6f:d7:47:da:9e:04:fc:64:b8:07:8c:6c:fc:0b:
c8:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:BD:60:05:85:BA:11:35:DC:DE:E2:CB:70:C5:85:C9:D8:A0:20:01
X509v3 Authority Key Identifier:
keyid:5B:69:8C:4B:61:2A:FE:E2:CB:B1:CD:D5:09:E4:F0:24:6F:BB:80:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/671gBYW6ETXc3uLLcMWFydigIAE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/c16f55-b44d-40c3-9dac-cc2fafe3a8b4/1/W2mMS2Eq_uLLsc3VCeTwJG-7gOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.200.95.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:9c:b9:f8:ff:dd:c7:f4:3f:88:ed:ce:9a:ef:4a:2a:bf:92:
00:e2:b0:78:20:6a:8f:57:6a:14:d4:50:24:83:ad:00:8d:7c:
59:7f:14:06:eb:8a:73:98:fa:e2:03:95:14:26:61:97:6a:58:
54:30:7d:0f:f3:63:f6:e8:82:32:4e:2e:20:4f:7d:37:24:22:
6b:40:2a:50:85:9b:b0:45:3e:28:00:af:9b:09:51:cc:3e:85:
69:d4:2c:40:d6:7c:d7:eb:38:06:63:af:59:ef:18:8d:56:8f:
eb:3a:8a:8c:aa:67:ba:d4:6f:7e:55:7d:b5:96:87:8e:fa:42:
1e:51:41:c9:36:43:fd:83:c6:5b:0c:f5:a5:c9:3c:9c:54:73:
3b:dd:48:94:f7:09:78:11:2e:af:0a:4d:57:03:45:d1:34:75:
85:31:de:0d:af:cd:a6:e7:06:d7:1a:0d:45:13:d0:8a:c7:2e:
71:11:14:5f:e7:50:ff:e5:01:8b:aa:39:64:a6:bc:3c:7a:a4:
b0:a5:bc:33:e4:fa:52:35:96:34:2b:88:84:47:7b:28:f1:2f:
95:43:16:d8:d6:d1:c9:18:35:e4:1c:4b:b9:43:5e:8f:f0:4c:
ad:1c:f3:d5:e2:20:f1:9c:b7:a4:51:60:e3:56:62:0d:ee:aa:
62:ad:ec:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:47:16 2025 by rpki-client