Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/cuPytutt2n0eGvtmlKhIAPwMjik.roa
File: cuPytutt2n0eGvtmlKhIAPwMjik.roa (raw, json)
Hash identifier: nLVXqcqfXAYczwV0A/DG7UlQnOtJTTZ+GUSbi/wO1E4=
Subject key identifier: 72:E3:F2:B6:EB:6D:DA:7D:1E:1A:FB:66:94:A8:48:00:FC:0C:8E:29
Certificate issuer: /CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Certificate serial: 01941FFA43B6F2A26F2D33814458B8EBA4A6
Authority key identifier: D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/cuPytutt2n0eGvtmlKhIAPwMjik.roa
Signing time: Wed 01 Jan 2025 03:48:02 +0000
ROA not before: Wed 01 Jan 2025 03:48:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212335
IP address blocks: 194.165.27.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:43:b6:f2:a2:6f:2d:33:81:44:58:b8:eb:a4:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d98247d3f81472dbba06dbea9bd19c785d18babe
Validity
Not Before: Jan 1 03:48:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=72e3f2b6eb6dda7d1e1afb6694a84800fc0c8e29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:57:c2:28:45:7b:61:39:0f:03:f7:c5:1c:57:
20:d8:77:32:44:41:23:9b:7e:f5:34:cc:7e:b5:b6:
36:aa:74:fa:d5:7a:28:79:0d:3c:9a:9b:64:53:8d:
e2:9a:80:e4:22:31:49:cb:d8:a1:95:65:cb:5a:7b:
96:a7:07:fe:52:9a:80:53:00:54:75:32:60:99:1c:
bb:dd:40:43:c7:0a:1b:d9:d4:34:cb:80:58:ca:10:
2d:11:f2:27:81:05:a6:f1:2c:e3:25:85:3b:00:58:
c8:4d:d3:ea:43:31:96:6b:d3:80:28:7c:34:4c:0c:
b3:6d:f9:ec:d9:15:ea:f0:0c:e8:2d:ac:db:ff:64:
f7:be:5b:3a:0f:69:b3:16:83:af:2e:5e:c6:a2:ff:
84:00:23:12:79:c9:ca:e4:0c:76:44:7f:0b:a8:03:
08:43:a6:d9:9a:b6:26:c1:e6:80:01:0c:4a:fd:d7:
05:53:77:69:cf:a8:99:3b:d6:46:fe:00:86:29:ef:
2b:2d:ab:a4:a1:31:19:3a:98:d1:1f:7f:b5:72:74:
7e:93:0a:b8:37:16:a0:c7:48:9a:4a:d3:ad:fa:b2:
b0:df:0b:13:cd:32:cf:32:49:e6:ac:bd:76:36:db:
0d:c6:51:73:5b:29:cf:5b:47:55:d5:d0:5f:23:42:
d2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:E3:F2:B6:EB:6D:DA:7D:1E:1A:FB:66:94:A8:48:00:FC:0C:8E:29
X509v3 Authority Key Identifier:
keyid:D9:82:47:D3:F8:14:72:DB:BA:06:DB:EA:9B:D1:9C:78:5D:18:BA:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2YJH0_gUctu6Btvqm9GceF0Yur4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/cuPytutt2n0eGvtmlKhIAPwMjik.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6dbc99-bfa9-4ef7-a798-a3032615660c/1/2YJH0_gUctu6Btvqm9GceF0Yur4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.165.27.0/24
Signature Algorithm: sha256WithRSAEncryption
76:c7:f8:8a:9e:58:9e:f8:13:c8:9e:ea:65:16:1e:c9:da:5a:
2a:a8:ee:bc:6e:e6:b7:d7:13:d9:55:5b:6d:af:90:a3:03:ec:
8c:6e:08:71:e5:62:24:7c:cc:02:02:fe:6c:62:8e:d0:e4:e2:
9e:de:b7:dc:86:08:6e:b3:12:8d:ca:35:46:3f:a3:d9:67:2e:
8f:e1:60:53:3f:22:77:36:b8:03:22:4c:21:e7:84:25:34:44:
ca:3a:bb:61:0c:a4:45:44:23:2c:b2:e9:88:4f:4b:74:6a:65:
22:f8:27:bb:b4:4b:53:99:18:92:17:5b:74:31:9f:1e:17:7d:
c2:60:1b:0d:df:84:c2:b2:ae:fc:28:76:c9:94:9c:ee:b2:6c:
f7:3d:63:fe:19:2e:60:9f:79:d8:91:d4:bd:53:c9:a6:f0:8d:
ec:12:93:4c:cc:f0:5b:24:f9:73:b9:99:02:fd:92:a7:24:b9:
31:28:9f:4e:a2:4f:58:7b:f2:63:1b:33:1b:94:ec:be:fa:ed:
84:ef:88:17:3b:89:e8:f2:33:f6:fa:c5:ad:2a:1e:f9:e4:b4:
39:d8:90:48:2a:35:68:c2:97:29:2d:be:57:7d:9f:fc:72:07:
52:20:41:25:de:49:ed:4d:a1:8a:73:be:29:52:22:fe:37:0f:
78:4d:09:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 01:59:55 2025 by rpki-client