Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/6eb365-803a-4c2f-b7ae-c647a8c1ddfa/1/36LgSmoTYXDGLabuVqpVL_HY_bo.roa
File: 36LgSmoTYXDGLabuVqpVL_HY_bo.roa (raw, json)
Hash identifier: jlUxcS1bmgVem5MV0QJTckeBjIjhWcwd8IXi6NlQXXM=
Subject key identifier: DF:A2:E0:4A:6A:13:61:70:C6:2D:A6:EE:56:AA:55:2F:F1:D8:FD:BA
Certificate issuer: /CN=222c4585bd88fb27cadf29ee5bb95d6575fcef83
Certificate serial: 0194228D3F38387BB942C40A44EF196FF730
Authority key identifier: 22:2C:45:85:BD:88:FB:27:CA:DF:29:EE:5B:B9:5D:65:75:FC:EF:83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IixFhb2I-yfK3ynuW7ldZXX874M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/6eb365-803a-4c2f-b7ae-c647a8c1ddfa/1/36LgSmoTYXDGLabuVqpVL_HY_bo.roa
Signing time: Wed 01 Jan 2025 15:47:49 +0000
ROA not before: Wed 01 Jan 2025 15:47:49 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49981
IP address blocks: 89.43.112.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:3f:38:38:7b:b9:42:c4:0a:44:ef:19:6f:f7:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=222c4585bd88fb27cadf29ee5bb95d6575fcef83
Validity
Not Before: Jan 1 15:47:49 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=dfa2e04a6a136170c62da6ee56aa552ff1d8fdba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:db:c9:1d:d8:ed:c8:3c:6d:0a:73:91:c4:97:
8c:d1:48:62:bb:59:07:27:9b:67:cb:ea:63:76:20:
cb:5b:29:a4:ee:15:ba:b3:c4:21:1a:1f:e7:3a:6a:
ee:d5:91:12:3f:e7:e7:a4:a1:77:04:eb:30:52:b5:
10:2e:42:5a:50:38:9f:91:9e:2d:44:c2:65:7b:7f:
46:9b:06:cf:7b:b9:16:ae:03:1a:cd:7f:02:aa:fb:
16:c3:65:03:0b:c4:a5:2d:80:51:ec:13:bd:4f:f6:
2c:72:69:74:7b:89:86:82:bc:19:fd:30:d2:0b:c1:
9e:94:f2:4d:1a:8c:69:3c:88:58:74:98:4a:3c:06:
0a:02:1c:33:1c:2a:f5:3c:00:a3:f7:82:71:69:07:
1d:11:de:f7:af:55:d8:70:2f:f3:0b:65:be:48:6d:
f8:87:9a:46:32:85:df:0e:ff:d1:e9:b4:3b:0d:31:
e4:23:9b:d6:97:84:79:0a:57:2a:38:40:10:5f:c0:
8e:55:e1:12:33:cf:20:42:8e:e4:83:19:38:86:56:
61:b8:02:11:39:32:d0:18:89:54:6d:86:84:d9:e2:
81:09:10:42:bb:4f:32:81:b9:f8:e5:92:ea:66:af:
19:b3:62:6b:38:d4:af:b0:34:b3:ba:c5:8d:ec:c6:
79:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:A2:E0:4A:6A:13:61:70:C6:2D:A6:EE:56:AA:55:2F:F1:D8:FD:BA
X509v3 Authority Key Identifier:
keyid:22:2C:45:85:BD:88:FB:27:CA:DF:29:EE:5B:B9:5D:65:75:FC:EF:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IixFhb2I-yfK3ynuW7ldZXX874M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6eb365-803a-4c2f-b7ae-c647a8c1ddfa/1/36LgSmoTYXDGLabuVqpVL_HY_bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/6eb365-803a-4c2f-b7ae-c647a8c1ddfa/1/IixFhb2I-yfK3ynuW7ldZXX874M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.43.112.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:2c:bd:f5:45:ee:e5:63:31:6d:e2:eb:08:c7:d5:c2:13:b2:
f2:4e:4a:36:de:65:f8:0d:dd:99:f6:db:1b:63:90:74:1a:1d:
72:ee:5c:33:88:9a:7e:65:73:1a:cb:d1:fb:9e:de:e4:f9:ae:
b9:28:74:a6:92:a5:12:4c:55:7d:df:dc:5d:b5:16:cf:57:f0:
1e:1f:07:ee:2b:cd:63:bf:fe:ed:ed:89:ee:38:99:d2:b5:45:
1f:85:64:80:f6:59:0e:7c:e6:24:a4:90:f5:a2:23:3a:5d:ec:
b3:72:58:63:b3:47:86:90:89:d3:07:78:ad:0d:06:d2:a6:32:
8d:94:1d:cc:e1:de:23:cb:f9:c7:74:55:5b:4e:89:9b:6f:c6:
6f:0d:8d:c4:12:ad:69:2f:af:6f:50:59:c2:a3:4b:d1:2d:8a:
ef:89:6d:8b:ac:1c:8c:82:b4:47:1c:c5:b7:de:d7:05:e0:08:
b7:c1:8e:21:22:65:c3:c7:36:50:2a:93:d4:84:2b:51:c3:21:
5f:b0:15:e1:9c:15:16:da:ce:cd:64:7e:80:15:ac:c6:ee:76:
7d:9f:68:d9:ee:05:00:91:bd:2b:31:55:6e:17:9b:34:23:9d:
66:9f:01:13:5b:03:64:3a:45:10:97:b3:bc:2f:c1:bd:c9:3b:
13:4d:a8:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:05:55 2025 by rpki-client