Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/iaXlFRrI8KKJMLLeIoBSqpBpQIo.roa
File: iaXlFRrI8KKJMLLeIoBSqpBpQIo.roa (raw, json)
Hash identifier: 54GlqL4rs+p8carMe+XhbOKALL4tr9ohV2MA6fD114s=
Subject key identifier: 89:A5:E5:15:1A:C8:F0:A2:89:30:B2:DE:22:80:52:AA:90:69:40:8A
Certificate issuer: /CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Certificate serial: 019421B21C8130595CA181E703A0AC32C6C0
Authority key identifier: 54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/iaXlFRrI8KKJMLLeIoBSqpBpQIo.roa
Signing time: Wed 01 Jan 2025 11:48:28 +0000
ROA not before: Wed 01 Jan 2025 11:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 50551
IP address blocks: 81.15.157.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:1c:81:30:59:5c:a1:81:e7:03:a0:ac:32:c6:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=546834e68890f3986a1b0457ce0f54ae03c2d76b
Validity
Not Before: Jan 1 11:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=89a5e5151ac8f0a28930b2de228052aa9069408a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:37:f3:d6:10:73:59:88:7d:3a:d2:a3:78:31:
23:44:1e:75:f3:53:33:7f:fe:10:f3:1a:f9:4c:ee:
f5:49:25:e8:ec:ab:ca:9b:b9:66:bb:28:ec:28:2f:
62:f6:2d:12:64:9e:29:d5:3d:de:03:ff:4d:31:f4:
5c:7a:0e:8b:75:f3:89:03:16:f9:c0:5a:d1:fb:f6:
55:b0:91:a7:c6:d7:6f:af:85:87:62:0f:ca:0c:0c:
86:e6:24:61:36:44:fa:a0:5a:43:28:a7:c6:ba:a4:
20:97:87:93:d9:98:ae:7e:58:71:24:49:ea:5d:84:
a5:f0:44:07:10:d9:a2:73:46:3b:4f:a4:9b:87:e7:
1e:00:2e:58:43:90:b2:de:b3:4a:23:d4:e9:43:74:
b0:3b:e9:bb:ae:c6:ff:00:d4:11:c1:da:90:00:56:
c9:db:1f:a7:43:4e:e1:69:69:1d:6e:3d:87:ff:88:
bf:3a:c3:01:5b:d2:15:2a:57:99:de:9f:ea:bd:7f:
e8:cf:ad:49:ac:ac:10:29:fa:c6:41:5c:6b:9f:18:
1d:c5:b5:3e:5e:d0:19:1c:35:6a:4f:16:cc:99:70:
94:2e:92:18:ec:6a:aa:07:43:4f:14:39:e1:eb:a5:
7f:a0:52:24:cb:19:fd:a9:2c:1f:af:54:ad:e0:9a:
b3:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:A5:E5:15:1A:C8:F0:A2:89:30:B2:DE:22:80:52:AA:90:69:40:8A
X509v3 Authority Key Identifier:
keyid:54:68:34:E6:88:90:F3:98:6A:1B:04:57:CE:0F:54:AE:03:C2:D7:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGg05oiQ85hqGwRXzg9UrgPC12s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/iaXlFRrI8KKJMLLeIoBSqpBpQIo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5f2f0b-fd82-44fa-b634-52766b24baa4/1/VGg05oiQ85hqGwRXzg9UrgPC12s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.15.157.0/24
Signature Algorithm: sha256WithRSAEncryption
32:04:4c:d5:cb:44:3c:12:d7:5c:29:ab:1f:02:8d:fe:92:09:
6c:35:44:ab:20:27:9b:b7:21:02:95:f0:35:60:9d:59:06:26:
88:3e:27:2f:23:6e:9c:95:df:24:1e:b8:cf:36:fb:1f:72:ee:
a2:e8:19:b0:47:fd:c9:93:dc:9f:9f:a3:2f:6c:ab:f2:0b:96:
fc:45:38:2f:a6:4b:b7:3b:d2:36:5d:70:ba:58:ca:9b:77:21:
e7:c9:3b:3e:5c:7f:63:9f:25:4b:ba:26:97:9d:dc:0a:d5:66:
1c:03:0b:02:5e:08:00:7b:80:c3:91:df:46:7f:9c:96:f1:83:
47:c1:89:af:8f:5f:96:9c:8a:52:ef:74:5a:9f:55:12:69:19:
7c:c2:88:34:36:f2:cc:14:91:e8:7b:71:ac:f1:0d:d9:ae:4c:
3c:8f:a2:dc:2d:ea:f9:5c:e9:5c:69:22:0d:7f:22:f6:06:f2:
95:66:2c:ba:fa:99:d4:81:6c:74:b9:79:58:5c:6c:57:a2:64:
79:8c:23:dc:5c:bd:87:3d:67:0d:37:4e:e6:81:36:0d:d1:42:
09:8e:4a:88:f9:07:40:b2:c6:70:fe:71:0b:03:72:e2:08:16:
87:e2:fd:76:7a:5e:8c:12:f4:f1:35:cd:25:0d:ef:b4:e9:82:
10:10:55:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:03:48 2025 by rpki-client