Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/15WXUl6AdHYJKCI04ETxyKrK4XI.roa
File: 15WXUl6AdHYJKCI04ETxyKrK4XI.roa (raw, json)
Hash identifier: feuAYUw4uTrmdzmHj+v5tbEK3tbUZlUayLhfwNwKARg=
Subject key identifier: D7:95:97:52:5E:80:74:76:09:28:22:34:E0:44:F1:C8:AA:CA:E1:72
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 0194236A58A6C030C2B84AB80FD8378BE745
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/15WXUl6AdHYJKCI04ETxyKrK4XI.roa
Signing time: Wed 01 Jan 2025 19:49:19 +0000
ROA not before: Wed 01 Jan 2025 19:49:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 1145
IP address blocks: 145.97.32.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:6a:58:a6:c0:30:c2:b8:4a:b8:0f:d8:37:8b:e7:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 19:49:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=d79597525e80747609282234e044f1c8aacae172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:43:73:81:d6:d3:1d:e8:55:75:40:5a:91:9d:
62:1a:29:cd:46:52:07:03:78:79:97:03:60:e2:15:
72:35:a5:b1:14:14:10:b4:5a:3f:61:90:bb:39:53:
66:97:b4:ef:f6:fb:99:8e:78:b9:f2:d8:47:34:67:
eb:74:2b:5a:86:22:f1:33:c0:22:3f:19:3a:12:1b:
61:7c:db:b5:dd:99:43:c7:0e:58:76:69:b0:aa:df:
ca:38:1d:79:d1:ee:f6:c5:6a:cd:66:af:d7:e6:f9:
22:87:8c:6c:99:d4:56:e0:11:d2:db:2e:40:25:d6:
61:2e:eb:6e:66:be:94:6f:a8:b4:66:b3:63:c1:f1:
80:da:72:2d:cd:02:40:d1:1c:cd:50:15:6d:fd:93:
88:ac:c0:65:92:31:44:51:9d:da:03:4e:6d:a8:00:
53:f0:8b:39:04:71:82:cc:6c:51:d5:b5:7b:38:b8:
1c:4a:3d:3f:c2:5b:fd:84:23:0b:68:a0:ab:dd:30:
95:cb:bc:75:49:56:01:73:a3:20:0d:f0:dd:d3:e3:
a1:32:5a:63:77:fe:a8:4f:73:db:60:60:7e:3c:8f:
15:d1:21:b2:7d:3f:d9:af:f4:88:c4:3e:35:87:9a:
92:ee:11:d7:b2:12:f3:ac:c5:0b:f2:7f:14:39:50:
d2:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:95:97:52:5E:80:74:76:09:28:22:34:E0:44:F1:C8:AA:CA:E1:72
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/15WXUl6AdHYJKCI04ETxyKrK4XI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.97.32.0/20
Signature Algorithm: sha256WithRSAEncryption
06:f0:6d:ca:ee:0f:4e:a8:1c:7c:ad:ed:2d:84:af:d4:1d:b2:
c4:35:ff:d7:92:b2:9f:94:74:5f:34:f7:0e:27:e8:b1:7a:0c:
a4:ab:7a:c2:4e:82:e7:cd:06:ea:3c:7b:d5:46:6e:47:69:b5:
1d:27:51:79:3b:5c:7d:38:5e:00:9f:8f:b1:98:33:d6:6b:aa:
d7:6b:0c:50:b7:25:ef:ba:8f:9e:78:e2:bf:1d:80:7d:f5:bb:
20:db:13:c1:f6:9a:29:a4:ba:6d:b5:d0:27:cc:87:e1:43:9a:
06:d6:e0:00:e3:41:64:00:7f:95:5d:c9:fe:e7:e0:55:2d:91:
0a:86:b2:ac:fc:b0:ac:85:ea:60:ff:ac:a6:58:1e:d5:9a:6e:
bb:bb:d6:35:f5:cb:4e:56:94:c0:1f:75:3f:fe:5d:a8:d7:f6:
13:5c:66:3a:06:b7:86:52:28:05:49:1a:17:61:a3:e3:d6:49:
fb:09:04:56:96:56:a6:52:48:ee:7c:c9:5e:30:d0:0a:e6:1c:
cd:38:ba:92:54:d5:dd:58:c3:97:c5:22:5c:3b:6b:f0:b8:9d:
8c:b0:fc:af:3d:11:f0:04:04:37:b9:d2:98:84:46:a5:91:c0:
d8:ef:6a:2c:d2:74:0f:99:05:62:13:2c:6e:81:44:df:19:6d:
6f:3a:7c:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:18:10 2025 by rpki-client