Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/h5PaRgM307hqtEFfEYISFFUKfRk.roa
File: h5PaRgM307hqtEFfEYISFFUKfRk.roa (raw, json)
Hash identifier: 5VYSYvH6VutgCyGn0dCMKEGsKO0fFDgxtabJAAFlxNo=
Subject key identifier: 87:93:DA:46:03:37:D3:B8:6A:B4:41:5F:11:82:12:14:55:0A:7D:19
Certificate issuer: /CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Certificate serial: 019423699B9534F1AF645424E1F929088B41
Authority key identifier: F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/h5PaRgM307hqtEFfEYISFFUKfRk.roa
Signing time: Wed 01 Jan 2025 19:48:31 +0000
ROA not before: Wed 01 Jan 2025 19:48:31 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49496
IP address blocks: 86.104.18.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:69:9b:95:34:f1:af:64:54:24:e1:f9:29:08:8b:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8e62634e1bd5133a9de4512ae98cad1b2219b59
Validity
Not Before: Jan 1 19:48:31 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8793da460337d3b86ab4415f11821214550a7d19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:42:ee:fd:b0:bf:d0:05:59:6e:cc:dd:cf:03:
d9:85:de:cf:fc:58:7e:38:39:24:18:a4:2e:01:0e:
c4:5e:50:06:ff:8b:55:ef:97:4d:6e:e0:65:c9:2e:
ed:47:44:42:af:3e:ac:ee:5a:73:f9:2d:20:cb:56:
67:bc:1b:d2:c2:e9:dc:04:4d:1d:ad:eb:74:7a:72:
24:90:54:27:21:0a:77:62:d4:36:d4:b7:04:3b:2d:
aa:f8:d1:ee:bd:ad:bc:56:16:1d:ed:5c:65:c0:dd:
c9:7d:fe:f3:c0:d5:27:cf:2b:85:5a:6e:3a:29:6a:
86:fa:8e:3e:d2:4e:5d:ff:54:5f:ef:c8:31:5e:21:
ec:df:7e:d2:3d:17:5d:b3:e4:2e:48:7e:b9:5f:e4:
31:4c:00:32:dd:5f:2b:17:9c:09:d1:cf:9d:85:b5:
cd:a8:67:9b:f6:6b:9f:61:f8:31:44:19:53:13:94:
8e:4b:dc:ff:8a:aa:d9:32:6e:3c:ad:a7:7d:70:0e:
a4:54:cb:03:c0:28:d4:e8:64:2b:29:5b:96:c9:8d:
7e:54:e6:1a:f3:99:b7:66:49:7e:03:46:0d:8a:b4:
d0:c5:6f:fa:b6:7a:4b:04:28:d9:e5:23:10:0e:ff:
c3:51:8c:51:2f:90:c0:28:7a:6e:d9:fc:bc:d8:76:
e7:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:93:DA:46:03:37:D3:B8:6A:B4:41:5F:11:82:12:14:55:0A:7D:19
X509v3 Authority Key Identifier:
keyid:F8:E6:26:34:E1:BD:51:33:A9:DE:45:12:AE:98:CA:D1:B2:21:9B:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/h5PaRgM307hqtEFfEYISFFUKfRk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/da3398-6698-45f2-baae-92e25fe16331/1/1-OYmNOG9UTOp3kUSrpjK0bIhm1k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
86.104.18.0/24
Signature Algorithm: sha256WithRSAEncryption
84:00:37:f7:97:14:f6:f1:bc:01:93:d8:98:dc:f4:6f:1e:b4:
3f:50:29:30:3e:d7:59:c1:eb:a5:e9:a9:39:d1:97:94:61:75:
b3:ea:31:c1:64:ba:89:17:75:59:36:04:4b:40:8a:32:47:5e:
97:c7:ba:15:d8:bc:ce:97:e0:42:65:3f:5d:a4:a1:b4:7d:0b:
7d:05:71:fd:fe:0e:01:ce:ef:fb:f7:cf:5c:9c:b8:62:d0:f6:
e1:df:b5:35:19:df:fd:3e:12:b1:97:9c:5c:26:b6:98:02:fb:
b2:19:2a:1d:2c:b7:3a:5e:93:c3:dc:1a:fb:66:d5:26:6e:25:
37:c1:65:d5:36:39:b1:10:dc:b7:9b:c1:5a:b6:1f:63:99:49:
55:9a:cf:0c:05:13:fd:d4:b1:9b:00:31:f5:c4:b9:6e:96:dc:
21:88:4b:31:63:19:7f:cc:cd:f0:19:c0:2c:7b:46:00:5e:4a:
ac:a2:8c:3d:ba:51:8d:38:b2:08:c6:e7:01:bf:dc:4b:e7:62:
71:f4:7e:ee:63:ee:b9:9a:7c:19:85:e3:89:40:02:1c:11:9d:
5a:ab:d1:5c:16:d2:8f:59:b4:fa:ad:ee:1c:ca:0d:11:a3:d6:
c3:60:a1:8a:e6:16:cd:b6:d1:fc:f4:1a:a5:a9:36:e0:0f:ce:
29:9d:9d:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:34:05 2025 by rpki-client