Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/WcnQeBZnyIPg0Av2s_I_llGygHs.roa
File: WcnQeBZnyIPg0Av2s_I_llGygHs.roa (raw, json)
Hash identifier: Dq5zk/jAoYBuv5Tgz8X8LmBRCz1+QBSsxyCCAC/Dhgg=
Subject key identifier: 59:C9:D0:78:16:67:C8:83:E0:D0:0B:F6:B3:F2:3F:96:51:B2:80:7B
Certificate issuer: /CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Certificate serial: 019500A49C1E592FDB0DF87E32B4AD5B1ECA
Authority key identifier: 62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/WcnQeBZnyIPg0Av2s_I_llGygHs.roa
Signing time: Thu 13 Feb 2025 18:49:02 +0000
ROA not before: Thu 13 Feb 2025 18:49:02 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 198037
IP address blocks: 141.105.143.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:00:a4:9c:1e:59:2f:db:0d:f8:7e:32:b4:ad:5b:1e:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62a15cc88659f578cc159c52b3a7e9ec5819fb20
Validity
Not Before: Feb 13 18:49:02 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=59c9d0781667c883e0d00bf6b3f23f9651b2807b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c0:b4:61:b6:08:dd:a0:2d:06:93:31:60:9b:
da:2c:b5:23:d1:41:3f:89:7f:d6:cd:0d:6b:4d:a4:
60:46:48:be:b4:e0:39:20:df:32:32:d9:b3:6a:f3:
f4:68:3b:93:19:43:8c:76:c3:9a:5e:26:c5:28:70:
b2:c8:2f:af:45:f6:2e:db:c4:cd:40:ce:4a:7d:dd:
94:fb:69:dc:d3:fe:f6:e7:f8:0a:88:6d:68:3e:59:
96:a8:e6:7b:ee:a5:8c:0b:02:1c:c5:37:af:90:c6:
62:ed:09:79:8f:bd:51:e7:91:84:81:1b:df:8a:dc:
1c:55:4b:58:58:4e:ab:59:d8:39:a4:b8:8f:34:0b:
d7:5a:de:23:e6:01:15:a7:e2:6a:2c:23:db:8a:40:
52:bb:80:d7:f0:ae:f5:dc:21:2d:4d:82:4f:87:52:
e9:8e:9b:2c:02:d8:76:4d:0d:a5:b9:5f:d1:5d:83:
ac:f1:1f:e9:b0:17:ab:9d:d4:15:9d:c6:ca:fe:78:
fd:00:fb:17:7b:8d:29:7b:59:6a:0e:dd:fb:c1:e8:
01:44:01:bb:fb:51:cb:94:ad:90:eb:2c:ee:5a:37:
b7:01:d9:d3:d5:c3:d8:03:12:eb:52:30:64:48:47:
d7:33:25:ef:ac:dc:80:a7:61:0c:cf:8f:4e:c4:11:
90:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:C9:D0:78:16:67:C8:83:E0:D0:0B:F6:B3:F2:3F:96:51:B2:80:7B
X509v3 Authority Key Identifier:
keyid:62:A1:5C:C8:86:59:F5:78:CC:15:9C:52:B3:A7:E9:EC:58:19:FB:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/WcnQeBZnyIPg0Av2s_I_llGygHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/2117bc-1f9e-4590-a550-4269b56bf7d4/1/YqFcyIZZ9XjMFZxSs6fp7FgZ-yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.105.143.0/24
Signature Algorithm: sha256WithRSAEncryption
be:01:20:37:22:a1:b1:09:44:f2:e1:37:3e:a9:11:b3:ae:5c:
97:3e:8c:ab:e1:f2:df:29:a4:af:7f:6a:46:cf:a4:eb:32:26:
57:1e:38:d1:d4:c4:4b:7e:dd:14:a8:cb:e1:f6:d9:9e:4e:6d:
97:ad:0b:3e:9b:5d:ae:49:f4:3f:2e:72:7a:de:2f:e9:9a:30:
4a:82:44:11:d1:ba:37:ae:d7:40:05:4f:ea:7b:13:34:17:54:
c6:e5:08:48:85:f4:0d:17:18:7e:12:c6:a4:e4:06:08:c4:0c:
e5:76:6f:82:44:ab:46:54:35:a4:d0:5c:79:67:2d:5e:8b:4d:
a9:f9:46:7e:73:73:d4:69:79:f5:89:7e:f7:bb:e0:b1:80:44:
ac:03:78:04:25:24:44:a9:10:c0:28:e4:3b:28:73:18:7d:44:
45:e8:06:38:34:0e:99:6c:cd:87:3e:59:50:ab:92:98:34:ac:
71:6b:98:aa:df:21:2a:e3:6e:43:d6:4a:13:f0:41:01:1a:84:
f2:63:dd:ec:ea:45:28:8a:59:69:72:1e:cd:9f:a9:78:c3:00:
33:27:fd:af:9f:8d:48:68:85:8c:a5:bf:d0:39:3f:88:9b:2a:
83:20:52:55:f8:82:50:91:a7:0c:4b:e3:8e:02:0c:ed:47:3c:
b2:ad:5c:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 08:57:58 2025 by rpki-client