Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/DaFBPQjNIt89bZ-zjtkqkYfP25s.roa
File: DaFBPQjNIt89bZ-zjtkqkYfP25s.roa (raw, json)
Hash identifier: pp9Ceedlj+qqJJCfZTMjKuHvEOYjJEHNhnFxlngbiSQ=
Subject key identifier: 0D:A1:41:3D:08:CD:22:DF:3D:6D:9F:B3:8E:D9:2A:91:87:CF:DB:9B
Certificate issuer: /CN=c1098a1905bbd3381533828f6b7fd227170431ef
Certificate serial: 0194221FE4FBD4D6CA52E7CAB36D5954C02F
Authority key identifier: C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/DaFBPQjNIt89bZ-zjtkqkYfP25s.roa
Signing time: Wed 01 Jan 2025 13:48:23 +0000
ROA not before: Wed 01 Jan 2025 13:48:23 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20940
IP address blocks: 109.230.127.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:e4:fb:d4:d6:ca:52:e7:ca:b3:6d:59:54:c0:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1098a1905bbd3381533828f6b7fd227170431ef
Validity
Not Before: Jan 1 13:48:23 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0da1413d08cd22df3d6d9fb38ed92a9187cfdb9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d9:0a:2e:74:d2:25:da:f9:b3:42:f6:98:63:
52:e5:4c:4f:fc:f3:d6:d7:8d:63:7f:e9:e1:c4:7c:
bb:5e:58:20:7d:a5:88:6f:8f:e5:b4:b7:c3:f1:79:
6c:8b:a1:7d:7a:7c:18:dd:13:2c:a3:88:c9:8f:8c:
80:5e:90:29:d1:2d:19:30:72:65:3c:57:57:50:18:
c1:ee:a5:07:e5:e0:0b:73:4f:13:70:1a:ed:b3:87:
c4:c3:a5:e5:2d:e8:f3:35:aa:87:1b:ad:fb:59:41:
28:c0:08:84:b8:bd:60:8c:29:df:2f:af:d4:62:34:
b6:79:e8:d1:0c:97:e4:5f:3b:5a:7d:96:a5:b5:95:
ff:e9:d9:5c:ec:7c:df:7d:57:2b:11:a0:5c:27:e5:
36:6a:46:9f:98:42:74:15:be:2d:1c:7c:5e:08:8e:
f3:65:4d:8a:ed:fe:2c:81:16:3d:7c:4a:9c:43:a5:
d7:06:a5:15:55:09:e5:72:38:10:ad:e3:2d:8b:37:
fb:c5:c6:0a:05:ef:b4:70:20:28:fa:73:68:87:c3:
33:91:cc:8e:a9:c9:a6:15:74:e9:a6:48:c2:74:da:
ce:2b:0f:56:39:58:0a:1a:b8:96:75:f7:cd:76:04:
ac:b0:ee:85:18:bd:d1:c7:0a:f9:2d:58:66:d5:e3:
f0:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:A1:41:3D:08:CD:22:DF:3D:6D:9F:B3:8E:D9:2A:91:87:CF:DB:9B
X509v3 Authority Key Identifier:
keyid:C1:09:8A:19:05:BB:D3:38:15:33:82:8F:6B:7F:D2:27:17:04:31:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wQmKGQW70zgVM4KPa3_SJxcEMe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/DaFBPQjNIt89bZ-zjtkqkYfP25s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2eed71-4665-4948-a3c5-b2a713d2eab2/1/wQmKGQW70zgVM4KPa3_SJxcEMe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
109.230.127.0/24
Signature Algorithm: sha256WithRSAEncryption
95:66:92:7d:9e:34:13:4d:77:a2:58:cb:97:4d:a8:22:6e:18:
1c:30:b3:3a:7d:7c:df:49:33:a7:4a:14:80:11:ca:17:d2:ea:
05:0c:59:b6:08:d7:c6:a7:40:06:8a:93:54:e2:28:74:14:39:
84:d6:08:3c:cc:2c:f1:ca:d7:0e:73:d5:87:bc:2e:bd:3a:3b:
62:82:72:26:f0:a2:6a:be:52:ae:12:35:ee:89:bb:b8:9a:6f:
3b:54:a2:cf:04:2f:a4:7a:48:66:bc:15:87:c2:67:e5:13:73:
7c:9a:f6:1d:91:9d:f8:14:ce:39:ba:9f:2a:b9:f3:0e:cb:ba:
fe:e5:54:b6:8f:7d:95:67:bb:89:92:70:fd:f0:00:ae:c8:c3:
28:f6:9f:bb:b5:98:9f:29:8c:a2:79:43:ee:93:1a:18:c1:3e:
32:f0:01:f1:8a:70:a1:4c:f2:01:7d:4c:44:2e:b6:b5:79:b3:
c2:c1:17:4c:9b:a3:4e:26:87:98:fb:72:70:ba:6e:89:aa:68:
50:7d:93:1e:e0:b7:89:44:00:1c:f7:8b:b8:50:7c:55:07:b3:
32:29:b8:41:44:bf:fb:5e:a3:af:ea:02:db:13:62:60:ec:fd:
45:1d:ed:dc:5c:1d:b9:5f:87:88:80:27:2b:e7:c8:15:db:3a:
e2:a3:34:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 16:39:46 2025 by rpki-client