Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/OsTSkCOxPbkeHMOmTXfsLMS7woc.roa
File: OsTSkCOxPbkeHMOmTXfsLMS7woc.roa (raw, json)
Hash identifier: h+L9av8bXXKsaSR0XEI7iXB1ecuqXKwYJToOJUYyey4=
Subject key identifier: 3A:C4:D2:90:23:B1:3D:B9:1E:1C:C3:A6:4D:77:EC:2C:C4:BB:C2:87
Certificate issuer: /CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Certificate serial: 019423D6D0CE493AA4C6D57E8DD7AFEFACF6
Authority key identifier: 49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/OsTSkCOxPbkeHMOmTXfsLMS7woc.roa
Signing time: Wed 01 Jan 2025 21:47:48 +0000
ROA not before: Wed 01 Jan 2025 21:47:48 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 81.29.152.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d6:d0:ce:49:3a:a4:c6:d5:7e:8d:d7:af:ef:ac:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49e51694c4d46b4fcc02fae71e5db942a7108e47
Validity
Not Before: Jan 1 21:47:48 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=3ac4d29023b13db91e1cc3a64d77ec2cc4bbc287
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:6d:e0:bc:96:f5:8f:0f:29:dd:f3:83:a8:3b:
8d:55:9c:ce:7c:69:47:f4:c2:6e:da:43:02:fc:3b:
bf:d9:54:8b:6a:37:13:9e:ae:71:6d:2f:99:e1:f1:
48:ec:9b:c4:75:a3:bd:1d:ec:a2:9c:f4:1c:b0:58:
86:91:f6:92:3c:06:34:f4:8b:96:16:ae:77:e1:74:
01:80:ad:53:9b:7f:df:39:02:2a:0c:fa:39:71:a5:
9a:80:24:83:db:9c:39:4e:52:46:90:dc:07:42:8b:
68:ed:a1:83:e3:1c:09:03:1b:ad:b2:f5:ab:53:87:
13:7d:34:f5:f0:49:45:1e:d9:58:c3:20:93:08:5c:
f6:1f:6f:23:f6:90:9d:d2:b7:88:b5:8a:4d:ad:be:
24:b0:56:c5:60:92:f4:ec:1f:50:9a:25:b1:e5:72:
6d:9d:5a:ad:82:ef:87:f1:ad:8e:50:45:10:6e:bf:
c6:3b:fe:49:ad:04:45:36:ba:6b:f7:54:31:26:5a:
58:0b:c5:7b:80:30:8b:d8:ec:1b:3e:44:f0:78:41:
9a:d7:0c:e2:94:5e:ab:19:72:eb:3b:83:08:71:31:
91:b6:77:7a:b1:0d:92:52:e2:61:fb:58:30:ac:30:
52:30:d9:1c:f9:29:71:71:9c:19:b0:40:ff:b3:46:
9b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:C4:D2:90:23:B1:3D:B9:1E:1C:C3:A6:4D:77:EC:2C:C4:BB:C2:87
X509v3 Authority Key Identifier:
keyid:49:E5:16:94:C4:D4:6B:4F:CC:02:FA:E7:1E:5D:B9:42:A7:10:8E:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeUWlMTUa0_MAvrnHl25QqcQjkc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/OsTSkCOxPbkeHMOmTXfsLMS7woc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/9db525-1059-4c07-a5ad-19189b3c9c7d/1/SeUWlMTUa0_MAvrnHl25QqcQjkc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.29.152.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:ac:57:a2:1d:89:d7:a8:2c:43:3d:53:3c:0a:9d:6f:e6:a4:
8e:64:65:fa:f2:e4:e3:4d:83:54:f6:e6:18:aa:eb:ea:c6:06:
4a:3a:95:c3:d2:5a:fd:d7:53:46:af:e5:01:b4:68:15:64:04:
ad:16:7b:66:81:0c:75:ef:54:14:93:f0:f7:3d:ba:bf:5c:2a:
a6:5b:16:3d:fe:01:1b:dd:90:2e:07:ef:55:d8:9e:97:5b:db:
f2:af:2e:4a:39:f2:22:be:60:1e:ee:9a:97:95:c5:25:d5:08:
39:5f:fa:b0:0d:fd:3d:5b:cf:4a:0c:d0:56:dc:da:10:bc:d4:
83:90:b2:7f:d6:1c:1e:9c:e2:54:39:49:fe:31:e8:91:a6:89:
bc:58:98:06:50:a5:e3:84:7e:c5:4e:dc:56:de:ee:47:98:a1:
3e:b4:99:54:95:24:cd:ec:9b:a0:0f:89:d1:ae:b1:0a:df:d0:
ef:80:ba:3a:bd:97:5e:e7:ce:2b:2e:83:17:63:6e:f3:3e:2e:
63:c6:2c:e6:4f:51:24:46:94:3a:aa:93:fd:35:8b:0a:85:55:
81:21:c2:d7:8e:d6:5c:5e:83:c6:cf:b6:a1:ef:81:39:d4:cd:
26:12:db:5b:7f:94:59:5f:c9:be:af:b1:63:ad:f1:8b:55:1e:
ac:10:8a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:56:51 2025 by rpki-client