Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/LlMngn95TdQ9s1lobSIfFiaxwMc.roa
File: LlMngn95TdQ9s1lobSIfFiaxwMc.roa (raw, json)
Hash identifier: WeKn9zwaRRHjlRd4WIjiQWXgKdTTEMZ6BTo5nLZ3Ai4=
Subject key identifier: 2E:53:27:82:7F:79:4D:D4:3D:B3:59:68:6D:22:1F:16:26:B1:C0:C7
Certificate issuer: /CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Certificate serial: 0194266C3EB8AC5855642B1C2B4695F637B1
Authority key identifier: 31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/LlMngn95TdQ9s1lobSIfFiaxwMc.roa
Signing time: Thu 02 Jan 2025 09:50:15 +0000
ROA not before: Thu 02 Jan 2025 09:50:15 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42926
IP address blocks: 85.153.64.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6c:3e:b8:ac:58:55:64:2b:1c:2b:46:95:f6:37:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31a185d0eb0ca7811c586425de0e960e1cfeb61b
Validity
Not Before: Jan 2 09:50:15 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2e5327827f794dd43db359686d221f1626b1c0c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:0e:85:08:d2:3b:be:10:87:fb:fa:95:fe:13:
73:1b:94:1e:14:58:3d:03:b7:b1:e6:e0:5d:92:1f:
72:b2:89:be:24:8b:35:fa:0f:ea:66:78:be:1c:c2:
b5:a4:1e:88:5d:af:20:1a:52:d6:2d:96:45:91:d2:
31:f0:1f:cc:59:f9:66:1c:8f:ff:2d:c2:e6:f9:f4:
c3:01:1d:ba:e3:2e:7d:7b:c6:75:22:e3:9c:8a:51:
9e:62:72:90:4f:00:ab:c4:49:9c:f8:34:13:af:cb:
c4:83:eb:a7:ad:93:c7:0a:b9:ea:d5:b5:ab:db:fa:
66:12:c2:c7:86:90:f0:fe:1a:50:d9:2c:02:7d:69:
35:02:a8:89:fa:84:15:35:a3:f6:ab:d5:fb:16:cd:
05:06:43:5e:2b:2c:b7:58:7d:12:69:01:34:d1:b6:
a9:ef:61:2f:1b:ae:d5:ee:a9:4d:76:91:b5:bb:7d:
48:57:73:94:ba:df:84:85:a0:f9:a4:db:07:cb:cb:
ed:0e:75:87:eb:89:76:8e:49:1b:33:48:15:63:5e:
dd:41:aa:68:46:fe:c3:ca:16:64:51:67:8e:d9:3a:
e1:33:fb:43:e8:b7:1f:a5:32:1e:b4:6a:25:99:c5:
61:3c:3f:1b:d5:74:f4:51:f1:af:06:85:80:87:37:
44:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:53:27:82:7F:79:4D:D4:3D:B3:59:68:6D:22:1F:16:26:B1:C0:C7
X509v3 Authority Key Identifier:
keyid:31:A1:85:D0:EB:0C:A7:81:1C:58:64:25:DE:0E:96:0E:1C:FE:B6:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MaGF0OsMp4EcWGQl3g6WDhz-ths.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/LlMngn95TdQ9s1lobSIfFiaxwMc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/081c6e-1d65-4ccd-96f5-1dcc86c11e74/1/MaGF0OsMp4EcWGQl3g6WDhz-ths.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.153.64.0/24
Signature Algorithm: sha256WithRSAEncryption
74:49:8e:4b:4f:c8:c1:e2:63:12:15:95:24:72:90:c5:ac:e5:
b0:9b:4a:22:44:d8:bd:08:bf:ba:04:e5:74:f5:6c:9c:4e:b6:
0e:23:74:91:df:89:e3:f8:74:4b:42:3e:b8:ca:fc:70:89:e8:
b4:f5:00:c9:d5:6b:ae:67:6d:5a:6b:52:fe:e8:d9:d1:32:c7:
65:f7:9f:c6:6c:0c:ed:99:76:0b:cf:0e:96:3f:49:7d:6a:8b:
af:b7:59:a1:6e:3f:36:d2:6b:86:96:fc:9e:a0:ff:c3:8f:19:
35:cf:8e:48:82:4c:f0:ef:18:c0:7b:f3:1f:a3:97:cc:65:36:
d0:bc:12:63:93:69:8a:d4:3b:15:bd:a1:52:48:c0:cc:c2:eb:
ce:05:95:57:7f:6c:bf:59:ce:35:6d:cc:51:81:af:c7:72:e1:
d6:14:51:32:15:2c:a3:ab:ab:c5:1d:cf:74:9c:35:a9:d7:d3:
d4:f0:5f:c0:36:74:39:08:93:cf:84:3d:3a:35:34:b2:2c:e5:
76:cb:6e:09:17:81:43:f3:82:33:70:71:00:fa:14:ce:75:f9:
2d:c9:a5:01:ec:12:8b:7b:a4:d0:cb:3b:64:1e:32:75:2c:b2:
3c:cd:40:72:be:75:bf:03:6b:c2:d0:7a:08:6e:6c:55:4a:95:
c4:73:9c:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:05:29 2025 by rpki-client