Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/LT_v7jlbksM5pIT-uQOXXNNLIiU.roa
File: LT_v7jlbksM5pIT-uQOXXNNLIiU.roa (raw, json)
Hash identifier: YAzLeC3T1nTobe5OBjU5HPXhiKLEmZ9zdQCf2yBHNZU=
Subject key identifier: 2D:3F:EF:EE:39:5B:92:C3:39:A4:84:FE:B9:03:97:5C:D3:4B:22:25
Certificate issuer: /CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Certificate serial: 01951976DD8B919124E8AC85FA447354157D
Authority key identifier: 52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/LT_v7jlbksM5pIT-uQOXXNNLIiU.roa
Signing time: Tue 18 Feb 2025 14:29:35 +0000
ROA not before: Tue 18 Feb 2025 14:29:35 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209372
IP address blocks: 78.136.254.0/24 maxlen: 24
78.136.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:19:76:dd:8b:91:91:24:e8:ac:85:fa:44:73:54:15:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=529c273098b52768ca0e44a3a2c16efed4a65ca0
Validity
Not Before: Feb 18 14:29:35 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d3fefee395b92c339a484feb903975cd34b2225
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:5f:4f:90:f9:8d:05:63:1f:02:9c:f3:34:84:
2d:4b:6c:33:6a:6b:e4:a1:5c:c3:5d:66:38:e8:83:
f5:6b:d1:13:7b:19:fd:d9:92:b6:39:13:0d:64:87:
db:46:fc:97:f7:97:29:fc:8d:d2:0b:6f:af:3c:3f:
33:09:0c:17:71:ea:7a:77:81:e5:0e:70:40:e2:3a:
d1:a1:47:fb:18:da:25:70:85:28:fd:83:5d:36:57:
b4:47:67:39:c6:30:f7:b2:46:c4:ec:95:df:f0:4f:
5a:2c:21:1f:68:ad:af:ec:f8:9c:c1:2a:63:06:02:
ba:4d:e9:a5:a7:57:4c:92:69:e9:7d:f8:ac:7c:d1:
85:5a:e9:e5:3b:a1:5d:3e:25:db:e6:5c:78:e8:f6:
e4:2e:40:10:98:29:5b:d6:02:4d:ce:e8:79:16:91:
8d:4b:2e:07:f1:28:fd:37:23:e6:e1:df:35:6b:b4:
96:65:9c:83:bd:bd:d9:07:eb:7e:69:94:a5:c0:b8:
af:8d:46:a3:8a:1a:03:73:3d:b9:5a:62:e7:0d:41:
bd:36:13:da:fb:9a:d2:61:e3:31:12:62:c3:fd:00:
2c:1e:a4:7f:16:b6:3f:4d:d1:87:57:57:9a:7e:2e:
96:06:7b:4f:86:84:85:f4:58:e0:c6:11:d3:e7:df:
c5:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:3F:EF:EE:39:5B:92:C3:39:A4:84:FE:B9:03:97:5C:D3:4B:22:25
X509v3 Authority Key Identifier:
keyid:52:9C:27:30:98:B5:27:68:CA:0E:44:A3:A2:C1:6E:FE:D4:A6:5C:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UpwnMJi1J2jKDkSjosFu_tSmXKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/LT_v7jlbksM5pIT-uQOXXNNLIiU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/6d9359-afef-4535-9c93-f33d3bb36484/1/UpwnMJi1J2jKDkSjosFu_tSmXKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.136.254.0/23
Signature Algorithm: sha256WithRSAEncryption
90:2c:75:b7:ec:18:5c:ef:29:9f:53:73:cc:81:74:ea:31:41:
70:34:37:fe:5f:36:3c:96:5b:a8:d3:92:1e:c6:fe:fc:ab:8e:
b3:f7:ed:f7:40:9d:7c:20:15:a6:e9:26:20:58:52:54:0c:ab:
6e:69:0f:87:10:34:ff:f3:03:17:21:5a:cb:59:3c:dd:45:24:
9a:5d:c5:4b:09:53:25:10:42:6e:fb:59:42:f3:a3:27:5a:99:
56:68:3c:2e:a9:69:30:ed:33:44:cd:b1:8c:0c:f9:57:44:90:
b3:d6:76:b8:9e:fa:7a:e8:c0:83:f6:c7:52:88:02:b4:0e:8e:
be:3c:35:27:ef:95:cf:90:4a:14:c5:64:39:e6:9d:7a:0c:89:
f8:c8:2e:e2:67:95:c7:bd:3c:31:18:c6:e1:ed:0c:75:87:7d:
a8:84:70:90:9b:c9:cb:cb:e3:1a:f8:6d:50:44:51:ed:2a:5d:
58:fc:85:1e:65:82:f9:5a:09:96:0d:8c:81:d2:9e:ef:e4:bd:
0e:c7:85:3f:4f:3a:be:5f:12:43:1d:ae:15:d1:19:91:6b:ef:
da:dd:58:b5:91:60:9c:76:bb:94:ef:f4:c6:90:99:12:e0:ff:
c0:5d:09:fb:05:fc:1a:f1:2b:7c:3a:54:05:0f:5d:ea:20:8f:
b9:06:a5:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 11:01:27 2025 by rpki-client