Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/k3fdDpRnYW1puGPAdZW3zJLrikc.roa
File: k3fdDpRnYW1puGPAdZW3zJLrikc.roa (raw, json)
Hash identifier: MOyen5FYTobn0i8+SVk1m2UVuxEMDB5mjZe5TTfdSCE=
Subject key identifier: 93:77:DD:0E:94:67:61:6D:69:B8:63:C0:75:95:B7:CC:92:EB:8A:47
Certificate issuer: /CN=c66266f466fb2498a39459b3352da25151a5a4c0
Certificate serial: 019423D7ACFC3D8187343C159698F58E4182
Authority key identifier: C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/k3fdDpRnYW1puGPAdZW3zJLrikc.roa
Signing time: Wed 01 Jan 2025 21:48:44 +0000
ROA not before: Wed 01 Jan 2025 21:48:44 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 31715
IP address blocks: 37.202.192.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:ac:fc:3d:81:87:34:3c:15:96:98:f5:8e:41:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66266f466fb2498a39459b3352da25151a5a4c0
Validity
Not Before: Jan 1 21:48:44 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9377dd0e9467616d69b863c07595b7cc92eb8a47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:84:46:38:23:64:ff:37:8d:0f:03:5b:7f:c1:
b3:c2:55:0f:39:fb:e7:c8:43:8d:fe:88:71:a3:5c:
74:ff:f4:67:86:72:2b:d6:20:62:f0:6a:e7:4c:89:
82:b1:a7:f3:f7:45:4f:db:a2:8b:c6:e1:16:09:ee:
d1:5e:79:16:50:9a:1b:7a:d4:15:37:7a:56:b2:b6:
f0:c0:5b:a0:ee:6b:30:b2:e9:1d:3a:73:ab:f9:e3:
0b:89:2e:2a:50:0a:f4:1a:71:29:5a:55:d8:ba:84:
33:08:f0:63:bf:2e:ec:84:61:36:7a:e8:c9:05:e9:
9b:47:c3:0f:d0:47:f6:45:43:24:e5:d2:f9:a7:02:
98:85:75:cb:4e:6d:d7:6f:65:10:7c:b3:a6:4d:14:
c7:21:3e:f0:d2:76:28:04:68:d5:a7:ec:81:b4:46:
09:7f:ed:ad:e6:e5:3e:71:cc:e0:44:12:4d:a8:8a:
c4:08:37:a6:fb:27:e4:90:8f:32:ed:55:32:85:68:
e5:39:5b:31:ca:bc:ce:68:f9:fe:b3:71:8f:ac:18:
c1:cb:85:16:f8:71:c9:8c:69:0a:eb:6a:e8:3f:bc:
b8:b5:82:fe:21:55:21:73:f2:c3:8a:4b:8e:cf:9c:
43:e8:03:7a:e7:e3:1d:18:43:52:cd:8e:e5:57:71:
a2:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:77:DD:0E:94:67:61:6D:69:B8:63:C0:75:95:B7:CC:92:EB:8A:47
X509v3 Authority Key Identifier:
keyid:C6:62:66:F4:66:FB:24:98:A3:94:59:B3:35:2D:A2:51:51:A5:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xmJm9Gb7JJijlFmzNS2iUVGlpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/k3fdDpRnYW1puGPAdZW3zJLrikc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/f43b1d-9e50-4551-ae6a-17b9de141252/1/xmJm9Gb7JJijlFmzNS2iUVGlpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.202.192.0/24
Signature Algorithm: sha256WithRSAEncryption
13:e1:0d:9b:05:da:bd:6d:41:04:3f:23:8b:06:04:15:11:f0:
ef:be:39:b7:64:32:59:4f:a2:e6:91:0a:6c:15:68:71:68:f7:
e3:7a:73:c9:49:40:fd:74:d3:e9:32:49:69:0a:59:ec:93:be:
80:0d:e8:c0:d5:86:50:45:3f:d9:cf:2c:94:f2:ae:a1:19:c9:
b8:d8:a1:c9:33:06:ce:c7:84:c4:60:e6:69:f7:94:42:fa:8c:
d4:a9:b0:82:0d:13:3b:22:c7:bc:c4:89:ab:70:c8:10:72:4e:
f2:14:1d:7a:42:e5:6b:c5:8e:06:37:81:98:9a:0c:26:71:96:
54:56:e0:75:02:76:43:e3:0e:eb:7d:c7:ae:7b:12:d9:02:3a:
57:78:91:bc:10:67:4a:1f:58:b9:ca:10:ca:24:9c:c3:e7:75:
59:30:d6:99:97:02:b9:09:0c:fc:58:a4:2f:c5:bc:92:ad:f8:
49:4d:b8:37:c8:34:3b:15:c6:76:a9:35:e8:6d:64:8c:0b:96:
85:88:28:b0:2f:86:52:04:15:cc:f0:13:a6:e0:80:c7:36:90:
92:08:53:8f:10:55:1d:26:f3:09:fb:61:77:b3:3a:58:bf:07:
5b:9a:ab:5c:a6:65:60:41:c4:10:6e:b3:04:14:d9:5e:b3:c3:
ed:59:ef:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 09:01:16 2025 by rpki-client