Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/324f05-9a07-44cb-8709-0a19518f7358/1/TtgXDHT5SYgDWrs1BGZsJbNwZCg.roa
File: TtgXDHT5SYgDWrs1BGZsJbNwZCg.roa (raw, json)
Hash identifier: AH8hajWHExSCyDyymt8BHEJ7id1FRQKRGX3EZvXLrlM=
Subject key identifier: 4E:D8:17:0C:74:F9:49:88:03:5A:BB:35:04:66:6C:25:B3:70:64:28
Certificate issuer: /CN=bc3a252a8fcca0361da234a4f3ddb957789d0e55
Certificate serial: 019425FDCDA892690B52D4E5600E09CCE08C
Authority key identifier: BC:3A:25:2A:8F:CC:A0:36:1D:A2:34:A4:F3:DD:B9:57:78:9D:0E:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vDolKo_MoDYdojSk8925V3idDlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/324f05-9a07-44cb-8709-0a19518f7358/1/TtgXDHT5SYgDWrs1BGZsJbNwZCg.roa
Signing time: Thu 02 Jan 2025 07:49:37 +0000
ROA not before: Thu 02 Jan 2025 07:49:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 212.96.150.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fd:cd:a8:92:69:0b:52:d4:e5:60:0e:09:cc:e0:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc3a252a8fcca0361da234a4f3ddb957789d0e55
Validity
Not Before: Jan 2 07:49:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4ed8170c74f94988035abb3504666c25b3706428
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d5:4d:e6:82:0d:f7:6a:86:c6:6d:40:af:dd:
b9:92:b4:04:11:dd:2f:85:be:ee:20:b7:d5:10:ff:
48:4f:cd:60:51:c5:3e:be:16:e9:8a:08:b1:2f:c1:
a2:05:9b:aa:c4:c9:d8:22:55:9a:2f:3e:da:09:31:
74:d9:98:01:4d:93:29:02:ee:6f:14:d3:0d:6f:fb:
c3:2b:99:3d:68:c6:f6:eb:91:fb:0f:1c:88:f3:95:
e7:29:b4:2b:11:1b:45:92:85:73:b4:7f:c4:57:18:
e2:88:40:46:02:59:39:52:7f:b3:ef:06:2a:72:cf:
d5:eb:18:cf:05:fc:4b:58:9b:5e:d0:ed:4d:9c:3c:
bb:bf:e1:b6:60:22:ad:c6:24:17:5f:57:9f:1c:c2:
07:5e:36:c7:b8:f2:8a:78:4d:26:7e:80:a4:d7:61:
5d:b4:69:a2:0e:ff:ab:82:3d:21:00:61:6c:ae:86:
e4:de:08:43:b7:6d:9e:09:1d:a8:1c:be:ae:1e:6d:
f3:f1:66:96:f3:26:77:5d:1d:1b:14:65:34:ac:a9:
ab:e8:75:f3:23:f9:ec:1a:54:88:cd:b2:73:1a:73:
1e:02:59:a2:01:a2:fa:c7:8a:78:b2:13:9b:ff:bb:
47:7f:cf:f3:25:56:c5:2a:98:a2:1a:77:24:b6:c7:
35:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:D8:17:0C:74:F9:49:88:03:5A:BB:35:04:66:6C:25:B3:70:64:28
X509v3 Authority Key Identifier:
keyid:BC:3A:25:2A:8F:CC:A0:36:1D:A2:34:A4:F3:DD:B9:57:78:9D:0E:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vDolKo_MoDYdojSk8925V3idDlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/324f05-9a07-44cb-8709-0a19518f7358/1/TtgXDHT5SYgDWrs1BGZsJbNwZCg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/324f05-9a07-44cb-8709-0a19518f7358/1/vDolKo_MoDYdojSk8925V3idDlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.96.150.0/23
Signature Algorithm: sha256WithRSAEncryption
33:45:1b:d6:96:e4:d1:e2:ec:44:83:59:2f:0f:ce:f6:b4:a0:
88:37:8e:c2:15:57:4e:f6:55:a2:0e:85:82:6e:a5:15:88:ac:
59:95:d4:a5:00:36:8a:cc:a0:a9:40:4a:07:83:92:c1:34:b6:
1b:86:aa:f2:2a:c7:6d:ab:de:ad:25:20:6f:7b:ba:11:6c:51:
a7:6e:fd:99:73:87:c4:c9:58:ad:5d:c8:88:65:d4:3a:5f:f6:
57:ce:b5:8e:3b:e2:0c:22:61:79:84:d3:6a:70:55:0c:d6:d4:
bd:08:49:bf:f9:d5:a5:c6:87:c4:62:58:6a:4b:b6:c6:5a:15:
8c:e7:50:7c:6c:21:51:5d:ee:b0:32:0c:a6:b5:e4:0f:51:57:
c2:37:6e:59:77:70:0b:79:2e:ee:38:9b:3f:4c:fe:c3:6b:15:
32:73:ee:c9:4a:b2:cf:d8:e5:67:a7:18:4f:e6:1b:f5:58:95:
f0:d2:84:0f:e5:32:26:79:01:23:01:14:11:72:c9:33:06:56:
63:30:8d:45:21:f7:ae:64:94:4c:79:12:dc:e8:d5:d0:56:5e:
f0:5e:92:1e:ea:37:6e:ae:75:a9:39:04:a9:cf:72:34:9e:9d:
86:d5:b8:b2:f9:59:86:64:a6:1a:52:4f:c4:79:d5:87:e9:f1:
74:f2:02:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 23:44:12 2025 by rpki-client