Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/wJD7kq4megsLq6JagLMEyOdh7r4.roa
File: wJD7kq4megsLq6JagLMEyOdh7r4.roa (raw, json)
Hash identifier: UIzDsB/h/4Yu/+CiSR5HWd2Yo/nG35fnT/HofXKI198=
Subject key identifier: C0:90:FB:92:AE:26:7A:0B:0B:AB:A2:5A:80:B3:04:C8:E7:61:EE:BE
Certificate issuer: /CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Certificate serial: 01942444DB46C98DAB3CA237A5AD7D878487
Authority key identifier: 51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/wJD7kq4megsLq6JagLMEyOdh7r4.roa
Signing time: Wed 01 Jan 2025 23:47:59 +0000
ROA not before: Wed 01 Jan 2025 23:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 215287
IP address blocks: 77.246.220.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:24:44:db:46:c9:8d:ab:3c:a2:37:a5:ad:7d:87:84:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5124fba1e401c03e5ba1cd77ae9ee39cfd631bfb
Validity
Not Before: Jan 1 23:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c090fb92ae267a0b0baba25a80b304c8e761eebe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1e:8b:ad:eb:6b:4d:c1:c3:51:a0:be:cd:72:
37:32:3a:71:26:fa:41:ca:13:c9:9b:8c:ff:7c:24:
27:f3:dd:5a:69:c5:2f:7d:e1:a7:0e:60:d3:59:96:
a4:15:06:82:f3:23:07:72:0f:6e:a9:6c:85:f6:6c:
34:68:72:92:43:cc:3f:e5:12:a5:12:7d:7d:23:e2:
0f:83:3d:ba:ee:0d:f8:b4:e5:81:6a:4d:84:12:3f:
5e:36:fe:0a:86:79:64:58:01:48:f1:a6:22:a1:58:
b1:8b:14:c3:e4:c3:b1:7f:32:eb:f5:44:a3:a7:8e:
1f:30:cc:3c:f9:10:bc:e0:d1:b3:44:56:ed:e0:e1:
f8:9c:f7:fd:ec:4a:8a:e3:6c:91:d2:dc:af:22:ff:
7e:46:1d:c3:5d:39:61:be:f6:63:7b:fe:45:51:36:
aa:de:f3:73:73:27:2a:70:88:e4:39:ec:f1:47:38:
65:84:0e:0d:e3:15:2d:98:88:5e:cb:50:0d:f7:a3:
0e:4b:00:9b:14:7f:4b:d4:99:74:2a:f9:55:78:06:
0c:1f:60:2f:f9:fc:9f:b6:c5:51:ad:ca:fb:47:86:
d7:77:ac:d4:cb:cb:3d:19:69:86:b8:df:0f:12:ec:
37:f6:84:25:88:e6:42:ab:aa:b7:da:1f:c6:c5:a2:
ea:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:90:FB:92:AE:26:7A:0B:0B:AB:A2:5A:80:B3:04:C8:E7:61:EE:BE
X509v3 Authority Key Identifier:
keyid:51:24:FB:A1:E4:01:C0:3E:5B:A1:CD:77:AE:9E:E3:9C:FD:63:1B:FB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UST7oeQBwD5boc13rp7jnP1jG_s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/wJD7kq4megsLq6JagLMEyOdh7r4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/b714ad-1f78-4a10-8e61-ab8f1f3387ee/1/UST7oeQBwD5boc13rp7jnP1jG_s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.246.220.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:22:68:07:1d:6c:c1:ff:67:5e:fb:34:ef:19:f1:fd:d8:42:
db:53:2d:58:af:61:a0:27:9d:3c:9b:98:9b:9e:8c:2c:1f:84:
86:2b:c0:f3:c8:4d:9d:44:46:81:1e:72:e1:cc:60:d4:02:b8:
29:9e:ad:45:9d:a2:76:d7:f8:1a:34:58:f4:f2:37:67:cc:bb:
34:3b:21:1e:02:ac:35:34:24:c3:eb:18:bd:5e:78:57:e0:27:
8d:8b:0b:af:7c:57:cc:dc:d9:d9:4a:e2:ca:8d:3f:06:ec:9e:
f1:f5:32:2b:47:5e:b6:ae:4f:4e:0b:82:4b:ee:f7:e6:61:95:
ff:c2:91:90:38:e1:3f:b3:1a:28:22:cc:fd:f8:6d:45:d6:94:
fe:4b:58:eb:45:77:7f:68:4c:72:43:28:7d:1b:e3:1f:34:96:
f8:08:1c:db:6f:b6:ec:c1:17:00:6e:38:4e:b0:1c:8c:6a:c2:
86:f3:1a:8a:7c:9a:bf:0d:b8:b1:a3:03:75:f0:3b:1c:fe:01:
7a:52:b5:f5:de:f8:74:60:be:45:4a:5e:fa:b1:7c:28:7a:6c:
98:36:22:61:71:41:0d:7f:2a:f2:a5:40:c8:64:95:5c:e1:b6:
09:8a:b4:03:03:6a:82:2b:c5:89:ed:6e:c0:a2:91:e8:b4:63:
ae:1f:fe:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 09:37:41 2025 by rpki-client