Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/uXeorQ0KraTFvVQlrxOSwyrTRt8.roa
File: uXeorQ0KraTFvVQlrxOSwyrTRt8.roa (raw, json)
Hash identifier: p6Mox6CbN3FoG5SSiyHeNVnPtI+94QgKaVPxEdmTl2o=
Subject key identifier: B9:77:A8:AD:0D:0A:AD:A4:C5:BD:54:25:AF:13:92:C3:2A:D3:46:DF
Certificate issuer: /CN=6f3030a4b67f95c2fed902d56657faa2494b5129
Certificate serial: 01942068508144E617EC4F1CCA18AB2D5E10
Authority key identifier: 6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/uXeorQ0KraTFvVQlrxOSwyrTRt8.roa
Signing time: Wed 01 Jan 2025 05:48:14 +0000
ROA not before: Wed 01 Jan 2025 05:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 211670
IP address blocks: 5.190.211.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:68:50:81:44:e6:17:ec:4f:1c:ca:18:ab:2d:5e:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f3030a4b67f95c2fed902d56657faa2494b5129
Validity
Not Before: Jan 1 05:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=b977a8ad0d0aada4c5bd5425af1392c32ad346df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:0e:b2:bf:e0:98:9a:8b:b3:08:a8:e7:4d:1d:
27:bb:9c:e4:23:5a:43:41:ef:88:15:49:f8:54:00:
61:14:76:b1:e8:b6:f4:a1:8e:47:59:13:71:e1:a8:
9e:fd:d0:05:e8:43:df:3c:a7:2b:65:24:5d:a0:85:
d8:cf:4a:4c:15:3e:00:b3:39:cf:43:c0:47:04:26:
1f:05:05:01:8a:60:2c:71:f0:32:c3:8d:77:2f:6b:
9e:68:97:8d:66:20:6e:62:15:4f:21:98:ed:75:6c:
4e:7c:20:fd:2b:b6:bc:7b:b1:fe:90:65:11:60:6d:
fb:7d:85:b5:b2:eb:84:d9:84:56:81:41:c9:d1:11:
8b:2f:d8:c7:e8:0b:2c:b0:e7:ba:66:29:c4:56:13:
bf:29:b8:2c:9f:7a:d5:81:93:5b:eb:38:eb:f8:e5:
92:0d:0d:d0:7a:41:a2:f1:9b:da:94:c1:16:40:47:
05:e2:a0:05:ae:69:5a:87:8a:e4:1e:65:06:df:05:
e8:81:9d:64:f4:df:05:d2:8e:33:7b:9a:aa:9e:c1:
84:39:60:cb:63:bb:dd:49:e1:ab:bb:a8:15:68:45:
f0:d3:db:24:ca:48:28:01:a5:2a:a0:2f:d5:2a:dd:
06:e7:0c:37:ee:36:7d:19:c4:03:c3:68:38:0c:48:
e0:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:77:A8:AD:0D:0A:AD:A4:C5:BD:54:25:AF:13:92:C3:2A:D3:46:DF
X509v3 Authority Key Identifier:
keyid:6F:30:30:A4:B6:7F:95:C2:FE:D9:02:D5:66:57:FA:A2:49:4B:51:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzAwpLZ_lcL-2QLVZlf6oklLUSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/uXeorQ0KraTFvVQlrxOSwyrTRt8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/2b99a3-dd5f-4ffe-82ef-bf3b21a270f2/1/bzAwpLZ_lcL-2QLVZlf6oklLUSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.190.211.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:4c:69:2e:73:9c:f5:be:90:55:67:ed:e8:5a:e3:af:95:64:
12:5b:8a:28:60:0b:e4:48:56:e3:c4:5e:4d:1c:33:29:bf:7f:
c9:14:23:a2:09:01:d7:35:4d:63:bd:5c:04:ca:fa:3b:bc:8f:
a0:7c:1c:b0:ba:ed:68:98:8b:0d:1d:77:78:e1:31:78:c0:15:
ee:4a:29:aa:f9:f5:da:e8:24:d7:36:26:55:26:4e:85:d3:de:
85:91:73:81:49:56:65:ea:e7:31:cc:ca:e6:00:cf:f6:95:57:
bf:a8:0c:c0:33:2f:84:8f:aa:78:2b:f9:5e:03:1c:ff:e8:76:
a3:36:19:bd:14:c4:7e:df:1b:0b:e9:68:45:0d:24:db:3e:b0:
39:30:96:e7:25:1f:25:cf:5b:0b:33:bd:d8:a6:a1:8e:e1:fd:
26:ee:36:06:68:e1:0b:d8:48:2a:a4:c9:91:5b:ce:30:57:95:
38:ab:6e:1d:92:bd:a0:41:67:2b:76:d0:78:40:d8:26:2d:ea:
cb:07:f0:9c:88:d1:3d:4b:0d:f7:ca:e3:7f:33:93:d1:71:aa:
eb:07:10:c0:15:8b:df:79:82:b5:b1:7c:84:9a:2e:69:1c:6f:
cb:aa:cc:59:e5:78:81:0c:40:4d:b0:60:26:81:67:95:59:e4:
6a:73:97:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:29:13 2025 by rpki-client