Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/1f4d56-bdd9-4116-954c-2240d27402fe/1/LVji7-hNinMvh2uZfU9itRxK6Eo.roa
File: LVji7-hNinMvh2uZfU9itRxK6Eo.roa (raw, json)
Hash identifier: yz8p8NyEKPeKdywG9T51h7CGBtQCcml/qAuFdNgc+wQ=
Subject key identifier: 2D:58:E2:EF:E8:4D:8A:73:2F:87:6B:99:7D:4F:62:B5:1C:4A:E8:4A
Certificate issuer: /CN=fea2da9911b31bf5b0d614912fdbf95bf1d7035b
Certificate serial: 019423D784003155A3566E1E6C938205EDB2
Authority key identifier: FE:A2:DA:99:11:B3:1B:F5:B0:D6:14:91:2F:DB:F9:5B:F1:D7:03:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_qLamRGzG_Ww1hSRL9v5W_HXA1s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/1f4d56-bdd9-4116-954c-2240d27402fe/1/LVji7-hNinMvh2uZfU9itRxK6Eo.roa
Signing time: Wed 01 Jan 2025 21:48:34 +0000
ROA not before: Wed 01 Jan 2025 21:48:34 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48955
IP address blocks: 195.35.100.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:84:00:31:55:a3:56:6e:1e:6c:93:82:05:ed:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fea2da9911b31bf5b0d614912fdbf95bf1d7035b
Validity
Not Before: Jan 1 21:48:34 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2d58e2efe84d8a732f876b997d4f62b51c4ae84a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e7:b3:2e:ca:ec:2a:53:13:0a:b8:d6:41:55:
fd:b9:2a:b7:da:8b:42:22:b6:ab:a8:4b:af:a5:8a:
c2:90:05:23:00:df:8f:a4:e9:2d:7b:a2:77:0d:e7:
28:a7:0f:35:42:6c:7f:35:6f:fb:e8:04:af:90:6b:
b5:59:3f:60:41:7e:80:bb:29:0f:df:57:cb:ea:d4:
f7:89:17:42:26:73:2f:0e:ec:65:af:d9:32:94:ef:
48:a8:51:24:b0:70:43:56:68:72:86:2b:be:38:31:
ae:46:a0:43:53:88:ae:99:e8:10:45:d8:77:25:91:
0c:30:ec:e6:85:86:1a:3b:5e:a0:99:0d:a1:0f:13:
cc:fa:ca:82:0b:14:6a:b7:89:9f:07:ba:7d:1e:cd:
b0:c2:d6:95:37:cd:05:a5:4f:11:56:b1:93:f1:18:
c1:ab:0c:2c:38:e7:3e:4f:95:95:88:ee:d8:00:7f:
ed:f8:24:98:9b:bf:9b:66:f2:40:9b:6a:32:e9:ab:
de:2b:3d:84:66:e6:0c:9a:85:e7:22:97:06:af:76:
c3:8b:3b:09:a6:3d:79:03:d9:60:52:ab:78:1d:5d:
80:01:00:d4:ac:55:26:11:24:dd:77:ce:98:4f:c3:
bf:15:49:91:eb:5f:aa:cc:be:b8:88:a3:ee:e0:9e:
26:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:58:E2:EF:E8:4D:8A:73:2F:87:6B:99:7D:4F:62:B5:1C:4A:E8:4A
X509v3 Authority Key Identifier:
keyid:FE:A2:DA:99:11:B3:1B:F5:B0:D6:14:91:2F:DB:F9:5B:F1:D7:03:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_qLamRGzG_Ww1hSRL9v5W_HXA1s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/1f4d56-bdd9-4116-954c-2240d27402fe/1/LVji7-hNinMvh2uZfU9itRxK6Eo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/1f4d56-bdd9-4116-954c-2240d27402fe/1/_qLamRGzG_Ww1hSRL9v5W_HXA1s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.35.100.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:8e:74:ab:40:f7:f8:52:c0:91:a2:35:00:a9:31:99:cc:cf:
bb:27:03:e4:7d:04:e3:c6:b9:f2:00:42:51:88:27:e3:f2:dd:
76:05:3b:b1:8c:e3:31:8a:67:ae:e6:84:1c:d2:14:de:f7:01:
f5:a5:91:6b:af:82:bc:ec:f0:8a:68:2e:25:4f:39:5a:0c:3e:
a1:aa:ec:16:e1:de:5a:e9:27:4d:a7:91:5d:de:88:de:70:20:
1e:79:91:5d:97:01:90:c4:77:92:a1:2f:43:1d:21:9c:64:2f:
f6:9e:78:64:24:7b:9d:18:0c:96:ce:8d:05:1d:f7:66:bc:62:
5b:fe:6d:82:14:79:ee:78:1d:ab:93:20:83:23:f9:d1:cc:f8:
98:88:5f:4f:a8:dc:34:76:13:37:b1:c2:b6:72:f1:3a:61:0a:
b4:bc:07:17:90:52:93:2e:7f:a5:aa:d7:19:c8:21:0d:87:d9:
4a:ee:dc:f5:76:af:6f:23:24:a6:2a:5a:64:14:86:00:08:d0:
8c:e3:5c:a4:ee:1d:cb:87:20:94:64:c1:7d:b6:96:80:cf:53:
2e:b6:02:41:5f:2d:a6:e0:44:dc:81:64:3e:d9:b5:ec:c9:b7:
79:f4:30:f2:cd:7a:ee:70:ff:45:72:ac:44:1d:48:df:95:1d:
d7:0d:f3:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 12:06:35 2025 by rpki-client