Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/OT6YHDk_lhZsoGwe6NFFGa5Sz3g.roa
File: OT6YHDk_lhZsoGwe6NFFGa5Sz3g.roa (raw, json)
Hash identifier: 3UK4RMJ18E6BJ3Pt3k1N4ljIIeVHfvFurvUMotxJ7ow=
Subject key identifier: 39:3E:98:1C:39:3F:96:16:6C:A0:6C:1E:E8:D1:45:19:AE:52:CF:78
Certificate issuer: /CN=d6e2694652aa298511edafbe18d2b1cdbc792638
Certificate serial: 019420D66595AC6414655710093796BF4445
Authority key identifier: D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/OT6YHDk_lhZsoGwe6NFFGa5Sz3g.roa
Signing time: Wed 01 Jan 2025 07:48:28 +0000
ROA not before: Wed 01 Jan 2025 07:48:28 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 58267
IP address blocks: 5.145.116.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:65:95:ac:64:14:65:57:10:09:37:96:bf:44:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d6e2694652aa298511edafbe18d2b1cdbc792638
Validity
Not Before: Jan 1 07:48:28 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=393e981c393f96166ca06c1ee8d14519ae52cf78
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:cf:a6:36:f8:bd:a6:f2:7c:cd:28:f6:97:01:
c6:b0:5f:04:ad:06:04:60:e7:d5:14:8f:89:c0:73:
64:a8:6a:e2:b4:8e:9f:9e:e4:77:08:df:a7:80:f7:
fd:52:5c:03:11:8e:cd:9e:98:e5:b9:05:e9:64:54:
c7:21:9f:9c:1f:43:5b:4b:f5:0c:4d:a5:9f:38:34:
76:04:e8:64:22:bf:36:cd:57:6d:a8:37:2b:e4:63:
e5:15:e5:73:72:b1:e6:42:2c:85:52:fe:45:5b:49:
77:a1:7b:6c:34:fc:f3:4b:b7:f0:ed:0d:03:69:29:
3a:01:87:17:cd:25:e0:8c:cb:7f:d3:b5:18:a2:e3:
e8:3c:b9:9d:55:0e:3e:d6:ee:cf:93:9a:88:c3:4e:
c7:a6:9c:45:56:8c:dc:7d:ae:df:5f:4e:6f:c2:06:
2c:91:65:73:2c:10:c7:69:22:80:f5:59:e1:5e:3b:
a9:f8:70:0f:02:4c:db:03:aa:54:4f:82:aa:d4:39:
71:ab:58:db:d3:96:db:7d:4a:6b:4a:c5:11:08:4c:
78:a1:54:f4:fd:10:57:c7:a5:28:c5:36:02:53:0c:
39:0b:73:ed:0d:1e:03:3e:0a:e4:e8:1a:7a:b8:c9:
0f:a8:39:64:ea:43:94:11:cd:a7:1e:a4:5e:c6:05:
28:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:3E:98:1C:39:3F:96:16:6C:A0:6C:1E:E8:D1:45:19:AE:52:CF:78
X509v3 Authority Key Identifier:
keyid:D6:E2:69:46:52:AA:29:85:11:ED:AF:BE:18:D2:B1:CD:BC:79:26:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1uJpRlKqKYUR7a--GNKxzbx5Jjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/OT6YHDk_lhZsoGwe6NFFGa5Sz3g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/8cc506-7e71-4705-a289-b42364895083/1/1uJpRlKqKYUR7a--GNKxzbx5Jjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.145.116.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:34:fc:ca:7f:68:28:c1:2e:bf:72:dd:c2:0e:41:e4:5e:be:
d1:ca:c6:2b:f5:0a:79:ba:0e:9e:30:8d:ab:66:0d:cf:ba:95:
0b:bb:76:6e:bf:a4:45:18:7e:12:8c:ba:c5:7a:11:9c:43:af:
5e:14:1e:cf:b0:e9:ea:f1:85:ea:07:2d:60:e0:2e:6b:05:47:
28:6b:ef:db:87:bb:10:84:94:08:bf:05:66:28:5c:0a:2a:a0:
53:de:fa:d3:f5:29:0c:a7:b2:f4:0b:bd:15:6e:55:3a:95:68:
db:c8:ed:e8:20:02:94:31:cb:34:51:11:1d:f8:f8:c3:a3:ee:
1b:da:60:8a:a8:44:8b:dd:2d:0a:af:02:ef:0a:cd:eb:6a:6e:
4b:f9:4b:fa:be:84:91:62:e1:cd:3f:ff:ab:3c:ff:91:a8:43:
cd:1a:cf:ce:ed:09:44:92:0a:7d:92:47:2f:05:fe:9e:b3:31:
78:3f:8c:91:85:ce:f7:44:29:2b:fa:9c:58:b3:cb:fd:ce:9d:
88:c1:99:d1:22:c3:37:a7:17:9a:94:e9:4b:2b:50:a0:7c:4c:
82:32:7b:e6:d9:3b:10:d0:59:89:44:23:5e:a1:8a:ef:cf:86:
74:4c:15:08:26:c0:f3:4a:89:a3:d4:cc:6a:87:64:34:d8:91:
11:ce:7a:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Feb 21 12:32:57 2025 by rpki-client