Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/4SISa_1qb1j3f0Vl1FpzLfIGqlE.roa
File: 4SISa_1qb1j3f0Vl1FpzLfIGqlE.roa (raw, json)
Hash identifier: kvTo7K+NUcVXH3+JnKR0rLIpF01vePUf4Szd8a0qhqY=
Subject key identifier: E1:22:12:6B:FD:6A:6F:58:F7:7F:45:65:D4:5A:73:2D:F2:06:AA:51
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 019575434E0AAF05F197C9860105516B9706
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/4SISa_1qb1j3f0Vl1FpzLfIGqlE.roa
Signing time: Sat 08 Mar 2025 10:18:19 +0000
ROA not before: Sat 08 Mar 2025 10:18:19 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 210122
IP address blocks: 83.137.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:75:43:4e:0a:af:05:f1:97:c9:86:01:05:51:6b:97:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Mar 8 10:18:19 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e122126bfd6a6f58f77f4565d45a732df206aa51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c5:e6:fa:9f:f1:75:a5:e2:60:c6:85:3c:51:
4d:b0:45:f4:a1:94:ce:f0:19:d9:f0:8f:e3:d3:fc:
76:73:cd:8c:2a:27:48:c3:00:b2:90:4b:9f:14:d1:
3d:11:b2:4b:ff:e5:81:62:da:0c:f8:68:42:8a:9e:
ba:cc:31:dd:f2:23:5f:69:c9:0d:ba:d1:7c:8f:0c:
eb:3d:86:52:d2:65:a9:3d:4f:eb:0a:d8:ba:1d:64:
01:61:35:60:30:88:74:3b:34:cf:0d:c1:9d:95:cb:
c9:1f:d8:a2:c9:89:c9:1e:63:12:d1:e4:c4:24:c1:
56:79:f3:81:6e:86:ec:69:c4:c1:80:bd:c6:41:ac:
ff:e3:0e:fb:ec:cf:08:e5:0e:5a:d2:40:78:6c:1c:
fb:bb:72:9c:3c:f2:6c:11:a6:f3:29:9e:91:b1:37:
70:8d:4c:83:26:b9:af:b7:9b:e5:89:85:dc:cf:b1:
3b:90:db:9c:34:75:73:09:60:9f:a3:e6:50:2e:36:
d3:84:b4:d7:63:86:e8:97:f3:1a:77:38:bf:87:04:
ce:c8:3d:77:df:93:98:ca:a0:67:76:a0:83:f9:c2:
33:ed:18:d2:a0:dd:aa:79:08:92:80:07:37:40:26:
cf:b6:b3:6d:6f:28:65:b8:f6:d7:80:60:b4:2d:63:
a7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:22:12:6B:FD:6A:6F:58:F7:7F:45:65:D4:5A:73:2D:F2:06:AA:51
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/4SISa_1qb1j3f0Vl1FpzLfIGqlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
83.137.154.0/24
Signature Algorithm: sha256WithRSAEncryption
16:db:96:c2:50:1c:25:e6:c6:a6:51:64:1b:18:a9:10:84:4f:
2d:26:27:3d:a5:e9:34:1e:dc:fb:80:81:cc:c7:2a:d5:40:b4:
47:7f:3b:5c:d8:73:4c:11:ab:e2:0d:8a:90:bf:ed:17:f0:2e:
2d:9b:ff:b7:26:e2:a4:df:c8:2c:de:94:ae:bc:a8:aa:cb:fb:
99:95:7e:8a:77:81:73:92:f6:28:fd:f1:a5:b1:80:9f:8a:07:
77:09:cc:f5:aa:a1:85:87:92:95:bb:05:61:cb:5f:93:87:22:
65:ea:fd:81:6a:9c:a5:2d:ba:98:67:33:c4:28:b6:59:e0:51:
16:b0:8c:07:be:92:40:9e:63:ab:2a:4c:b4:9a:70:df:0f:d5:
3a:74:e5:f4:41:75:15:d6:52:80:58:49:dc:f6:7d:f3:7c:d4:
fd:49:f1:1e:bd:1b:5d:a1:04:00:b1:db:62:69:11:ed:9a:0d:
dc:d4:50:62:89:06:88:e9:9a:02:50:98:23:07:b4:43:d3:c9:
3f:25:75:30:3f:fe:40:f8:c9:20:77:4e:79:e4:f6:83:0a:b0:
6a:33:14:07:32:12:87:83:da:79:07:ab:a0:be:d4:34:7d:5b:
b2:e8:46:0a:d6:d8:b8:46:c8:00:b8:68:ae:bc:79:07:42:bf:
ea:6c:32:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:21:29 2025 by rpki-client