Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/aVylZyEQwBXWctUuh01Kx-MnBpw.roa
File: aVylZyEQwBXWctUuh01Kx-MnBpw.roa (raw, json)
Hash identifier: jB+XdgMQvp3EPtPkAQ+7tQq78v6NYgmRWUdO6oBD0tY=
Subject key identifier: 69:5C:A5:67:21:10:C0:15:D6:72:D5:2E:87:4D:4A:C7:E3:27:06:9C
Certificate issuer: /CN=cdaaa0e082360360acda347664eb8314eb11da10
Certificate serial: 01954151ED436E6797F3302F76510E91834E
Authority key identifier: CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/aVylZyEQwBXWctUuh01Kx-MnBpw.roa
Signing time: Wed 26 Feb 2025 08:14:03 +0000
ROA not before: Wed 26 Feb 2025 08:14:03 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 214318
IP address blocks: 77.242.154.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:41:51:ed:43:6e:67:97:f3:30:2f:76:51:0e:91:83:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cdaaa0e082360360acda347664eb8314eb11da10
Validity
Not Before: Feb 26 08:14:03 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=695ca5672110c015d672d52e874d4ac7e327069c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:77:c2:7c:31:cf:44:1a:92:99:24:20:e6:20:
d2:41:d9:a8:32:01:f1:10:8a:f2:11:fd:c4:c1:33:
03:74:71:c6:d7:01:9a:de:8e:f5:7a:4c:a4:ee:03:
14:7c:16:d3:24:94:3c:11:8a:d0:e4:27:78:e1:e7:
6b:d1:f1:91:d5:02:df:cc:55:e6:af:67:96:36:ba:
cc:7f:5a:f8:ae:36:ab:53:54:2e:25:b4:2d:75:67:
c3:64:25:17:44:2b:c2:47:70:63:4a:00:79:7a:ef:
d5:04:68:c9:4e:d1:f6:7c:1c:04:9d:c7:28:b0:e4:
9d:86:7a:ac:76:64:5b:e9:19:33:bc:ec:45:2f:9a:
60:87:29:df:ff:26:a3:21:95:df:5f:49:84:ec:f6:
68:01:e2:50:45:83:e7:56:3b:2e:73:11:04:1c:36:
8b:c1:c2:0e:48:da:23:51:1d:f6:c1:e5:61:55:88:
c8:53:a3:a7:82:78:8f:73:0b:33:43:2e:5b:2d:95:
8f:11:6b:c2:4f:78:20:ee:33:73:53:04:48:b9:fb:
b6:f5:df:6b:81:a8:65:90:46:6a:10:e2:e0:7e:fa:
d1:69:e4:e3:4b:f1:87:57:22:71:e1:80:68:ba:6c:
f4:b0:cb:29:e3:ea:52:31:74:48:bf:3b:d3:15:39:
c9:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5C:A5:67:21:10:C0:15:D6:72:D5:2E:87:4D:4A:C7:E3:27:06:9C
X509v3 Authority Key Identifier:
keyid:CD:AA:A0:E0:82:36:03:60:AC:DA:34:76:64:EB:83:14:EB:11:DA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/aVylZyEQwBXWctUuh01Kx-MnBpw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/589127-1096-4c91-96cc-7e4d6f6f6e66/1/zaqg4II2A2Cs2jR2ZOuDFOsR2hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.242.154.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:80:9a:d4:7e:71:bf:94:b2:46:4a:ea:6a:9c:70:63:10:7a:
ae:36:36:17:27:ef:89:de:d1:3b:99:1b:76:95:9e:86:dc:07:
3c:7e:6e:61:d0:29:b7:82:0c:5b:88:48:b1:d9:5f:2e:da:df:
d5:8d:86:60:7b:17:87:87:dc:5e:ca:1a:9d:cc:a5:b5:a1:40:
c8:45:2a:6b:70:e2:4a:8a:ce:5b:70:32:4d:82:83:8a:ea:48:
60:de:79:2c:07:3f:2c:81:d5:fe:57:42:ab:56:eb:f3:47:ff:
89:1b:a0:94:d5:eb:66:32:e3:12:2f:f1:92:cf:d0:61:89:9a:
1f:d0:c1:b3:67:69:b4:c0:3f:b2:6a:3f:41:8b:22:89:d8:7a:
34:20:59:a1:25:41:18:76:47:79:fd:c5:67:f3:70:8d:0f:0a:
15:0c:3c:d1:88:e6:17:0f:08:73:47:15:e5:74:9d:81:2b:fe:
40:a6:b8:23:86:04:47:db:54:ad:0b:dc:ca:d4:e8:43:7e:c7:
32:3f:08:1e:a9:7c:82:dd:b3:07:60:c2:13:9d:c3:35:05:61:
88:98:c7:a0:75:bb:73:31:c7:ef:6a:d7:1e:74:2a:0c:a5:ec:
24:4b:69:5d:49:0a:4b:fa:4b:11:34:7e:03:d1:ca:df:05:64:
43:36:4e:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 12:42:09 2025 by rpki-client