Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/5HOLpYhwqliELfIR2gI4LSu5Csw.roa
File: 5HOLpYhwqliELfIR2gI4LSu5Csw.roa (raw, json)
Hash identifier: CoNRHaLEfVgA7zhIYoNXjV+JQl4/d7Z3te8aNHAlbEY=
Subject key identifier: E4:73:8B:A5:88:70:AA:58:84:2D:F2:11:DA:02:38:2D:2B:B9:0A:CC
Certificate issuer: /CN=411dea53467b6c7143eb23d284569a8183b2e82f
Certificate serial: 019421B1DF2247D2618AA621F00D4DA8D1AE
Authority key identifier: 41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/5HOLpYhwqliELfIR2gI4LSu5Csw.roa
Signing time: Wed 01 Jan 2025 11:48:12 +0000
ROA not before: Wed 01 Jan 2025 11:48:12 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 14618
IP address blocks: 84.239.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:df:22:47:d2:61:8a:a6:21:f0:0d:4d:a8:d1:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=411dea53467b6c7143eb23d284569a8183b2e82f
Validity
Not Before: Jan 1 11:48:12 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e4738ba58870aa58842df211da02382d2bb90acc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:63:30:8b:be:0c:66:01:9e:f4:4e:68:6b:89:
e7:3b:c6:10:d3:4c:f2:0d:f9:9f:d0:6d:26:9a:7a:
b9:b7:37:44:14:6f:0d:51:47:c6:2e:70:fd:a0:25:
fc:18:0d:45:a7:ad:d9:10:26:34:a7:d8:9b:7b:f3:
fa:da:07:29:cc:57:79:55:82:69:03:71:25:4d:98:
61:e1:19:90:48:4e:52:99:74:66:76:6d:21:99:15:
f7:6d:94:86:bb:bd:ee:57:97:0d:00:59:b9:b9:7e:
85:ea:2a:69:10:17:a6:93:ea:f6:d8:5a:d4:9d:6a:
23:2a:30:d9:b5:49:f6:c1:f4:a1:51:47:62:8c:c2:
f4:96:0a:44:e3:a8:54:a3:b0:e1:0f:7e:2f:5b:2d:
f5:61:8f:7d:0c:50:e5:e4:3e:fb:2b:e9:bd:37:53:
39:fb:df:89:e3:d4:91:0f:b9:f3:9b:a4:09:4f:64:
c5:1d:83:43:06:65:c7:28:02:1a:65:71:f2:45:30:
f0:30:e9:f8:54:3f:66:9c:ab:9b:0f:df:06:ce:4b:
7b:2c:64:21:7c:ae:4e:26:8c:1f:26:03:6d:bf:58:
bc:1d:a3:a4:34:4f:62:e4:55:1f:f5:df:d9:47:ff:
d5:7d:fc:b3:7b:14:91:7f:db:4d:cf:a4:a5:ec:4c:
f4:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:73:8B:A5:88:70:AA:58:84:2D:F2:11:DA:02:38:2D:2B:B9:0A:CC
X509v3 Authority Key Identifier:
keyid:41:1D:EA:53:46:7B:6C:71:43:EB:23:D2:84:56:9A:81:83:B2:E8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QR3qU0Z7bHFD6yPShFaagYOy6C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/5HOLpYhwqliELfIR2gI4LSu5Csw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/eacce5-e4dd-4d9f-8ec1-47120b9069b7/1/QR3qU0Z7bHFD6yPShFaagYOy6C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.239.61.0/24
Signature Algorithm: sha256WithRSAEncryption
05:71:13:64:20:37:cf:f2:8d:66:aa:c8:58:81:b5:22:60:57:
f2:a3:4b:59:25:31:d3:00:a5:64:73:f9:f9:e9:8c:26:de:ad:
54:a9:79:a8:d6:88:32:89:16:f5:a3:c9:d0:f5:ce:fa:ea:97:
50:b5:ce:38:93:01:94:28:50:d1:d9:d5:32:20:30:ec:37:66:
82:3e:7d:90:63:40:53:ba:67:53:47:be:c9:f5:d2:3d:bb:51:
bc:b1:88:3c:19:93:be:a1:ba:41:b0:41:4f:e7:c9:50:4d:71:
ed:17:7c:d7:06:f2:fd:0e:07:03:de:ab:75:ae:d3:ad:1e:57:
ea:9b:75:6f:44:1d:1e:fc:e7:13:89:9a:c9:cf:0c:b6:93:78:
0a:2a:8f:95:7f:3f:8c:88:66:b0:67:4a:51:aa:d9:66:11:c1:
be:59:7d:a0:ae:37:71:cd:ce:6e:a3:e9:f1:5d:a5:61:a7:1b:
57:e5:36:14:9f:b4:46:5a:9f:72:d8:91:0b:d6:78:38:2f:b8:
f2:95:9d:d6:3d:33:d3:aa:0b:87:a4:33:84:89:af:d9:a8:61:
85:00:90:5d:dd:82:fe:71:20:97:fa:b0:7e:15:cb:99:ac:a0:
eb:93:04:8f:58:d1:68:4b:55:7b:4f:3d:14:bd:a1:fc:fd:c1:
29:10:fc:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:38:53 2025 by rpki-client