Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/vS_G30kRmF5yTvVCZuLriQbTalI.roa
File: vS_G30kRmF5yTvVCZuLriQbTalI.roa (raw, json)
Hash identifier: jpLTyi2oD569vb7nR4qsqTlGyMLcUPoGbyflTszDmns=
Subject key identifier: BD:2F:C6:DF:49:11:98:5E:72:4E:F5:42:66:E2:EB:89:06:D3:6A:52
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 019427B5FAFDE83172814BD062F59396731D
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/vS_G30kRmF5yTvVCZuLriQbTalI.roa
Signing time: Thu 02 Jan 2025 15:50:25 +0000
ROA not before: Thu 02 Jan 2025 15:50:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 42337
IP address blocks: 85.133.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:fa:fd:e8:31:72:81:4b:d0:62:f5:93:96:73:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Jan 2 15:50:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bd2fc6df4911985e724ef54266e2eb8906d36a52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b0:36:cd:66:89:ec:45:59:f5:8e:63:6d:9f:
2d:88:a0:0a:57:34:dd:e8:2d:0f:d1:42:c2:0a:6c:
d9:51:2d:df:4b:c6:6b:5f:75:ad:72:7e:b7:d2:a2:
ad:8a:3d:72:dc:b1:fe:e0:5d:cf:51:2d:d0:a1:dd:
56:d9:99:3b:77:92:d0:73:95:18:da:5d:f4:52:55:
32:f5:6e:db:f0:ff:2d:8f:9a:05:02:82:b3:8c:48:
51:a6:dc:be:bc:29:69:d8:b0:be:4c:eb:05:03:31:
ab:c2:77:a6:d9:ec:2c:67:0a:c7:84:69:e1:71:60:
e3:14:58:a9:b6:d8:cb:40:31:e1:31:c6:96:31:ed:
00:e5:23:94:13:b3:8e:42:1b:83:36:ff:87:13:c8:
58:81:2d:8b:bc:89:bd:36:2d:05:2a:c9:c6:63:55:
6c:70:88:db:84:39:8a:ed:9b:6f:34:eb:f7:db:08:
06:d9:77:b6:40:42:dc:ad:03:d0:65:91:1e:a8:d8:
1a:a5:9d:14:c8:4f:52:5a:f8:54:25:e4:c7:a6:02:
a7:f1:8d:d7:e9:35:61:90:0b:94:84:2e:09:6a:d2:
46:2a:d6:36:87:68:9c:02:c3:57:da:5a:45:34:6a:
ad:ce:73:c9:1f:34:61:8b:bf:15:71:a7:b1:88:3c:
af:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:2F:C6:DF:49:11:98:5E:72:4E:F5:42:66:E2:EB:89:06:D3:6A:52
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/vS_G30kRmF5yTvVCZuLriQbTalI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.240.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:98:11:1a:d7:bc:16:dd:2d:f4:12:f4:d2:5e:03:26:2e:3f:
86:4d:09:58:bc:3e:c9:b1:35:2a:77:b9:44:2e:c1:b1:9f:e0:
92:a5:f3:a2:e2:de:8a:93:20:a2:53:06:43:18:a9:53:9f:5d:
46:95:d6:06:c1:85:f9:f3:b2:c6:f1:bb:00:72:4a:b0:54:d3:
46:a2:fd:07:cc:a9:14:26:62:c7:b2:1f:0d:46:e1:97:3c:d9:
dd:60:aa:84:70:67:a0:bd:18:8d:fe:bb:4f:8c:1d:0a:86:a4:
82:fc:b1:54:0b:5f:bd:27:a8:be:0c:38:2f:81:17:dc:74:3f:
30:14:03:de:d8:77:6f:0a:10:e3:66:38:fc:f4:94:b1:23:57:
8f:5e:01:b7:e3:d6:6c:98:30:59:d5:53:50:09:3a:2a:4e:ae:
37:7f:04:4c:8b:71:e4:39:a9:46:0e:ce:e3:de:fd:1b:9c:53:
59:36:07:97:dd:e5:6f:6a:95:d3:82:2c:a2:ca:e8:66:92:cd:
d4:15:93:b7:fc:0c:40:58:a8:89:09:5c:af:0d:8e:ca:29:eb:
03:7e:c6:a6:91:db:a3:17:62:0f:8e:e1:8f:31:fe:eb:6d:b7:
f1:59:72:94:fb:1a:2b:75:71:c7:a7:6d:db:8a:58:33:1f:d3:
64:27:e2:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:40:35 2025 by rpki-client