Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/48d609-088d-41e4-bec4-38ee8fd64e7d/1/uwiEBGof-KAkpEFhZy-WaLfAvIs.roa
File: uwiEBGof-KAkpEFhZy-WaLfAvIs.roa (raw, json)
Hash identifier: ZnbTLkj0SeUC00zQu5XoWyUlIHf81vfWL1Buec+9xEU=
Subject key identifier: BB:08:84:04:6A:1F:F8:A0:24:A4:41:61:67:2F:96:68:B7:C0:BC:8B
Certificate issuer: /CN=291f0b73e67d63c5a4c9046814166a9e21625f28
Certificate serial: 01941FFA7388BC01E9AF3C907F1A4928B1E5
Authority key identifier: 29:1F:0B:73:E6:7D:63:C5:A4:C9:04:68:14:16:6A:9E:21:62:5F:28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KR8Lc-Z9Y8WkyQRoFBZqniFiXyg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/48d609-088d-41e4-bec4-38ee8fd64e7d/1/uwiEBGof-KAkpEFhZy-WaLfAvIs.roa
Signing time: Wed 01 Jan 2025 03:48:14 +0000
ROA not before: Wed 01 Jan 2025 03:48:14 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 56595
IP address blocks: 198.52.45.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:fa:73:88:bc:01:e9:af:3c:90:7f:1a:49:28:b1:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=291f0b73e67d63c5a4c9046814166a9e21625f28
Validity
Not Before: Jan 1 03:48:14 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bb0884046a1ff8a024a44161672f9668b7c0bc8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:fd:b1:f0:70:45:c8:1c:a2:9a:8c:2c:3a:22:
27:01:9b:13:8a:96:4f:6a:62:c4:72:40:d2:3e:2c:
c6:c2:df:ec:ad:0e:aa:3f:ff:f5:36:d2:09:c4:40:
9d:a8:23:10:b9:2f:6f:c7:0a:60:3e:ee:a7:af:fe:
bf:97:20:74:0a:53:63:29:52:5b:30:bc:86:cf:f2:
2f:6e:de:28:ac:79:55:e7:05:bd:9f:56:0c:b2:fe:
09:70:f7:31:04:43:4d:96:c6:61:8b:3c:5d:e1:00:
2f:53:d9:a5:7f:6d:2e:b2:d6:5b:74:57:e8:da:47:
b5:d4:5c:31:23:ac:c3:14:8a:6a:49:e5:cd:81:5d:
1a:61:fd:ee:9b:da:80:40:88:a4:26:e9:a6:0e:2f:
2e:28:54:fe:90:25:39:cb:11:52:19:fa:9e:fe:6c:
06:a5:6f:6e:ef:2d:7f:b8:c7:86:d1:9c:fe:00:38:
92:1f:2f:cd:4e:95:53:3e:81:3f:c6:d4:28:87:d0:
83:e1:74:eb:13:1b:2f:53:02:a4:e8:47:b7:ec:96:
b8:0f:14:4c:1a:50:25:7e:3f:ad:eb:1a:70:f4:ab:
81:a9:3f:46:a2:e2:ed:13:97:5d:61:56:67:3c:9a:
ab:0f:c1:7e:84:52:ca:68:f9:38:5c:02:2a:a6:8a:
f9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:08:84:04:6A:1F:F8:A0:24:A4:41:61:67:2F:96:68:B7:C0:BC:8B
X509v3 Authority Key Identifier:
keyid:29:1F:0B:73:E6:7D:63:C5:A4:C9:04:68:14:16:6A:9E:21:62:5F:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KR8Lc-Z9Y8WkyQRoFBZqniFiXyg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/48d609-088d-41e4-bec4-38ee8fd64e7d/1/uwiEBGof-KAkpEFhZy-WaLfAvIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/48d609-088d-41e4-bec4-38ee8fd64e7d/1/KR8Lc-Z9Y8WkyQRoFBZqniFiXyg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
198.52.45.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:e5:ca:ee:36:3c:39:80:31:cb:f9:b0:d6:f4:00:6e:f1:aa:
9c:3a:14:42:83:d4:24:57:3b:57:89:5f:51:10:3d:00:9b:14:
6e:1a:1a:51:1f:cb:4d:f2:6f:d8:04:a3:fd:d3:65:fd:59:69:
77:28:92:71:2c:47:09:67:ab:b7:28:76:06:b9:a7:d3:92:ca:
95:5d:68:16:03:26:18:17:9a:ab:81:7a:00:fb:26:15:26:c1:
c0:25:c1:f9:68:8f:67:14:07:17:ba:f6:61:49:84:4c:72:a3:
26:3a:43:78:fc:26:b3:61:54:0b:99:14:a4:d5:51:40:b0:4d:
d2:2a:d3:91:08:d6:ec:1b:eb:4c:63:e6:47:b8:78:de:d0:77:
46:ae:cc:0e:ed:ec:44:03:46:af:7e:9b:76:14:6c:06:ca:ac:
62:58:38:67:07:2c:e3:94:b5:a0:9e:7e:ca:f9:08:d2:e7:9d:
69:a6:4c:b2:6f:22:21:c7:fd:11:cc:6c:12:5b:ca:70:5f:f1:
c7:e7:31:f8:b3:ec:28:a2:b3:45:3e:d5:e5:e0:9a:aa:20:53:
2e:b7:83:54:66:2d:08:e2:c1:6f:43:a9:e6:30:a7:53:48:d9:
a5:a7:59:f8:61:d3:8f:a6:68:1f:5a:00:12:d9:f0:b7:f4:1e:
ae:6b:9c:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 18:19:43 2025 by rpki-client