Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/iGjDHiacDg07Nn_8t_jKPZUdyQo.roa
File: iGjDHiacDg07Nn_8t_jKPZUdyQo.roa (raw, json)
Hash identifier: N4xKDLTQx85Mq7u4tlZrfDt5CuWu99EJK6G+vL3Pee0=
Subject key identifier: 88:68:C3:1E:26:9C:0E:0D:3B:36:7F:FC:B7:F8:CA:3D:95:1D:C9:0A
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 019427B5656F4BEEAA6FB740579347A79977
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/iGjDHiacDg07Nn_8t_jKPZUdyQo.roa
Signing time: Thu 02 Jan 2025 15:49:46 +0000
ROA not before: Thu 02 Jan 2025 15:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 60548
IP address blocks: 89.23.109.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:65:6f:4b:ee:aa:6f:b7:40:57:93:47:a7:99:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Jan 2 15:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8868c31e269c0e0d3b367ffcb7f8ca3d951dc90a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:6d:3d:41:6c:98:37:25:43:a9:31:ba:d2:c8:
c6:45:3f:c8:82:78:32:53:49:42:26:eb:e1:34:3f:
8f:5e:90:ac:43:8c:2d:d3:a1:b0:e8:61:4a:9b:d6:
27:a6:9c:bc:02:de:c8:e1:4d:02:a9:72:2e:9a:57:
77:7e:d4:3c:26:20:a3:d2:d1:8e:99:5b:55:f2:81:
63:4e:3d:ad:09:ee:a3:d5:bc:09:b4:27:91:58:de:
27:43:ed:ce:f9:5c:b0:fb:79:61:0c:cb:68:2b:b3:
aa:d6:6a:b2:1a:f2:63:1e:14:14:29:58:ed:61:5d:
a7:2b:7c:74:57:31:f4:c9:e8:b9:bb:72:6b:88:86:
2e:37:7a:21:f7:bd:da:52:6e:44:af:6e:05:80:45:
45:f2:ec:5d:19:89:ba:9c:28:4b:90:1d:f1:3e:69:
3b:bb:ab:e2:2b:4b:d4:89:c5:e6:9b:98:65:40:9c:
62:b3:96:a6:33:52:c9:14:2f:f5:ef:d2:90:4e:87:
92:12:8c:31:4c:30:3e:92:6e:d9:3c:62:01:59:3e:
0b:a9:db:62:f0:ab:98:96:39:b5:34:0a:b4:a3:da:
54:ed:bc:f9:05:eb:5d:38:99:20:47:fa:79:a5:87:
72:28:eb:1a:91:0e:0f:29:ab:46:c2:64:f7:36:8b:
1b:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:68:C3:1E:26:9C:0E:0D:3B:36:7F:FC:B7:F8:CA:3D:95:1D:C9:0A
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/iGjDHiacDg07Nn_8t_jKPZUdyQo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.23.109.0/24
Signature Algorithm: sha256WithRSAEncryption
45:55:36:15:9a:dc:f5:4b:fc:46:f7:cb:23:4e:5c:46:50:2e:
71:c6:5d:0d:f0:e6:00:58:38:7a:6a:fc:80:10:60:f1:a6:11:
6d:69:93:72:17:6e:b9:0e:28:a9:99:f4:cd:2b:05:4f:27:a9:
0d:ed:ae:2e:2d:74:1e:21:2a:ab:b6:2f:a5:0e:14:37:dc:37:
fc:9c:3a:74:7d:26:40:a7:d4:00:5d:04:a6:d7:f1:5f:aa:c1:
e9:fd:ee:83:48:00:19:cd:f9:4d:b7:e0:50:08:c4:a5:0d:c0:
30:0f:e4:b2:2f:8a:e1:e2:de:d1:ff:0c:fb:0c:81:e6:1d:42:
a3:4a:bb:9c:a8:e7:c3:3f:fe:b2:10:10:31:03:59:c3:b0:d0:
e9:46:46:e5:e8:e8:ac:34:e3:79:e8:49:f0:a7:3e:b6:ac:9f:
c3:fb:a4:ae:41:03:77:a6:f8:92:9f:06:57:1f:17:51:69:6a:
f7:c4:2d:f5:20:b2:dc:bf:3d:02:31:32:c9:20:a8:44:c1:4e:
72:5b:02:2d:b5:7a:e3:41:dc:dd:5b:71:ba:a9:05:5d:d7:47:
60:7f:e2:94:74:ae:04:04:69:6a:75:11:9e:a6:7b:27:a5:bf:
f7:1c:31:6b:a3:fa:ad:86:8e:75:de:98:11:1a:db:87:cc:c7:
ca:3a:00:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:08:33 2025 by rpki-client