Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/z_ymd7tHSlm_rmTAykuJ944SJZU.roa
File: z_ymd7tHSlm_rmTAykuJ944SJZU.roa (raw, json)
Hash identifier: arBCwgxjD2OcevnfTJJCzPi43dKp3HfsbnMHINjxg+g=
Subject key identifier: CF:FC:A6:77:BB:47:4A:59:BF:AE:64:C0:CA:4B:89:F7:8E:12:25:95
Certificate issuer: /CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Certificate serial: 019427B5634DE5509D0E5FAB8D53F225D75A
Authority key identifier: 75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/z_ymd7tHSlm_rmTAykuJ944SJZU.roa
Signing time: Thu 02 Jan 2025 15:49:46 +0000
ROA not before: Thu 02 Jan 2025 15:49:46 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 51248
IP address blocks: 192.145.98.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:63:4d:e5:50:9d:0e:5f:ab:8d:53:f2:25:d7:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7508475ff0d8ec960336016e0e04221a98e5ecf2
Validity
Not Before: Jan 2 15:49:46 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=cffca677bb474a59bfae64c0ca4b89f78e122595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8b:27:29:63:57:52:a8:9a:82:40:56:3a:a9:
70:49:0e:da:5d:3c:5a:41:c0:a0:64:63:ef:4f:04:
e6:56:4e:e4:86:24:59:26:61:7c:52:a0:18:19:86:
71:63:18:4d:21:4f:e2:36:51:0c:20:e1:95:f7:b3:
4c:d1:5b:3a:e6:3f:0e:e5:5f:b2:3e:e1:f8:98:91:
0e:4b:34:71:10:4a:22:f8:38:25:57:4b:a7:af:2c:
18:e5:45:01:6a:cb:c7:4f:27:fe:af:cf:dc:0f:e0:
9e:ab:57:29:88:d7:6c:0c:9b:11:23:92:af:7e:df:
c9:f2:29:6e:49:98:25:19:67:85:9e:4d:3c:74:e0:
37:1e:62:76:9f:fb:1d:c1:0e:c1:9d:ce:8e:b1:18:
83:86:ee:81:59:f3:54:31:3d:16:64:fd:fc:fe:24:
49:fb:2e:06:fe:4a:00:a6:0a:0a:5d:88:8b:74:5a:
75:1f:28:a0:15:64:0d:20:f5:5d:72:53:f4:75:70:
9f:fe:c2:15:53:9f:29:38:83:93:e5:e3:5c:64:83:
4b:3d:5f:0c:08:e2:a5:60:b6:58:db:23:5b:91:a9:
19:71:37:e2:58:09:71:f7:8b:f6:fa:de:2e:19:10:
7d:df:96:39:18:19:69:62:fe:75:35:52:db:b8:5e:
c5:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:FC:A6:77:BB:47:4A:59:BF:AE:64:C0:CA:4B:89:F7:8E:12:25:95
X509v3 Authority Key Identifier:
keyid:75:08:47:5F:F0:D8:EC:96:03:36:01:6E:0E:04:22:1A:98:E5:EC:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dQhHX_DY7JYDNgFuDgQiGpjl7PI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/z_ymd7tHSlm_rmTAykuJ944SJZU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/1fa6a3-8dc5-4c35-a49b-171c367be782/1/dQhHX_DY7JYDNgFuDgQiGpjl7PI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.98.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:7a:42:a4:57:e2:45:0f:69:b5:86:89:e3:56:46:0c:c3:02:
d8:78:3c:9d:5a:3a:15:9e:fc:18:e7:62:e2:be:13:4e:f9:62:
0e:d6:2c:86:dd:4d:b9:11:ea:40:c9:e2:7e:b5:fb:63:c5:5f:
73:c1:94:34:45:d4:62:28:f6:ae:89:e6:fa:56:ee:f8:b2:bc:
e2:7d:4b:d3:a1:1d:1d:89:a2:49:d1:d8:fc:d7:ec:71:7f:30:
04:81:a8:84:21:3f:1f:64:75:17:dc:16:d0:7f:ae:b6:45:eb:
6a:7a:bf:12:48:ba:84:c6:76:84:6c:54:44:71:f9:93:c5:5a:
96:0d:75:38:11:99:32:c9:e7:5a:fd:db:cb:58:51:2a:a7:64:
f2:25:48:99:56:27:8e:57:4f:0a:0e:dc:ae:00:48:40:a0:93:
68:ba:a6:2e:89:2a:b7:34:67:6f:9d:6f:43:e8:a1:4d:f2:0e:
34:dc:6d:6b:2f:67:6d:00:8b:50:30:e1:29:72:28:ea:f5:66:
e8:11:d7:b4:34:41:f0:99:60:bc:8b:c0:4a:00:1f:30:b1:ba:
c2:12:f9:e1:a7:a1:0d:0a:b4:bd:34:cc:d0:ef:6b:74:1f:1e:
64:18:e9:93:e1:fc:4d:ad:7b:4b:87:a8:26:0e:19:c2:a4:6d:
1b:f5:29:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 19:08:50 2025 by rpki-client