Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/ce7bRJLV8rerlyXCA59ggsuaJJ4.roa
File: ce7bRJLV8rerlyXCA59ggsuaJJ4.roa (raw, json)
Hash identifier: D1jC3YawC6llHDKXJqNdtBd6CMif5efjxFmdAEH9kG0=
Subject key identifier: 71:EE:DB:44:92:D5:F2:B7:AB:97:25:C2:03:9F:60:82:CB:9A:24:9E
Certificate issuer: /CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Certificate serial: 019421B1B597941471BFFEAEF01DEA817B93
Authority key identifier: EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/ce7bRJLV8rerlyXCA59ggsuaJJ4.roa
Signing time: Wed 01 Jan 2025 11:48:01 +0000
ROA not before: Wed 01 Jan 2025 11:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 203230
IP address blocks: 89.42.160.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b1:b5:97:94:14:71:bf:fe:ae:f0:1d:ea:81:7b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ebf42e80602aedf58a3c7a81883c1a34f69d2fb4
Validity
Not Before: Jan 1 11:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=71eedb4492d5f2b7ab9725c2039f6082cb9a249e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ca:07:3f:7b:46:fe:71:f6:af:23:29:f9:57:
d3:5a:eb:47:d1:c9:8a:96:a7:06:c0:96:e0:2c:cd:
99:42:4d:48:9a:b7:ab:cd:3c:55:6b:b5:c2:45:6b:
92:3f:f7:58:34:79:3b:8f:24:47:35:65:8d:7a:ff:
48:28:e1:8e:15:bc:4e:96:7e:39:4d:cf:64:d7:b1:
5b:06:13:d6:a6:09:62:88:0f:d0:66:4e:61:ca:8e:
ef:db:0e:9e:77:f9:4e:01:3d:af:20:80:55:74:9b:
c5:f5:ef:b8:c5:e6:83:6a:33:fa:e4:5a:f1:b7:a7:
17:90:36:a4:5d:bd:b5:dd:b2:58:ff:99:80:ca:40:
a0:54:70:bc:c0:4e:be:bc:69:eb:d0:58:92:c0:d1:
e8:61:64:7d:a7:69:51:f0:fe:80:f4:a7:5b:69:45:
de:a7:b5:87:1b:22:1e:b9:f7:27:f0:a9:52:4f:82:
42:0a:0d:9e:78:73:b4:de:a0:50:53:3f:ee:03:86:
8f:26:98:03:4c:ff:7c:ce:6d:af:21:33:9e:a9:71:
d1:92:88:b7:95:33:3f:3a:49:07:61:a2:3b:ee:2a:
55:45:fe:8d:7a:21:e9:9e:3b:6c:ea:22:6b:b4:21:
47:07:39:77:b1:ed:1e:70:f0:d9:51:71:2c:ad:a7:
5b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:EE:DB:44:92:D5:F2:B7:AB:97:25:C2:03:9F:60:82:CB:9A:24:9E
X509v3 Authority Key Identifier:
keyid:EB:F4:2E:80:60:2A:ED:F5:8A:3C:7A:81:88:3C:1A:34:F6:9D:2F:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6_QugGAq7fWKPHqBiDwaNPadL7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/ce7bRJLV8rerlyXCA59ggsuaJJ4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0952d4-4a49-447d-ad3c-1903edafa8bf/1/6_QugGAq7fWKPHqBiDwaNPadL7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.42.160.0/23
Signature Algorithm: sha256WithRSAEncryption
03:89:3c:1b:33:d3:6f:9c:49:f6:fe:2d:8c:b8:ad:fe:5c:e8:
b9:e6:f4:80:3c:88:aa:26:1c:af:f8:14:f5:46:93:3b:33:4e:
0c:06:83:61:a3:e0:6a:c9:ee:bc:98:09:6b:84:b0:92:94:43:
37:69:86:1e:ba:e2:0c:16:08:9d:10:34:a2:a3:68:9f:7a:99:
0e:f5:ee:90:a0:04:8b:87:08:84:66:59:1d:ec:76:81:a3:7f:
a8:4a:d0:8d:6b:47:c8:f0:bb:25:22:f6:b7:17:91:3f:49:05:
1b:d6:1e:1d:23:2d:cb:3c:1c:e6:14:5f:ce:3d:95:e8:16:cd:
b5:79:7d:dd:c4:6c:e3:98:37:df:5f:e9:11:40:17:14:35:0d:
f2:ba:39:d1:7c:96:f0:6e:1e:ab:07:bf:81:20:5e:65:10:1b:
16:79:25:9a:87:bd:24:c7:16:30:e8:e0:bd:8a:ad:3e:98:91:
41:2c:26:9f:ab:b6:26:a2:28:cd:ad:1f:1c:45:e0:4a:ad:dc:
ef:16:20:de:22:13:e6:d4:49:0f:1a:57:12:99:f3:38:7c:bd:
79:66:d8:ef:59:ae:3f:10:75:5c:46:f4:e6:85:58:a2:61:3c:
77:82:88:dc:05:ff:f8:ce:44:c4:90:b5:af:e7:9a:9b:e2:b8:
5d:f5:d3:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 02:56:38 2025 by rpki-client