Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/44PWl9t-VK2hhZNHr5AmomvoGFc.roa
File: 44PWl9t-VK2hhZNHr5AmomvoGFc.roa (raw, json)
Hash identifier: OxQ7QHN27yQWahrAlORJzxbYRAyj5Alk9/N2TAEqxrY=
Subject key identifier: E3:83:D6:97:DB:7E:54:AD:A1:85:93:47:AF:90:26:A2:6B:E8:18:57
Certificate issuer: /CN=373b47a3cee79982adb170341d02026027332023
Certificate serial: 01942067CE2ACF7E1A4DF3A588CF85BA03E1
Authority key identifier: 37:3B:47:A3:CE:E7:99:82:AD:B1:70:34:1D:02:02:60:27:33:20:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NztHo87nmYKtsXA0HQICYCczICM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/44PWl9t-VK2hhZNHr5AmomvoGFc.roa
Signing time: Wed 01 Jan 2025 05:47:41 +0000
ROA not before: Wed 01 Jan 2025 05:47:41 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 61167
IP address blocks: 5.159.20.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:ce:2a:cf:7e:1a:4d:f3:a5:88:cf:85:ba:03:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=373b47a3cee79982adb170341d02026027332023
Validity
Not Before: Jan 1 05:47:41 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e383d697db7e54ada1859347af9026a26be81857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:47:a8:32:1e:dd:38:ed:42:20:7e:cf:22:bb:
cc:da:d9:ec:84:8e:fc:59:7d:b7:5c:61:00:ac:e9:
c6:ed:cd:f9:d5:d1:a3:93:00:3f:6a:9b:52:e9:6a:
ec:c1:6a:e1:93:6d:b2:0b:78:f4:85:47:c2:a5:da:
ce:14:54:54:7e:03:b7:67:a8:58:49:e8:bb:9b:8c:
a3:87:0e:7b:f3:2d:3c:4c:64:67:45:d4:2f:06:6e:
61:3d:57:a0:0b:1d:09:df:76:ad:5a:44:90:dd:a4:
56:9e:95:08:57:bd:e4:88:b8:d9:99:1c:6c:70:af:
e9:62:43:66:b3:01:5b:2f:cd:45:8f:0e:19:be:2b:
7d:1c:8a:59:2d:e8:8e:b9:fb:b2:57:e7:7a:42:ab:
0e:a8:75:a8:5d:5c:3d:cf:c5:4e:9b:92:81:5f:8b:
16:75:f8:89:9d:43:af:d4:84:f5:4c:c4:cf:91:4a:
22:ec:70:a8:11:24:d3:f7:d2:23:f1:85:b2:13:35:
10:81:e4:59:68:8e:8d:99:36:47:5d:61:45:af:a7:
8b:23:72:95:6b:73:1d:29:16:69:40:28:d9:78:bd:
9b:b0:05:5c:59:1c:5a:0f:60:f0:f3:d9:6f:f9:31:
09:25:d6:bd:cc:38:7b:50:43:05:66:4c:6a:6e:26:
5a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:83:D6:97:DB:7E:54:AD:A1:85:93:47:AF:90:26:A2:6B:E8:18:57
X509v3 Authority Key Identifier:
keyid:37:3B:47:A3:CE:E7:99:82:AD:B1:70:34:1D:02:02:60:27:33:20:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NztHo87nmYKtsXA0HQICYCczICM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/44PWl9t-VK2hhZNHr5AmomvoGFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/7c2a15-ac4d-464a-a77e-32f9a282f56c/1/NztHo87nmYKtsXA0HQICYCczICM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.159.20.0/24
Signature Algorithm: sha256WithRSAEncryption
64:51:53:eb:cb:bf:9d:f9:d0:93:d3:ae:c2:13:e9:fb:df:04:
da:c1:23:05:f6:f3:4d:fb:e6:69:33:a2:4b:1f:22:de:0c:f9:
bf:f3:6d:db:c8:eb:a2:de:d4:d9:e7:06:72:2c:ff:62:85:4b:
e5:2d:fd:bf:5f:3e:b4:b2:77:55:dc:a9:7f:93:e2:43:d0:cd:
b4:d9:75:3c:5f:11:5d:6d:a4:2b:07:83:07:ba:20:e9:80:bf:
b3:ec:ab:1f:11:00:b7:8c:7f:b9:c0:87:78:e4:36:ec:52:dc:
2c:bf:0c:53:04:21:1b:4d:bf:5e:32:a8:1f:95:3f:a9:4f:18:
2b:8b:e6:15:a5:a4:af:16:fe:d4:ac:4d:4d:91:a8:d4:57:e6:
05:b2:99:fd:f4:10:6c:47:34:e7:84:e7:53:19:21:7a:8f:10:
d0:d0:b4:54:cb:0c:50:5c:1d:84:5b:1c:5c:44:dd:e9:16:6a:
1f:3b:c0:aa:53:26:62:92:61:52:be:30:5e:6e:8f:b0:36:2a:
11:68:96:ca:eb:89:59:d0:42:07:54:ee:1e:ec:4b:54:84:69:
18:75:04:c3:be:b7:d2:49:07:ab:e8:36:44:73:47:a4:4f:49:
e0:a6:98:98:54:b4:3d:cd:07:e1:c2:79:60:0e:ba:a4:61:08:
a0:3c:3b:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 19:09:24 2025 by rpki-client