Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/9wh4IjR2WdijxIEialrBfGScnoA.roa
File: 9wh4IjR2WdijxIEialrBfGScnoA.roa (raw, json)
Hash identifier: aGpT2hqWZX/M5kbSljEdFZvRHYfWgQ/Qc0ertXxiLJ4=
Subject key identifier: F7:08:78:22:34:76:59:D8:A3:C4:81:22:6A:5A:C1:7C:64:9C:9E:80
Certificate issuer: /CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Certificate serial: 0194214453366D84C959911761F518D9D17A
Authority key identifier: E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/9wh4IjR2WdijxIEialrBfGScnoA.roa
Signing time: Wed 01 Jan 2025 09:48:33 +0000
ROA not before: Wed 01 Jan 2025 09:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137
IP address blocks: 151.97.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:44:53:36:6d:84:c9:59:91:17:61:f5:18:d9:d1:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e6234ed3d8ca96dc518d35c1e7c92bebfcf6ce4d
Validity
Not Before: Jan 1 09:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=f7087822347659d8a3c481226a5ac17c649c9e80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:48:e7:ac:a1:bd:58:1b:ba:ed:27:cd:dc:86:
0a:b1:ed:45:dc:03:f2:01:60:9b:71:c6:e9:00:a4:
11:b4:a6:de:62:04:5e:7b:45:86:48:98:08:eb:02:
ee:18:d1:88:d2:17:38:b8:d1:c2:0a:d4:0a:79:b3:
75:0a:a9:94:3d:59:ff:50:1f:f3:6d:fe:53:3c:35:
8e:12:9a:8f:4f:cd:ac:8d:01:e7:17:ab:8f:12:79:
84:a4:e2:5c:ab:08:6a:1e:97:0e:88:19:6a:21:73:
0a:97:ef:12:77:bf:c4:59:3b:d0:4f:29:0a:28:c5:
ec:80:22:01:dd:e8:96:59:2c:68:f4:f0:81:52:1b:
1d:14:84:47:39:e5:39:0b:22:73:dc:82:5b:1f:32:
3e:22:a4:98:6f:b0:27:08:bd:ca:ff:f1:c0:00:e1:
a7:c8:7c:e3:f4:09:7d:f4:1a:4d:e2:c5:45:f6:bb:
50:1c:48:95:8e:64:b6:24:97:ca:43:d1:3a:0d:76:
f2:87:e3:43:5b:3e:d1:da:c0:61:b9:94:ec:16:75:
d4:d8:28:7e:ef:4f:1e:7d:a4:1a:2d:28:e4:4a:05:
29:6e:35:21:37:e7:0e:47:3b:c6:3c:fa:82:a8:fd:
d8:de:44:52:51:02:20:19:82:ac:2e:0b:d1:94:d6:
1a:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:08:78:22:34:76:59:D8:A3:C4:81:22:6A:5A:C1:7C:64:9C:9E:80
X509v3 Authority Key Identifier:
keyid:E6:23:4E:D3:D8:CA:96:DC:51:8D:35:C1:E7:C9:2B:EB:FC:F6:CE:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5iNO09jKltxRjTXB58kr6_z2zk0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/9wh4IjR2WdijxIEialrBfGScnoA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/9b674c-3657-4c25-9953-3f7040997682/1/5iNO09jKltxRjTXB58kr6_z2zk0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
151.97.0.0/16
Signature Algorithm: sha256WithRSAEncryption
34:06:13:1f:3c:9d:eb:51:68:b8:21:ce:48:27:97:20:c4:43:
95:23:15:b3:ce:0d:f9:6d:92:0d:13:c8:95:f4:03:4f:b9:da:
ce:f1:e8:63:aa:9c:24:9c:1f:05:dd:46:8e:ea:9f:7a:0f:45:
93:08:22:01:ae:c5:32:59:2f:79:77:9a:7c:27:f6:05:29:40:
09:5e:b0:ae:2a:78:94:f6:6e:bb:08:a6:ec:b2:7a:2c:7e:ed:
82:05:18:d2:7d:1a:f7:3d:00:9f:c2:5c:33:41:74:2f:fb:95:
3a:4c:0e:de:ea:f3:90:d4:5b:ef:6c:e8:4a:21:b5:42:87:3f:
d7:29:c4:b3:c6:ad:07:47:ea:08:4e:90:72:90:c9:1c:2a:01:
d5:00:e0:33:9e:fc:c1:ba:a0:59:3a:6f:19:56:fc:c1:f7:a6:
63:a0:d0:82:d0:0a:13:37:41:f8:8d:51:17:f6:f0:b0:00:88:
a7:4e:9b:3d:f1:55:09:3e:53:f3:9c:f0:41:1e:27:fe:b0:44:
2a:1d:9e:44:ad:ba:d4:9a:6e:d9:e2:6b:6e:8a:19:7c:3c:b1:
4f:3b:60:24:96:1f:73:df:57:32:66:34:7d:fe:3e:a4:90:03:
9d:3f:1a:4e:4b:92:60:5b:b2:33:4f:a0:24:35:10:e3:8e:20:
53:8c:e6:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 05:47:39 2025 by rpki-client