Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/xREpLh3GVdj1ODzVkMBccz2oKXk.roa
File: xREpLh3GVdj1ODzVkMBccz2oKXk.roa (raw, json)
Hash identifier: xbsUY7nQRM1AibU2b9y10o7TiQNt9Xvh0b0IzmFT71c=
Subject key identifier: C5:11:29:2E:1D:C6:55:D8:F5:38:3C:D5:90:C0:5C:73:3D:A8:29:79
Certificate issuer: /CN=91a1173a70e41f4593547669ada22f0d7f68f354
Certificate serial: 01942067F68178BEA81008D290C9AAD2142E
Authority key identifier: 91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/xREpLh3GVdj1ODzVkMBccz2oKXk.roa
Signing time: Wed 01 Jan 2025 05:47:51 +0000
ROA not before: Wed 01 Jan 2025 05:47:51 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209509
IP address blocks: 152.89.176.0/22 maxlen: 24
152.89.176.0/24 maxlen: 24
152.89.177.0/24 maxlen: 24
152.89.178.0/24 maxlen: 24
152.89.179.0/24 maxlen: 24
2a09:3340::/29 maxlen: 32
2a09:3340::/32 maxlen: 32
2a09:3341::/32 maxlen: 32
2a09:3342::/32 maxlen: 32
2a09:3343::/32 maxlen: 32
2a09:3344::/32 maxlen: 32
2a09:3345::/32 maxlen: 32
2a09:3346::/32 maxlen: 32
2a09:3347::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:f6:81:78:be:a8:10:08:d2:90:c9:aa:d2:14:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91a1173a70e41f4593547669ada22f0d7f68f354
Validity
Not Before: Jan 1 05:47:51 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=c511292e1dc655d8f5383cd590c05c733da82979
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:be:98:0e:38:b0:05:a4:d8:c8:20:0e:04:0f:
39:c5:5c:67:e0:ff:98:2f:10:cd:51:7c:ad:50:88:
8c:52:0e:67:d6:df:3f:de:4d:64:54:ab:7f:8f:4d:
51:04:1c:60:0f:e6:9b:46:98:ef:d6:99:f7:f1:89:
15:e5:d0:e7:c0:3c:6c:d8:e7:17:0d:2b:76:a7:11:
c7:16:ba:5b:da:cd:46:e8:ec:9c:d0:c9:7d:96:df:
34:16:91:85:f4:84:a1:74:f8:f5:cd:03:e6:2c:54:
c0:45:7e:96:62:73:ac:0d:ba:54:83:ec:cc:44:66:
c4:09:38:e0:6d:fc:0e:ec:61:c2:19:9a:cd:68:f2:
8a:d4:b6:ad:70:b4:ff:68:fc:c3:db:38:6c:91:48:
63:22:c4:4d:49:d2:f7:1c:23:32:a1:ee:be:c0:46:
fe:d7:e6:ce:27:f5:a0:eb:66:0d:7b:3f:c2:c2:f5:
e5:65:c2:91:16:79:f3:ed:75:41:fc:d1:39:fd:da:
06:01:cf:c7:9d:6b:e0:38:ea:23:7b:f5:56:f1:4f:
ea:a7:c0:69:57:2b:b0:87:4c:7e:70:da:e4:82:62:
5c:d8:68:dd:08:55:aa:ca:5f:93:1b:39:5f:7a:b7:
06:04:d3:8f:cb:c6:45:a5:51:a5:e1:56:66:5a:97:
67:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:11:29:2E:1D:C6:55:D8:F5:38:3C:D5:90:C0:5C:73:3D:A8:29:79
X509v3 Authority Key Identifier:
keyid:91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/xREpLh3GVdj1ODzVkMBccz2oKXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
152.89.176.0/22
IPv6:
2a09:3340::/29
Signature Algorithm: sha256WithRSAEncryption
7c:23:85:3d:b9:6f:24:84:36:cd:0a:a1:e8:90:ca:42:6b:a4:
24:f5:ba:4d:8f:de:29:35:19:a4:78:32:07:67:7f:0a:be:5c:
48:c0:d6:14:8f:8e:8a:3d:61:6e:64:97:5e:1a:18:24:c7:99:
46:73:d9:91:d6:1c:cf:91:ec:f8:0c:ea:1f:b2:c5:49:7f:15:
97:b8:47:c7:33:cf:04:db:25:18:c1:2a:72:6a:43:7b:e6:c5:
c4:06:1a:5d:3a:fe:b0:88:a7:b4:64:e8:58:04:bd:ea:69:cc:
8e:f3:a1:38:ef:1b:e7:ab:d5:39:cc:00:5d:2d:8e:69:cb:6f:
96:7c:44:71:32:03:f8:3b:25:c2:db:11:f3:96:12:fb:fe:7b:
42:53:23:3e:0a:e5:a3:ff:f7:55:73:73:45:6a:64:f0:df:76:
95:e3:db:32:0f:ac:a5:c0:14:fb:a5:6f:27:a7:80:9f:f2:d2:
41:17:92:77:e5:09:a3:12:34:07:80:a9:15:e3:f4:5c:85:7c:
6e:25:4e:63:ea:7b:10:84:eb:b9:7d:b4:82:c7:29:f3:16:44:
7a:df:27:cf:af:45:e5:11:97:8c:c7:08:4b:63:5a:fc:8a:38:
22:9a:3f:70:e1:38:ca:94:62:66:76:6c:86:22:92:6e:58:9e:
19:a8:88:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 10:01:54 2025 by rpki-client