Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/TiiDOYmbbq5aprQgzhYqW-_adjA.roa
File: TiiDOYmbbq5aprQgzhYqW-_adjA.roa (raw, json)
Hash identifier: Wj4aJ+Nw7QdlTjFHmiYIFTSRfin7So6aCEpwmDLL94I=
Subject key identifier: 4E:28:83:39:89:9B:6E:AE:5A:A6:B4:20:CE:16:2A:5B:EF:DA:76:30
Certificate issuer: /CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Certificate serial: 019496E1C8481C9494D0370A9FEC8E63A275
Authority key identifier: D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/TiiDOYmbbq5aprQgzhYqW-_adjA.roa
Signing time: Fri 24 Jan 2025 05:56:06 +0000
ROA not before: Fri 24 Jan 2025 05:56:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 137409
IP address blocks: 85.203.23.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:96:e1:c8:48:1c:94:94:d0:37:0a:9f:ec:8e:63:a2:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d45bdf6eec08370ae1f67e83f99b5ac1fe26872c
Validity
Not Before: Jan 24 05:56:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4e288339899b6eae5aa6b420ce162a5befda7630
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:0d:6b:4e:3b:05:65:b6:99:35:38:1a:1a:44:
40:ca:22:bd:ac:3e:87:41:8d:6e:e0:e3:ea:8b:b2:
ed:ef:52:f7:11:e6:3a:7d:e4:a1:f2:c2:8f:d3:f2:
ca:05:01:4a:fe:0f:9f:b2:e8:40:a8:c5:be:b0:ba:
16:44:e7:38:05:ac:28:69:a1:70:c5:60:6d:0b:39:
f0:fb:41:60:c5:40:37:cf:55:44:10:61:a7:1e:13:
3c:73:56:80:29:e5:8f:36:6c:05:bd:31:d8:a6:68:
a6:4f:20:82:21:39:6c:e0:2c:5d:d6:88:cf:f1:6e:
e8:a5:83:74:ed:f5:ea:11:d8:ab:f7:dd:98:14:9c:
e1:22:ff:47:ff:93:d1:77:8d:4c:41:8b:5e:f7:23:
cb:ee:d2:e8:8a:d9:81:03:85:03:4e:ec:47:0d:57:
65:b6:44:5b:43:3c:bf:7f:17:42:b8:d4:19:66:07:
30:28:f4:ce:ed:9b:16:ca:03:b4:d6:60:79:ef:f0:
9b:d2:c8:99:3c:c1:7a:d3:6b:1f:6b:27:a2:59:79:
39:22:62:83:80:4d:6a:a6:53:98:aa:85:84:18:37:
0c:9d:21:36:12:2c:cb:a6:1c:ef:da:7e:bf:45:e8:
af:a5:51:93:32:f6:16:5e:b8:39:88:63:e9:3d:31:
7e:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:28:83:39:89:9B:6E:AE:5A:A6:B4:20:CE:16:2A:5B:EF:DA:76:30
X509v3 Authority Key Identifier:
keyid:D4:5B:DF:6E:EC:08:37:0A:E1:F6:7E:83:F9:9B:5A:C1:FE:26:87:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1FvfbuwINwrh9n6D-Ztawf4mhyw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/TiiDOYmbbq5aprQgzhYqW-_adjA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e2dfff-8ba8-4bcf-ac31-98463859ecc1/1/1FvfbuwINwrh9n6D-Ztawf4mhyw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.203.23.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:c5:a1:7c:7c:c7:0e:56:f8:67:0f:5d:6d:4c:96:7c:0e:15:
67:d8:bb:bf:27:d4:f7:99:9f:75:6d:80:98:88:05:e1:89:4b:
b5:17:2b:32:63:69:45:bd:76:cb:14:58:cb:a0:88:f4:65:a8:
2a:b1:71:b3:2e:66:53:c6:d5:77:2e:be:fb:b7:c4:54:28:17:
9d:17:ac:3d:24:c4:42:20:0a:45:f8:29:ef:00:6a:09:ee:d9:
d7:b6:cd:55:4d:cd:68:ff:6f:d8:ee:f2:ce:b8:f2:55:3a:f9:
f8:ea:ea:61:20:61:a5:6f:f5:31:a8:3f:55:cd:b8:ba:f5:76:
2c:e4:4c:49:23:7a:03:3e:92:dd:ac:5d:96:9b:09:36:e6:3c:
7f:45:af:52:e8:58:60:5c:3e:3f:29:22:ff:3c:34:02:75:7f:
5b:2c:26:bc:ec:ec:aa:4b:26:54:85:f7:7b:82:24:7a:8c:b8:
c7:42:3f:42:73:c0:c1:a3:b0:fe:33:15:28:48:44:06:5e:22:
c5:e6:79:24:2c:b9:21:49:cd:b8:15:63:e6:eb:8f:ff:d6:ef:
74:92:b4:b1:24:82:3f:9c:78:ed:5f:cd:64:aa:bb:ab:ec:35:
c8:8c:35:85:be:f9:55:93:40:ca:8d:b3:c6:1e:b8:a8:c3:02:
33:52:cf:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:59:21 2025 by rpki-client