Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/cdbf8f-6e67-4ab1-bf18-48ef8e1114e4/1/5juFOi12IlXtCkf2DtKHvFjQ7Jk.roa
File: 5juFOi12IlXtCkf2DtKHvFjQ7Jk.roa (raw, json)
Hash identifier: ww1Ap6yHRZv0yJoUDsvGuz2Z305tTs+DxDhKtXDBfFg=
Subject key identifier: E6:3B:85:3A:2D:76:22:55:ED:0A:47:F6:0E:D2:87:BC:58:D0:EC:99
Certificate issuer: /CN=69c67969c3c9d8fadbc9a73e3ff56361d0203b71
Certificate serial: 01942521D84E26C3946F9736FD02CD05CCFE
Authority key identifier: 69:C6:79:69:C3:C9:D8:FA:DB:C9:A7:3E:3F:F5:63:61:D0:20:3B:71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/acZ5acPJ2Prbyac-P_VjYdAgO3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/cdbf8f-6e67-4ab1-bf18-48ef8e1114e4/1/5juFOi12IlXtCkf2DtKHvFjQ7Jk.roa
Signing time: Thu 02 Jan 2025 03:49:22 +0000
ROA not before: Thu 02 Jan 2025 03:49:22 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201359
IP address blocks: 5.102.131.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:d8:4e:26:c3:94:6f:97:36:fd:02:cd:05:cc:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=69c67969c3c9d8fadbc9a73e3ff56361d0203b71
Validity
Not Before: Jan 2 03:49:22 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e63b853a2d762255ed0a47f60ed287bc58d0ec99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ec:e4:23:27:f2:89:c6:61:e2:c3:70:f3:e5:
92:bb:3d:cf:d6:c5:c6:07:dc:fe:10:9b:49:bc:b3:
48:62:46:32:33:d5:02:53:6d:8c:ac:a7:7a:77:f1:
2e:62:65:8a:4c:95:c6:26:80:a2:ea:06:aa:1c:4d:
f1:44:53:0b:21:d3:cd:d5:ea:bc:b2:77:b2:eb:cc:
95:62:92:42:d9:fb:5c:29:14:71:c2:aa:35:2a:12:
61:23:d4:f8:6a:0c:2d:34:21:6b:83:f4:8d:3b:55:
1f:10:f1:4f:d6:9c:5d:71:49:35:d1:69:31:09:7f:
fb:a7:35:52:da:71:17:b3:12:0c:47:18:13:41:c1:
59:08:2b:99:42:2b:ad:9a:bd:39:1c:c4:76:40:1d:
62:39:75:2d:d3:3d:ff:10:7a:56:57:19:30:a1:af:
16:94:7e:ee:66:20:76:41:e5:a4:de:a1:2f:78:5a:
fa:7f:13:75:29:6b:b9:07:74:88:26:73:c1:b4:82:
21:c8:3d:a6:dc:63:ab:76:de:9a:16:18:51:71:79:
34:c0:b9:00:ce:fc:71:b1:c1:2c:12:99:f8:42:16:
94:86:53:a0:df:33:31:1d:92:12:34:d2:e8:fe:df:
34:9d:f1:79:e7:42:d4:c9:dd:de:34:04:58:8f:05:
74:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:3B:85:3A:2D:76:22:55:ED:0A:47:F6:0E:D2:87:BC:58:D0:EC:99
X509v3 Authority Key Identifier:
keyid:69:C6:79:69:C3:C9:D8:FA:DB:C9:A7:3E:3F:F5:63:61:D0:20:3B:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/acZ5acPJ2Prbyac-P_VjYdAgO3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/cdbf8f-6e67-4ab1-bf18-48ef8e1114e4/1/5juFOi12IlXtCkf2DtKHvFjQ7Jk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/cdbf8f-6e67-4ab1-bf18-48ef8e1114e4/1/acZ5acPJ2Prbyac-P_VjYdAgO3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.102.131.0/24
Signature Algorithm: sha256WithRSAEncryption
56:24:33:a6:ba:0d:1b:cb:4d:a2:85:24:b7:d2:9a:40:19:13:
2e:30:88:80:d8:4b:de:9e:f3:5a:ac:d3:d6:92:d9:3a:5d:55:
ad:12:bf:7b:09:8c:18:3b:6f:4d:91:5d:12:92:89:88:87:b3:
19:1d:b2:43:90:82:6a:6a:af:73:ae:32:ca:23:28:9d:02:e4:
bc:69:5c:a0:6f:9e:9e:57:07:b2:13:e7:e0:e7:3d:b5:34:f7:
26:7e:19:32:52:aa:3c:97:ba:a8:95:52:d0:a9:27:bd:b2:63:
17:d8:6b:9e:cc:c7:a4:20:25:6f:d7:3e:e2:68:75:a0:d1:d0:
54:34:96:bb:77:49:5c:94:d2:88:e8:c9:02:08:97:83:9b:8c:
90:41:b9:a6:8e:ca:d0:f5:49:32:f6:5b:f7:7b:cb:2f:77:e2:
f5:bb:bc:08:f2:bf:6c:a9:d2:71:9f:5d:89:d5:0d:a8:73:87:
17:a0:7a:e1:1e:0c:11:8c:50:f4:32:03:b6:6a:4c:a7:e1:df:
ff:b6:02:52:87:3a:e9:e6:35:32:9a:3a:71:35:32:b8:6b:a1:
b2:dc:b6:b1:b8:0b:18:32:a1:e5:17:1a:eb:50:18:b7:f0:a7:
92:1a:f2:50:1b:cc:8a:4e:35:51:97:b8:84:bb:15:b0:b3:52:
25:71:69:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 00:48:37 2025 by rpki-client