Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/InAYg7kchm6hoE6SFVJqN5VO9jI.roa
File: InAYg7kchm6hoE6SFVJqN5VO9jI.roa (raw, json)
Hash identifier: QxF7Lo3czD2q4Tr7NHUd/cpUnQ6rJyTxBt1Fv/I4tgU=
Subject key identifier: 22:70:18:83:B9:1C:86:6E:A1:A0:4E:92:15:52:6A:37:95:4E:F6:32
Certificate issuer: /CN=2d28cfa3fd2da9caaa659284758dee67099934f8
Certificate serial: 019427B5B7AF238CB664CA933211ECB0E73C
Authority key identifier: 2D:28:CF:A3:FD:2D:A9:CA:AA:65:92:84:75:8D:EE:67:09:99:34:F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LSjPo_0tqcqqZZKEdY3uZwmZNPg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/InAYg7kchm6hoE6SFVJqN5VO9jI.roa
Signing time: Thu 02 Jan 2025 15:50:07 +0000
ROA not before: Thu 02 Jan 2025 15:50:07 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 212648
IP address blocks: 217.145.231.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:b7:af:23:8c:b6:64:ca:93:32:11:ec:b0:e7:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d28cfa3fd2da9caaa659284758dee67099934f8
Validity
Not Before: Jan 2 15:50:07 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=22701883b91c866ea1a04e9215526a37954ef632
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d6:a0:67:0d:5f:24:03:43:2a:15:25:5a:41:
bc:17:72:91:b1:c6:23:3c:2c:02:c7:58:34:64:66:
cf:c4:66:5d:3b:2e:88:00:89:06:4c:bb:03:ed:b1:
2d:4d:61:9d:85:9a:f2:12:fe:b3:0b:75:e5:dd:ca:
39:1a:6a:a3:2c:11:82:78:ee:75:3e:86:94:78:6b:
00:50:6c:1e:51:12:6c:9f:7b:5c:7a:68:3d:db:4f:
9c:cc:77:35:0e:7e:5d:b4:b1:01:98:45:26:f1:45:
10:1b:b2:eb:b0:82:66:6a:19:13:e0:f7:db:f5:37:
65:93:e9:5d:68:44:b2:c9:bd:2b:44:ed:55:b1:83:
87:99:ec:98:33:78:01:f6:5c:b3:76:a1:54:01:b7:
a0:42:0a:14:c5:d1:3f:c0:e3:66:57:17:9e:fd:04:
44:ec:0d:da:56:64:93:44:07:0b:18:35:72:aa:8a:
00:cf:4f:bc:6a:11:72:07:c6:43:2d:10:a0:db:90:
87:9f:79:fa:9a:0c:0e:5d:32:de:f2:ce:5f:71:85:
f3:10:0f:04:bc:38:2f:c3:13:c4:df:48:cc:97:10:
20:f3:d0:a8:60:15:be:c5:65:21:c8:1f:93:0d:2f:
fc:13:9d:5d:ca:26:de:ed:a6:d4:61:9c:42:37:78:
de:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:70:18:83:B9:1C:86:6E:A1:A0:4E:92:15:52:6A:37:95:4E:F6:32
X509v3 Authority Key Identifier:
keyid:2D:28:CF:A3:FD:2D:A9:CA:AA:65:92:84:75:8D:EE:67:09:99:34:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LSjPo_0tqcqqZZKEdY3uZwmZNPg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/InAYg7kchm6hoE6SFVJqN5VO9jI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/febab0-d93a-4704-9a71-3ad52e8b9628/1/LSjPo_0tqcqqZZKEdY3uZwmZNPg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.145.231.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:49:41:de:d1:eb:85:38:8e:61:f9:30:aa:83:ce:da:13:17:
5a:28:a2:c3:92:0c:a1:2e:2d:8b:f3:09:7e:f3:d3:6f:78:74:
30:14:fb:c2:be:78:d9:c3:a1:31:37:11:15:86:7a:0d:23:1c:
9b:c4:af:79:45:e5:3f:4c:1f:dc:24:07:7f:3a:c4:3e:9e:29:
a2:2d:de:1c:77:de:db:66:4c:fa:14:20:d0:39:d8:fd:cc:66:
93:d2:4d:28:fa:9f:10:8f:e7:94:9f:22:68:8d:8c:a3:7a:97:
66:32:96:9d:56:8a:27:b8:a0:05:d6:2d:5c:1b:b4:6c:7b:36:
50:eb:ee:c2:fd:f5:6b:7a:b8:74:5b:2c:10:d4:62:57:f3:92:
ef:8c:a4:07:6a:7e:6e:8e:0e:2e:11:58:36:25:3a:16:4b:5b:
a6:5b:ad:da:d1:ac:a3:b5:a2:9b:97:97:5f:3c:86:f6:f4:4b:
66:2a:f0:aa:d0:35:bd:77:ce:b1:c0:cc:7d:69:7c:45:3e:51:
c5:79:7f:36:c9:39:69:64:68:10:1f:b0:ed:29:60:4f:ae:55:
d0:29:52:eb:4b:ce:b1:9d:fd:e1:93:b9:ca:9b:b7:fd:2e:14:
2c:d4:a4:b2:c1:7f:76:ca:c3:a4:23:ab:4c:27:21:ff:f0:18:
2e:c7:61:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 01:55:41 2025 by rpki-client