Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/RDTdjbJg1qTVfFtTZ-xXhSBN99I.roa
File: RDTdjbJg1qTVfFtTZ-xXhSBN99I.roa (raw, json)
Hash identifier: A9z5XIanIjrUMyECwysuQe3iZDIecovFq+2MI5tX1Aw=
Subject key identifier: 44:34:DD:8D:B2:60:D6:A4:D5:7C:5B:53:67:EC:57:85:20:4D:F7:D2
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 019423D781E5E6C56FBF676289830A4FFDB8
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/RDTdjbJg1qTVfFtTZ-xXhSBN99I.roa
Signing time: Wed 01 Jan 2025 21:48:33 +0000
ROA not before: Wed 01 Jan 2025 21:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 44698
IP address blocks: 84.237.235.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:81:e5:e6:c5:6f:bf:67:62:89:83:0a:4f:fd:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Jan 1 21:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4434dd8db260d6a4d57c5b5367ec5785204df7d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:dd:86:d7:7f:f0:f9:83:6c:e3:79:b6:64:a5:
2b:a2:4f:d6:05:2c:48:60:6c:4e:41:cc:12:84:74:
8f:ff:34:e4:1a:b3:b5:f3:8b:46:05:75:01:5f:f2:
6b:21:0f:19:38:f6:81:3e:18:26:2e:f0:7e:28:93:
3f:bd:0f:ba:11:9a:d7:40:7c:6e:c5:05:1e:6b:4e:
a9:07:2d:f2:13:d1:10:9f:67:c0:72:e3:16:4e:78:
d4:6f:6f:68:ce:dc:b7:4f:ae:f3:01:4e:f6:2e:4e:
d1:8b:ed:b8:c2:ee:98:d7:f2:15:8f:6c:10:73:c5:
f6:3e:92:52:9f:f6:fa:3d:77:e5:61:b0:8d:42:85:
5c:62:e8:41:03:73:2d:f6:9b:ec:c1:2e:df:87:9e:
0d:e4:1d:eb:0f:9d:69:58:8e:45:68:b1:f4:22:49:
f3:31:e5:04:6a:8a:47:85:ff:54:76:d4:30:22:2f:
32:5a:b2:e1:b1:af:79:3d:35:da:e7:4d:19:4b:c9:
1e:78:0b:4b:0d:a4:18:37:11:6d:dd:bc:bc:fc:05:
1e:a8:5e:22:2c:63:ee:4b:2e:a9:3e:88:4b:17:fe:
fa:18:2d:4a:56:42:76:a5:02:4f:28:57:af:90:9a:
68:f3:44:6a:e1:ff:18:f2:6b:b4:ce:1f:72:21:00:
7c:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:34:DD:8D:B2:60:D6:A4:D5:7C:5B:53:67:EC:57:85:20:4D:F7:D2
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/RDTdjbJg1qTVfFtTZ-xXhSBN99I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.237.235.0/24
Signature Algorithm: sha256WithRSAEncryption
93:4a:20:db:b7:32:51:db:0a:ef:82:bb:d2:82:94:5a:38:1d:
b5:fa:25:65:f5:0d:cc:17:7a:f0:c7:27:f4:02:6d:a8:39:3f:
f3:1f:e1:04:3b:e2:e7:69:14:73:ac:d5:81:47:59:4f:de:e8:
e3:a1:f4:bd:b1:c3:55:90:1e:02:78:07:4a:89:a1:4f:b1:22:
5c:67:07:1b:1d:da:cc:70:15:8b:3c:95:bf:fd:35:20:c7:9c:
86:88:a6:cc:5c:0c:0c:bf:4b:b4:e6:69:20:bb:76:f1:6e:6c:
39:e9:75:8f:6b:23:43:de:54:c6:40:5f:4d:75:2e:a0:66:c4:
86:68:4c:68:71:0a:9f:7b:b3:a7:17:fe:b6:80:b9:5e:ee:ef:
d0:7f:5b:63:dc:5c:40:ab:6c:ad:ee:4b:76:32:76:85:cb:90:
6a:59:d6:56:60:bc:01:4b:71:9d:28:59:da:d7:13:21:cc:27:
f3:10:55:f3:3e:0d:78:b5:95:ef:3e:cd:7b:9f:c7:e0:1a:f8:
7b:95:6b:03:c7:b4:3d:2d:ea:0a:9f:a3:b5:5a:8a:4b:fa:99:
c9:7b:76:23:50:71:e8:83:f2:17:4e:b3:ae:84:2e:c8:b3:0d:
6e:cf:d0:3a:b5:eb:20:7b:47:f5:d6:d3:a3:9c:52:b8:4b:46:
da:d9:0f:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 04:09:00 2025 by rpki-client