Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/rBDRLcwh1f0T1KlMGkdFdInbwCk.roa
File: rBDRLcwh1f0T1KlMGkdFdInbwCk.roa (raw, json)
Hash identifier: 0OUUIzNQRBnvsPMA/R6ALJjDqe0IPbisdowTgt44Zoo=
Subject key identifier: AC:10:D1:2D:CC:21:D5:FD:13:D4:A9:4C:1A:47:45:74:89:DB:C0:29
Certificate issuer: /CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Certificate serial: 019423D780F2F94F6A6EB0AE3DA4127E6E45
Authority key identifier: E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/rBDRLcwh1f0T1KlMGkdFdInbwCk.roa
Signing time: Wed 01 Jan 2025 21:48:33 +0000
ROA not before: Wed 01 Jan 2025 21:48:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 43188
IP address blocks: 81.198.175.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:80:f2:f9:4f:6a:6e:b0:ae:3d:a4:12:7e:6e:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3be07cb1fd4f1e3c922303b670a881b82e61491
Validity
Not Before: Jan 1 21:48:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=ac10d12dcc21d5fd13d4a94c1a47457489dbc029
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1a:db:cc:cd:ba:a1:ce:cb:9a:10:0e:03:f6:
85:0e:77:1f:2e:09:5d:89:79:44:cf:d1:a5:e3:e2:
55:9e:ed:e0:32:71:1e:1e:50:68:c6:6c:7f:d5:95:
76:7d:19:ba:6b:a2:f2:37:50:09:95:7e:61:48:02:
95:30:04:a5:b5:30:2c:40:27:88:6e:29:ca:fc:80:
cf:d6:66:1e:fa:6d:5a:39:31:83:b8:8e:c8:f9:37:
ca:42:e4:c5:36:2d:90:53:04:d9:10:cc:a5:24:27:
87:1f:26:37:3f:aa:3f:62:40:6d:31:c6:78:c6:6c:
cf:1b:1f:60:80:cd:0b:01:db:17:a8:1b:74:fd:32:
db:ad:31:91:a3:63:1c:ba:cd:d0:04:f0:8b:86:bd:
a8:ae:6e:16:42:14:f0:f1:3e:cd:0f:0e:25:7c:b3:
75:92:e1:6f:a4:68:d6:e3:15:09:a6:07:a9:64:10:
5e:a0:79:8e:08:5e:f8:4f:3a:cd:fb:1d:0d:80:23:
f9:35:df:5d:f2:2f:47:47:03:b1:b0:af:22:46:39:
51:69:6f:c4:29:a2:ff:c3:1c:e2:a5:07:b4:29:d3:
9a:ba:c4:dc:12:97:51:c3:04:cb:48:e0:47:5a:a2:
65:79:9b:0f:0b:9e:47:dc:48:74:41:eb:59:a6:ad:
5d:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:10:D1:2D:CC:21:D5:FD:13:D4:A9:4C:1A:47:45:74:89:DB:C0:29
X509v3 Authority Key Identifier:
keyid:E3:BE:07:CB:1F:D4:F1:E3:C9:22:30:3B:67:0A:88:1B:82:E6:14:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/474Hyx_U8ePJIjA7ZwqIG4LmFJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/rBDRLcwh1f0T1KlMGkdFdInbwCk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/8f5fae-da90-4314-bffc-d4ee1d389e0d/1/474Hyx_U8ePJIjA7ZwqIG4LmFJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
81.198.175.0/24
Signature Algorithm: sha256WithRSAEncryption
94:62:bb:77:b9:9b:9c:56:5b:9d:bb:0b:79:99:ef:c2:07:ef:
ac:ca:79:4f:18:4e:53:ee:cf:b3:43:3c:12:67:85:f1:11:e4:
29:1a:7d:7e:7f:b5:c7:3e:64:1f:05:ff:f0:16:88:0c:bd:af:
47:46:12:85:3e:44:39:5e:94:90:e5:df:be:c8:b3:dd:55:f6:
d0:7c:7d:92:47:90:e2:3c:e5:a6:1e:d6:42:c9:63:b3:25:5c:
c2:0f:61:06:26:40:c8:1b:dd:33:65:3e:43:2a:25:b3:78:d4:
cc:07:99:27:f7:14:cf:88:03:30:04:f9:20:a3:73:96:c9:f7:
3a:09:13:91:c7:38:6d:d3:8f:7b:4a:e5:bf:6b:d6:4e:08:9c:
41:8d:ef:54:1c:39:30:87:cb:0c:33:42:69:64:65:5c:22:4b:
ea:fe:a2:4e:fc:93:ae:47:8c:bd:3a:fc:89:17:b9:50:ff:c6:
58:ee:e9:a1:60:c0:5f:92:7f:77:60:f5:d0:e6:46:81:e7:19:
01:98:34:4b:61:09:49:c5:36:42:18:2d:8f:27:f6:f2:c4:a4:
94:4b:05:ad:f7:45:c3:a2:bc:34:b7:b0:bc:5f:f1:ec:46:da:
5b:27:49:1d:b1:ef:cf:84:91:98:dc:15:7d:87:b0:69:30:8c:
61:fb:f3:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 09:54:09 2025 by rpki-client