Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/4svdTg99Ad72x-DChn6zFrJMz2g.roa
File: 4svdTg99Ad72x-DChn6zFrJMz2g.roa (raw, json)
Hash identifier: c+U6fOA5SF4QR/glx58UowDjpSgoijl6x/tTlptUNt0=
Subject key identifier: E2:CB:DD:4E:0F:7D:01:DE:F6:C7:E0:C2:86:7E:B3:16:B2:4C:CF:68
Certificate issuer: /CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Certificate serial: 01941F8C922AC1497BFAA49D23076E6D7880
Authority key identifier: B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/4svdTg99Ad72x-DChn6zFrJMz2g.roa
Signing time: Wed 01 Jan 2025 01:48:13 +0000
ROA not before: Wed 01 Jan 2025 01:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41050
IP address blocks: 5.59.96.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:1f:8c:92:2a:c1:49:7b:fa:a4:9d:23:07:6e:6d:78:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b9481119afe1bff229facd4ef9c8c61b0fabeaf2
Validity
Not Before: Jan 1 01:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e2cbdd4e0f7d01def6c7e0c2867eb316b24ccf68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:5c:ee:e3:89:15:52:a1:cd:a8:6e:e6:e0:e7:
ff:69:4c:8b:98:9f:3e:5a:69:4f:85:a6:20:5a:e0:
0e:04:5a:70:41:3a:c2:52:64:84:1c:11:62:b9:41:
89:59:9a:d9:d3:49:a1:96:cf:22:f8:4d:75:66:8d:
77:56:36:36:dd:94:66:c4:f7:b4:9f:97:2e:b1:65:
77:ba:9e:91:2d:42:c4:5c:ff:60:d5:d1:ab:f8:55:
d8:a5:81:7c:f0:52:ce:4b:aa:4c:a9:58:bc:b1:7c:
5f:c3:25:16:c5:c3:41:93:0b:4e:50:c0:14:e9:cf:
8b:9f:49:95:a4:34:b4:b8:a6:d1:c8:51:8c:f4:ad:
50:b4:4e:15:25:b1:cc:f6:7c:68:4e:6b:09:3f:5e:
96:a0:9f:76:e7:67:46:7c:92:ef:71:a3:88:db:81:
e7:be:13:b8:e5:a7:45:69:37:a7:45:08:07:e0:09:
fc:ba:1e:49:88:05:36:98:80:51:7b:e7:53:2e:61:
93:39:ec:ed:f3:98:96:bc:96:1c:cb:af:65:b7:1f:
3b:3f:c2:8a:50:53:81:07:da:e8:24:af:14:23:94:
83:16:43:60:d7:61:29:89:d8:28:9d:7d:ee:6a:0c:
9c:b0:7a:a0:74:06:8c:3c:3a:58:2d:b0:9e:08:27:
61:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:CB:DD:4E:0F:7D:01:DE:F6:C7:E0:C2:86:7E:B3:16:B2:4C:CF:68
X509v3 Authority Key Identifier:
keyid:B9:48:11:19:AF:E1:BF:F2:29:FA:CD:4E:F9:C8:C6:1B:0F:AB:EA:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/4svdTg99Ad72x-DChn6zFrJMz2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/cb0007-3ea9-4759-8d70-9b9bce15e0c6/1/uUgRGa_hv_Ip-s1O-cjGGw-r6vI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.59.96.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:e4:8a:00:c2:54:fd:99:8a:9a:12:3b:a0:e2:34:ba:a6:d9:
4a:78:f7:06:fb:76:b6:1e:94:d3:42:cd:72:f2:b4:c6:62:59:
ff:a1:27:71:54:4d:52:df:58:48:9d:66:3f:35:df:9a:c6:07:
e0:e2:15:c7:a2:6a:2e:31:0c:ed:5e:8a:24:7a:26:b3:f4:c7:
06:0f:72:7d:dd:df:f4:23:28:ac:fa:fa:d4:70:d9:8b:22:a6:
10:0e:70:6c:33:7a:b8:f1:db:ee:bd:1f:4d:a5:32:64:82:40:
e0:f0:a3:ba:cd:7d:7f:27:af:a2:28:e0:55:2d:b0:bb:c7:91:
20:e4:86:5c:8f:9e:34:8a:46:b3:02:e9:08:c1:1c:bc:4e:25:
2f:9f:96:86:05:38:91:a3:80:4c:88:d9:2b:55:35:31:72:2e:
cb:c6:9d:64:17:77:55:67:18:38:53:85:4d:df:ca:ea:50:d2:
46:40:7b:62:bb:dd:75:d0:cf:b9:a0:5c:4d:b6:a3:e7:6d:ef:
54:ae:1b:87:c9:c9:68:53:b7:2f:8c:82:87:10:f8:9a:c0:45:
21:d7:62:ac:31:26:4e:55:fa:15:cd:13:26:57:10:09:51:cc:
99:c5:61:66:96:76:f8:cf:b9:1a:10:04:e0:dc:c1:a6:b7:1e:
91:d6:05:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 24 22:35:16 2025 by rpki-client