Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/glVWs7IQA6E4icmC8qXaL1BO1oU.roa
File: glVWs7IQA6E4icmC8qXaL1BO1oU.roa (raw, json)
Hash identifier: wAwxqn0T2Tg7SmJ7QKis7shqbxTq4mypLKV5b5C3kXg=
Subject key identifier: 82:55:56:B3:B2:10:03:A1:38:89:C9:82:F2:A5:DA:2F:50:4E:D6:85
Certificate issuer: /CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Certificate serial: 0194221F8A4E41FC3F806EF6DBDC4C8F31C3
Authority key identifier: 41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/glVWs7IQA6E4icmC8qXaL1BO1oU.roa
Signing time: Wed 01 Jan 2025 13:47:59 +0000
ROA not before: Wed 01 Jan 2025 13:47:59 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41703
IP address blocks: 89.252.227.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:1f:8a:4e:41:fc:3f:80:6e:f6:db:dc:4c:8f:31:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4104a40821c4176cc42e255ef6c1727473c3f00a
Validity
Not Before: Jan 1 13:47:59 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=825556b3b21003a13889c982f2a5da2f504ed685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:89:6c:74:0b:f8:46:6e:c6:d3:d5:8e:d7:b9:
97:26:57:3c:fc:6a:be:c1:93:e3:9b:84:01:de:cf:
8c:ce:4d:d8:3c:ba:1d:2e:ae:54:33:d3:bc:48:bf:
01:d1:93:49:da:78:e1:51:5a:fa:92:67:54:b9:07:
0e:75:78:d9:b9:9f:1b:28:9f:d9:f1:f2:07:b9:1c:
b8:99:ae:13:d3:9b:25:b6:ff:cf:f5:ff:f9:08:66:
38:56:1d:20:7e:f7:3c:c4:dd:10:15:d9:d6:61:87:
5f:fd:dd:3b:27:02:cd:09:a6:ec:d5:47:86:d5:96:
12:48:ff:5e:57:93:d3:f1:fc:4e:5f:72:f8:a1:ed:
a4:e4:d5:e8:28:65:b1:3b:e1:96:58:3d:ed:98:b9:
30:1d:8c:81:40:f5:ce:e8:51:94:9a:b9:a9:24:d8:
5b:12:9b:f2:e5:8d:44:4d:11:68:5b:be:8b:4a:9d:
c5:da:ae:5a:82:b0:d7:25:4a:d9:23:9a:95:17:70:
57:c4:94:56:28:dd:d1:71:b8:1e:d7:69:86:1d:af:
c1:ce:3c:77:c1:b3:30:01:b7:45:9b:b2:26:22:71:
98:6b:a3:f3:78:23:dc:57:34:48:44:46:34:8f:95:
a3:a1:4f:53:af:5b:51:07:b7:8a:b3:4b:9d:ef:5f:
f2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:55:56:B3:B2:10:03:A1:38:89:C9:82:F2:A5:DA:2F:50:4E:D6:85
X509v3 Authority Key Identifier:
keyid:41:04:A4:08:21:C4:17:6C:C4:2E:25:5E:F6:C1:72:74:73:C3:F0:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QQSkCCHEF2zELiVe9sFydHPD8Ao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/glVWs7IQA6E4icmC8qXaL1BO1oU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/969962-12d3-41b2-ab43-b27d6e278e18/1/QQSkCCHEF2zELiVe9sFydHPD8Ao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.252.227.0/24
Signature Algorithm: sha256WithRSAEncryption
23:6a:0a:d8:11:1e:63:c1:0e:56:bc:7c:c9:2c:92:f5:b0:20:
94:e5:5c:71:2f:3e:e2:4c:d3:89:1f:41:4e:9f:7a:e1:a0:31:
87:45:eb:c0:e5:fd:71:55:1b:c5:c5:38:7e:9a:a3:03:fc:fe:
3a:8a:03:84:ce:22:72:5e:ee:0a:3f:85:ce:19:3d:07:c7:a2:
3b:2c:0f:ae:bd:cd:c9:62:a4:63:b1:1f:82:6d:6b:94:e0:9e:
f1:b1:64:3a:53:58:80:41:e8:52:d9:b2:5e:03:59:46:e7:50:
15:ea:7d:fc:74:c6:69:88:c5:01:5b:5d:7f:74:78:f4:3a:d3:
26:18:61:1b:13:35:6d:7c:b0:dd:44:59:d4:28:aa:40:c6:d1:
a0:7c:dd:21:7c:8e:90:af:78:9c:3a:39:a0:87:8e:f2:ca:19:
1d:c1:2d:e9:e4:81:24:83:9e:e9:e1:52:f2:f5:47:c8:35:ee:
40:23:23:f3:bb:d8:cb:5f:26:01:30:5e:28:6b:fc:c3:58:9b:
66:b5:f2:af:e0:c1:fb:22:c0:26:ee:b4:a2:25:e5:36:f3:74:
2f:67:f4:4d:87:db:ef:0d:1a:82:63:85:eb:d9:16:fd:54:cb:
69:0c:20:04:50:84:03:49:af:ef:64:1d:b6:e2:03:3b:df:4e:
ba:d2:90:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:08:19 2025 by rpki-client