Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cc/b9cea0-6928-4584-b321-7d7f4b634849/1/aNixjFy8ziG3vjf15zAVaRB-c8A.roa
File: aNixjFy8ziG3vjf15zAVaRB-c8A.roa (raw, json)
Hash identifier: EnnotKECMV4Ndd6+GZEZZLejmbdDUCzQTSAS/USoOkg=
Subject key identifier: 68:D8:B1:8C:5C:BC:CE:21:B7:BE:37:F5:E7:30:15:69:10:7E:73:C0
Certificate issuer: /CN=797a48cc13e200e2d3f38af83318d1bcaf6f6331
Certificate serial: 0194266B9A98221CE8FD9E6AA7B5112F5AA9
Authority key identifier: 79:7A:48:CC:13:E2:00:E2:D3:F3:8A:F8:33:18:D1:BC:AF:6F:63:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eXpIzBPiAOLT84r4MxjRvK9vYzE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cc/b9cea0-6928-4584-b321-7d7f4b634849/1/aNixjFy8ziG3vjf15zAVaRB-c8A.roa
Signing time: Thu 02 Jan 2025 09:49:33 +0000
ROA not before: Thu 02 Jan 2025 09:49:33 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209980
IP address blocks: 89.185.140.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:9a:98:22:1c:e8:fd:9e:6a:a7:b5:11:2f:5a:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=797a48cc13e200e2d3f38af83318d1bcaf6f6331
Validity
Not Before: Jan 2 09:49:33 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=68d8b18c5cbcce21b7be37f5e7301569107e73c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7a:fa:4c:a0:20:d7:37:9f:2d:67:71:38:37:
08:91:43:0d:38:91:59:5c:ab:99:0c:b4:28:a5:bb:
78:03:f2:67:03:4b:16:89:75:4c:32:c2:95:ba:71:
2a:ef:50:0d:e4:a7:2e:33:90:ef:34:50:05:48:54:
ce:40:37:b2:a5:84:46:41:19:95:20:05:3a:ec:c5:
88:25:28:54:be:02:29:41:77:81:b7:11:0c:95:9a:
fb:c5:11:08:3c:e0:92:5f:fc:8d:d5:d6:33:6d:25:
95:2b:b7:c0:b0:ff:78:44:d2:0b:27:d5:c7:df:e0:
07:4e:fe:e5:d0:6c:80:4f:de:54:17:80:2b:07:4e:
b9:80:e1:70:03:de:37:ba:91:ef:0d:b9:8b:30:83:
d0:ad:6a:7a:df:0f:9e:df:54:db:ed:ec:4f:42:b0:
dc:bd:10:4a:34:51:b5:ff:c4:b4:b2:81:b3:07:e1:
b8:a6:11:d7:ee:ee:11:aa:b0:b8:f2:92:ab:65:dc:
48:77:f6:6b:07:5d:98:ab:83:54:35:76:31:39:bf:
fe:78:b8:aa:0d:e2:84:fe:b5:ee:d7:ee:12:00:75:
0e:2a:5e:1c:ef:e1:fa:86:66:83:5c:f3:2b:84:47:
43:25:34:c4:df:4f:ee:f5:cd:c9:95:a6:00:2a:5d:
b5:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:D8:B1:8C:5C:BC:CE:21:B7:BE:37:F5:E7:30:15:69:10:7E:73:C0
X509v3 Authority Key Identifier:
keyid:79:7A:48:CC:13:E2:00:E2:D3:F3:8A:F8:33:18:D1:BC:AF:6F:63:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eXpIzBPiAOLT84r4MxjRvK9vYzE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/b9cea0-6928-4584-b321-7d7f4b634849/1/aNixjFy8ziG3vjf15zAVaRB-c8A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/b9cea0-6928-4584-b321-7d7f4b634849/1/eXpIzBPiAOLT84r4MxjRvK9vYzE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.185.140.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:bb:fe:c0:9b:1a:3e:1b:bd:0c:4e:fc:52:e5:67:c1:4c:fe:
16:23:57:5d:56:cc:36:c7:b2:3c:36:92:53:65:dd:17:ef:01:
0e:ff:57:95:28:b8:1a:dd:69:b3:7b:15:16:96:59:d2:d0:e9:
05:e5:5d:91:b1:e7:70:61:11:bf:9b:8a:8c:1a:b5:d0:0a:8f:
ee:05:a0:57:52:10:1a:b0:2c:57:d1:41:58:9a:ea:f1:3a:e5:
ed:8f:ec:06:80:3e:44:fd:bb:b5:26:01:80:c9:5b:04:a9:45:
4a:b4:d5:2d:c8:d1:ae:1b:85:c8:b9:1a:3f:44:02:a3:59:4e:
f4:26:8a:52:20:fb:4b:73:82:b3:9a:cd:94:0c:47:fe:cd:9b:
08:b5:26:17:65:48:0d:02:4e:4e:4e:b3:5f:5b:db:c1:e5:3a:
97:3d:54:04:12:5e:34:75:85:8c:64:0d:20:ce:1d:eb:17:36:
4e:33:53:3a:96:31:85:01:0b:d4:da:e3:57:f1:68:cb:d0:3c:
e4:49:bf:77:5c:ef:84:58:28:fe:b8:0f:d9:63:aa:d1:ec:1f:
75:da:96:f8:bb:c8:e3:0c:d8:c0:01:83:7a:13:e7:e2:9d:ad:
07:c2:bd:bf:c7:39:48:8c:12:2a:58:09:c2:eb:18:67:9e:d8:
4a:73:74:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 26 00:40:46 2025 by rpki-client