Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/28a8f3-889e-4549-a44e-ce225187fc38/1/bk8bvaCKGh2nGwQX4sd5eWPAY_E.roa
File: bk8bvaCKGh2nGwQX4sd5eWPAY_E.roa (raw, json)
Hash identifier: Oyv6e+rWeKuFbdE0+T91WAKyRu15r6MOTTHhVcE1hlg=
Subject key identifier: 6E:4F:1B:BD:A0:8A:1A:1D:A7:1B:04:17:E2:C7:79:79:63:C0:63:F1
Certificate issuer: /CN=c1b050211219d18e996e086cb7f6309178804860
Certificate serial: 019423D733AF9FC3F9B9A275989C53CF9D62
Authority key identifier: C1:B0:50:21:12:19:D1:8E:99:6E:08:6C:B7:F6:30:91:78:80:48:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wbBQIRIZ0Y6Zbghst_YwkXiASGA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/28a8f3-889e-4549-a44e-ce225187fc38/1/bk8bvaCKGh2nGwQX4sd5eWPAY_E.roa
Signing time: Wed 01 Jan 2025 21:48:13 +0000
ROA not before: Wed 01 Jan 2025 21:48:13 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62144
IP address blocks: 89.108.136.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:33:af:9f:c3:f9:b9:a2:75:98:9c:53:cf:9d:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c1b050211219d18e996e086cb7f6309178804860
Validity
Not Before: Jan 1 21:48:13 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=6e4f1bbda08a1a1da71b0417e2c7797963c063f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:e8:92:41:22:58:d4:15:6c:fa:d8:46:08:bc:
3e:b3:d2:bd:31:2a:e9:cd:8d:b8:28:60:13:b5:27:
4c:80:a2:a2:3c:06:ca:a2:f2:49:4c:fc:8b:83:da:
38:2c:f2:e3:62:f4:2d:d7:f7:89:75:90:b0:0a:f5:
85:14:61:78:23:0b:dc:27:bb:28:bf:e1:2d:a6:e5:
e5:de:dd:7d:e2:72:21:d9:8c:b1:69:df:04:d7:42:
35:ab:75:27:38:91:4f:09:40:4f:d8:a8:39:4e:27:
c0:e8:0e:4a:7b:a5:2c:94:0d:fe:47:05:74:45:c7:
69:cf:90:40:a1:9b:df:dc:7f:b7:b3:44:fe:cf:bb:
4a:65:3d:b9:ec:aa:7e:25:16:85:66:0e:6e:8f:0d:
07:c9:29:6c:31:b7:09:12:b0:83:e5:ff:d2:13:7e:
e3:a7:08:29:40:6c:2f:55:b9:4a:be:5f:4c:3a:d4:
0e:c0:5d:b3:6c:8c:60:f5:96:08:f4:5a:1a:aa:26:
44:92:4b:af:81:87:06:8b:19:a7:1e:ff:9d:79:0d:
e5:19:d5:08:51:c9:ce:c6:a4:c3:8c:81:ac:ef:57:
a4:be:49:d6:97:01:5e:76:a8:df:0a:26:d1:fc:f2:
66:43:4d:03:8f:66:00:80:80:07:30:6e:dd:17:6d:
da:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:4F:1B:BD:A0:8A:1A:1D:A7:1B:04:17:E2:C7:79:79:63:C0:63:F1
X509v3 Authority Key Identifier:
keyid:C1:B0:50:21:12:19:D1:8E:99:6E:08:6C:B7:F6:30:91:78:80:48:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wbBQIRIZ0Y6Zbghst_YwkXiASGA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/28a8f3-889e-4549-a44e-ce225187fc38/1/bk8bvaCKGh2nGwQX4sd5eWPAY_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/28a8f3-889e-4549-a44e-ce225187fc38/1/wbBQIRIZ0Y6Zbghst_YwkXiASGA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.108.136.0/24
Signature Algorithm: sha256WithRSAEncryption
14:5a:8a:54:85:8d:d5:07:4d:48:08:6c:59:c6:d2:ff:29:b3:
7c:f0:f1:0e:e3:68:0b:c0:67:07:f7:ca:46:69:ec:e9:af:11:
c7:b3:53:2d:b4:88:a8:3d:c6:12:04:58:8b:f7:01:b7:f4:35:
2a:f0:8b:e0:15:7e:f0:a9:9d:cd:b7:47:52:cb:6b:34:23:cf:
62:16:9c:e9:79:83:70:5a:f9:f1:e1:3e:9a:ec:2f:85:19:14:
c9:fa:30:cc:e2:48:37:cd:3d:d7:a0:05:a1:06:fb:2d:13:e3:
8f:7e:cd:5b:a5:b7:d3:df:60:59:aa:d5:73:97:aa:9f:a9:cb:
fb:ce:16:7b:f5:0e:a1:32:3a:be:07:ea:6e:9b:9e:e7:ba:77:
13:3f:64:03:31:98:9e:77:5c:bc:e7:44:52:d8:cc:04:eb:ed:
4a:98:22:fe:09:cf:a7:e4:39:c1:21:0c:65:6f:48:e6:bc:e5:
26:06:8f:ee:c6:88:27:b1:70:6b:74:fe:15:be:31:fc:22:54:
b0:40:4f:28:5a:bd:4e:37:d3:e8:e7:86:82:0f:dd:20:ac:23:
08:22:f8:54:78:57:d6:05:8a:c5:07:5e:da:a6:56:92:51:56:
31:7c:56:ef:fc:02:2d:66:aa:fb:1e:61:dc:83:1a:79:64:86:
ce:e6:fd:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 06:05:20 2025 by rpki-client