Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/127430-d4e8-4da3-bea2-4ef19ccc57d0/1/isEuNe0uv1QAE5oG1f-itxDV0b0.roa
File: isEuNe0uv1QAE5oG1f-itxDV0b0.roa (raw, json)
Hash identifier: yLEdK4lvVPQhOBBgi/fcG1RBw3EV7WEriyimfko4o3A=
Subject key identifier: 8A:C1:2E:35:ED:2E:BF:54:00:13:9A:06:D5:FF:A2:B7:10:D5:D1:BD
Certificate issuer: /CN=618cc46d71e7848978488961d7b51aba1541f3c4
Certificate serial: 0194A71E457261990B198778F06D45C6DE3B
Authority key identifier: 61:8C:C4:6D:71:E7:84:89:78:48:89:61:D7:B5:1A:BA:15:41:F3:C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYzEbXHnhIl4SIlh17UauhVB88Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/127430-d4e8-4da3-bea2-4ef19ccc57d0/1/isEuNe0uv1QAE5oG1f-itxDV0b0.roa
Signing time: Mon 27 Jan 2025 09:36:06 +0000
ROA not before: Mon 27 Jan 2025 09:36:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213541
IP address blocks: 89.184.0.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:a7:1e:45:72:61:99:0b:19:87:78:f0:6d:45:c6:de:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618cc46d71e7848978488961d7b51aba1541f3c4
Validity
Not Before: Jan 27 09:36:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=8ac12e35ed2ebf5400139a06d5ffa2b710d5d1bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:9a:f2:78:76:a6:51:7c:c4:f2:84:c4:ab:25:
55:8f:c8:7d:c7:25:6d:ea:df:4d:6e:e9:8a:f8:23:
0f:fa:a4:ef:bf:95:67:b0:45:7c:0d:ee:c7:25:71:
9e:74:80:2d:7c:1d:d0:b3:4c:3e:3d:5a:25:a2:ca:
19:a5:11:83:9f:2e:1e:8f:9f:89:0a:9a:7b:04:28:
16:d4:23:ba:76:ac:49:79:7e:e9:73:01:64:2a:ba:
da:9f:bb:57:0d:64:ce:d8:da:69:36:bf:7a:dc:0b:
60:3c:f7:8c:8e:9a:61:91:65:10:e7:26:05:9e:f8:
7a:0a:47:72:f6:57:59:fc:10:a1:89:45:fd:21:ba:
d8:a4:ad:fb:5d:0f:c7:fe:0a:61:f3:f6:bf:b3:6c:
6a:2b:ac:2c:db:c7:0e:18:2e:a5:b0:b2:a4:86:5e:
a3:b5:99:ae:bb:6e:15:39:ce:e4:4e:72:35:c4:5c:
c7:d4:8b:ea:7c:2c:e1:71:57:d2:e9:8d:ed:85:7b:
fc:9f:4e:85:d7:b5:c3:ee:f0:a6:9b:34:82:6f:ec:
74:a2:d4:b9:56:84:89:5f:07:cf:f6:aa:a7:b1:95:
3f:22:2a:69:8e:2b:9c:cd:53:4c:3f:ff:98:b8:e3:
67:8d:f5:d7:a5:7a:20:60:74:33:5a:7e:78:3c:2f:
ce:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:C1:2E:35:ED:2E:BF:54:00:13:9A:06:D5:FF:A2:B7:10:D5:D1:BD
X509v3 Authority Key Identifier:
keyid:61:8C:C4:6D:71:E7:84:89:78:48:89:61:D7:B5:1A:BA:15:41:F3:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYzEbXHnhIl4SIlh17UauhVB88Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/127430-d4e8-4da3-bea2-4ef19ccc57d0/1/isEuNe0uv1QAE5oG1f-itxDV0b0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/127430-d4e8-4da3-bea2-4ef19ccc57d0/1/YYzEbXHnhIl4SIlh17UauhVB88Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.184.0.0/21
Signature Algorithm: sha256WithRSAEncryption
21:a2:64:f2:29:d5:84:f1:8e:18:c1:0d:24:67:4b:d3:8d:88:
18:22:35:a0:24:b6:a4:a3:a2:a8:73:35:11:59:8c:9f:2d:f0:
ad:26:78:81:07:83:41:0f:cd:d8:d6:07:fa:22:19:b8:38:8c:
90:2b:17:c8:9d:91:20:a8:26:0e:e8:77:2e:15:e3:47:b9:56:
f4:7b:61:23:2c:e5:da:b8:d7:36:86:0e:4c:cf:61:09:87:52:
4f:d9:e0:4b:55:50:07:a1:e6:c5:91:3f:0a:7b:cc:62:e5:9f:
e2:ff:c8:55:27:11:e9:6c:4a:51:18:ed:a2:20:e4:09:f3:2d:
80:c6:2c:bc:a7:5b:5c:8c:9e:68:61:8f:fd:2c:08:93:bc:62:
7a:dd:b7:f2:3a:85:67:68:d4:57:ed:d7:90:ae:b5:2f:1e:a1:
d5:ff:35:c3:b3:29:dc:98:28:3f:f1:5b:10:da:22:2f:c9:ee:
20:39:ad:2e:c6:0c:c3:b6:8c:45:02:7c:c0:c2:12:97:ee:c9:
f7:ef:b3:1f:01:c1:af:94:67:0c:dd:d4:63:52:63:0b:55:53:
26:81:bf:89:b0:4b:df:0f:c5:1f:1a:4e:65:07:bf:ad:2e:58:
0a:d0:cf:89:c3:f6:11:55:b4:bb:bf:19:1a:27:de:a1:37:23:
12:a3:3b:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 18:18:02 2025 by rpki-client