Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/5uivWGsI0iTRyzBEkl59YbjDtGQ.roa
File: 5uivWGsI0iTRyzBEkl59YbjDtGQ.roa (raw, json)
Hash identifier: tUdKNavwFJW6rcK5YGyzEy/WXlZrQdJmI2Ui9ai5uNU=
Subject key identifier: E6:E8:AF:58:6B:08:D2:24:D1:CB:30:44:92:5E:7D:61:B8:C3:B4:64
Certificate issuer: /CN=58bb8ee3a747ed8b578657cdd4737586f5fdb931
Certificate serial: 019423D70359CAE03D60565656089FCDA9EB
Authority key identifier: 58:BB:8E:E3:A7:47:ED:8B:57:86:57:CD:D4:73:75:86:F5:FD:B9:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLuO46dH7YtXhlfN1HN1hvX9uTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/5uivWGsI0iTRyzBEkl59YbjDtGQ.roa
Signing time: Wed 01 Jan 2025 21:48:01 +0000
ROA not before: Wed 01 Jan 2025 21:48:01 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207995
IP address blocks: 217.198.48.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:03:59:ca:e0:3d:60:56:56:56:08:9f:cd:a9:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bb8ee3a747ed8b578657cdd4737586f5fdb931
Validity
Not Before: Jan 1 21:48:01 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e6e8af586b08d224d1cb3044925e7d61b8c3b464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:2d:25:f7:de:aa:f0:40:a3:30:63:d6:5b:ee:
4b:d9:71:c9:d5:96:f4:30:03:01:f9:56:6e:95:63:
61:ef:3a:bc:f0:1e:ff:91:2c:fa:7b:79:fa:e9:f6:
ea:9f:a8:c8:da:e1:f6:93:40:c6:c3:46:4d:20:39:
d7:47:7e:31:5a:98:56:fb:9a:e0:34:e5:14:7c:b0:
b3:a1:08:15:27:0b:5b:49:15:cc:a5:15:12:82:45:
c1:44:4b:91:e5:9c:90:a2:1e:79:82:64:c3:fe:a0:
0b:d2:d1:f1:ff:1d:6f:a1:fe:51:de:ba:60:ac:66:
c5:34:26:68:f3:b4:d8:fc:0e:4a:b4:d5:6f:df:cc:
0d:4b:88:ef:58:6d:6b:ec:55:24:8c:22:0c:3f:a5:
b0:d1:36:2e:7e:f1:58:2e:a8:0a:6f:9f:e9:58:13:
69:4b:27:5d:17:0f:db:10:f3:f6:58:3d:21:02:d1:
3b:fb:4c:98:56:a8:ed:4f:d5:c3:85:3c:ae:0d:1c:
3a:5c:7b:56:d5:51:e7:87:5a:6e:3f:c8:b1:71:86:
cb:2d:6d:9c:c0:cb:56:4f:15:b0:9b:85:2f:56:e1:
2b:91:cd:a6:36:bf:8b:57:cf:82:a8:8f:3e:e2:df:
c5:4a:0f:c7:08:f4:9a:37:9d:fa:00:b5:c7:a6:0f:
c4:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:E8:AF:58:6B:08:D2:24:D1:CB:30:44:92:5E:7D:61:B8:C3:B4:64
X509v3 Authority Key Identifier:
keyid:58:BB:8E:E3:A7:47:ED:8B:57:86:57:CD:D4:73:75:86:F5:FD:B9:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLuO46dH7YtXhlfN1HN1hvX9uTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/5uivWGsI0iTRyzBEkl59YbjDtGQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/03a70b-3bc6-4339-9e49-a83f914035b3/1/WLuO46dH7YtXhlfN1HN1hvX9uTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
217.198.48.0/21
Signature Algorithm: sha256WithRSAEncryption
67:52:c3:55:b7:82:a3:f0:17:88:c1:85:b5:4a:ba:54:dd:2f:
4d:02:7c:53:a4:8c:a4:0e:8e:78:d5:12:9b:d5:91:5c:c3:d2:
c1:ee:4f:fc:8f:03:28:31:8a:99:8c:0c:97:9a:e1:90:26:43:
d9:50:21:e6:07:ba:3f:b1:28:95:38:10:a6:18:38:2b:fd:14:
66:09:88:e5:ff:8e:4e:b2:93:28:e0:d8:04:e6:57:15:e4:68:
53:3a:24:a6:61:f8:3b:c7:22:29:9c:78:73:14:b0:9c:ba:92:
7c:52:34:01:d2:45:ce:90:74:34:15:41:88:03:a8:83:8c:5a:
37:91:9c:d7:dc:29:9c:2e:08:73:29:d7:1e:dd:99:e5:62:9e:
51:6b:01:bc:a2:fc:07:15:36:c4:a4:71:8b:b6:24:1e:67:56:
cd:94:5b:e5:4a:53:f8:3d:60:a0:52:02:c6:23:e9:07:c2:99:
a0:2a:7d:5e:ab:fb:4a:6b:53:04:01:ca:a2:87:69:be:37:1a:
77:d9:91:dc:fb:a9:88:c4:eb:d9:c6:f7:9d:01:ab:fa:1b:fb:
9d:fa:8d:35:1d:c8:86:26:7d:02:8c:e7:4c:41:fe:47:02:80:
77:90:29:a1:4c:1d:53:fd:91:81:5e:70:ad:47:97:bc:4f:22:
72:5a:64:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 25 07:54:39 2025 by rpki-client