Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/S3dIMaIh62_y7HmBxhlxOM_ScHc.roa
File: S3dIMaIh62_y7HmBxhlxOM_ScHc.roa (raw, json)
Hash identifier: wYfLcBDYpc1piz/XiUHEld94m4pY4RAv7rF1GCt4/I0=
Subject key identifier: 4B:77:48:31:A2:21:EB:6F:F2:EC:79:81:C6:19:71:38:CF:D2:70:77
Certificate issuer: /CN=472cb288209900d1af1a998bb039ec757e493dd5
Certificate serial: 0194228E2170A70A4559CBDC5AD4E2E9EE44
Authority key identifier: 47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/S3dIMaIh62_y7HmBxhlxOM_ScHc.roa
Signing time: Wed 01 Jan 2025 15:48:47 +0000
ROA not before: Wed 01 Jan 2025 15:48:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 59650
IP address blocks: 92.240.152.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8e:21:70:a7:0a:45:59:cb:dc:5a:d4:e2:e9:ee:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=472cb288209900d1af1a998bb039ec757e493dd5
Validity
Not Before: Jan 1 15:48:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4b774831a221eb6ff2ec7981c6197138cfd27077
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e0:88:4b:4f:c8:ee:ab:8e:e2:14:52:c9:52:
77:59:07:13:01:15:d6:77:79:83:5c:80:80:19:64:
6c:13:93:16:74:e4:2f:08:8d:6b:b8:63:18:ee:81:
d6:18:7e:ee:b7:bd:b2:3b:35:ce:ce:da:98:e0:fb:
27:3f:9d:29:a8:aa:35:a1:19:f6:b6:6f:51:c5:68:
d3:c1:1d:c1:db:4a:f1:f1:b2:a7:ee:87:61:7f:d6:
8a:7b:50:1b:82:4d:6d:ee:2e:3d:97:de:93:a5:22:
f3:f2:63:86:9d:df:17:7d:03:00:88:18:1e:90:ef:
d9:85:bf:9c:db:92:e4:de:b6:b7:fd:bf:21:d1:a0:
a6:3c:75:ae:20:a4:f9:9a:aa:b0:0a:62:48:39:c8:
b9:82:8a:81:40:82:86:c6:01:a6:82:8c:91:88:f8:
32:6b:12:b4:9c:48:77:df:2e:6e:ec:ec:53:3f:d1:
ab:7f:28:1f:bf:fd:24:fd:83:5d:97:dd:19:00:27:
88:35:d3:09:3a:6b:69:03:34:26:c2:f6:b2:fd:64:
0f:4b:d0:18:39:bb:5f:fb:20:a9:4c:b0:fe:c0:dc:
3a:24:69:c8:9d:02:38:e8:21:1d:2d:27:91:a3:7d:
65:bc:07:f8:b3:33:eb:bc:78:87:c7:22:ac:18:32:
72:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:77:48:31:A2:21:EB:6F:F2:EC:79:81:C6:19:71:38:CF:D2:70:77
X509v3 Authority Key Identifier:
keyid:47:2C:B2:88:20:99:00:D1:AF:1A:99:8B:B0:39:EC:75:7E:49:3D:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RyyyiCCZANGvGpmLsDnsdX5JPdU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/S3dIMaIh62_y7HmBxhlxOM_ScHc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/f9b6b9-b787-4e28-b0bf-aa902dbae928/1/RyyyiCCZANGvGpmLsDnsdX5JPdU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
92.240.152.0/21
Signature Algorithm: sha256WithRSAEncryption
b7:f2:8f:e0:0e:26:b8:0e:16:a6:b2:4f:f1:25:5b:1f:0b:1d:
03:55:69:f6:23:f4:eb:31:bb:44:a5:e5:dc:79:ad:37:ce:a5:
3c:58:54:2d:76:f5:af:cd:cf:da:b2:42:71:ec:81:98:1d:94:
f4:0d:d2:c4:d5:2f:e5:16:9b:89:ba:38:2e:c9:bd:36:75:2a:
0d:74:6a:21:7a:d7:1a:8e:81:e1:a4:2f:45:8a:09:99:03:f7:
bd:d4:68:d8:c1:72:c9:55:e9:1d:97:b1:8a:26:43:b7:a4:87:
b0:5d:d0:50:81:83:2e:ea:2f:d4:ef:fc:39:6c:d9:c2:4b:d3:
20:d8:f5:3c:aa:de:0a:66:40:7a:7e:66:0d:62:67:a1:69:b1:
1c:82:1e:29:5c:6b:5e:7a:7e:ed:62:f0:e8:8e:29:24:73:5e:
11:b2:9b:c7:1d:26:20:f2:56:47:3c:a1:0e:7d:62:be:2e:19:
41:99:79:11:28:8b:fb:8d:2b:b4:a2:35:34:fc:4d:ce:2d:db:
fa:6b:a4:c8:8a:89:6e:d1:b7:65:37:07:ab:5d:64:31:50:57:
b7:ff:06:33:a6:29:53:04:e5:98:52:40:31:a0:1e:78:81:91:
1b:bd:4f:b2:30:0c:25:51:ef:ee:15:53:b4:78:39:1a:bc:c0:
8e:98:6a:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:26:46 2025 by rpki-client on console.sobornost.net