Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/e64a2f-fe27-4e47-99de-3680aeb632da/1/m-E10aW5L1-wveMhnPgC3UzI6ig.roa
File: m-E10aW5L1-wveMhnPgC3UzI6ig.roa (raw, json)
Hash identifier: 1KS/uNhBScsES7reUi1gAa2nyjHWcWgOFVT/DR6eey8=
Subject key identifier: 9B:E1:35:D1:A5:B9:2F:5F:B0:BD:E3:21:9C:F8:02:DD:4C:C8:EA:28
Certificate issuer: /CN=2f341807f20b04519c552bb38ce372914b7cc345
Certificate serial: 019427B56888FC14704EB733405842B8A95C
Authority key identifier: 2F:34:18:07:F2:0B:04:51:9C:55:2B:B3:8C:E3:72:91:4B:7C:C3:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LzQYB_ILBFGcVSuzjONykUt8w0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/e64a2f-fe27-4e47-99de-3680aeb632da/1/m-E10aW5L1-wveMhnPgC3UzI6ig.roa
Signing time: Thu 02 Jan 2025 15:49:47 +0000
ROA not before: Thu 02 Jan 2025 15:49:47 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209760
IP address blocks: 192.145.32.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:27:b5:68:88:fc:14:70:4e:b7:33:40:58:42:b8:a9:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f341807f20b04519c552bb38ce372914b7cc345
Validity
Not Before: Jan 2 15:49:47 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=9be135d1a5b92f5fb0bde3219cf802dd4cc8ea28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:35:4c:e5:03:a4:db:ad:31:2f:a0:28:92:b9:
03:04:b0:ef:0f:46:30:43:b7:ce:5f:72:0b:2d:f6:
6d:85:4e:aa:c3:9a:cb:6a:f1:da:e7:2d:6e:ba:43:
cf:68:eb:28:32:42:43:ce:74:03:e2:10:a2:9a:1e:
a2:82:04:6f:d1:21:2f:f3:b5:cf:b5:98:83:ed:16:
65:59:da:31:3c:32:30:83:36:f1:31:ba:c2:74:ee:
fa:ab:c8:0e:b1:3a:59:f3:22:1e:ae:21:01:6e:4d:
b0:f3:6b:f9:f7:d7:8d:f9:56:bd:a5:cb:c4:b8:ca:
7b:72:11:43:e1:04:71:bf:e2:3d:84:b9:00:36:3c:
4d:13:cc:9a:67:1f:b5:3c:16:7a:ef:c3:6f:95:6a:
b2:42:f2:f1:fe:ae:39:82:45:98:4a:83:28:43:7c:
6d:1b:49:ec:0c:3a:fd:35:86:85:96:36:95:a4:0a:
8f:74:4f:24:6c:4f:ee:e1:fd:3b:cc:da:f7:50:0c:
7c:bf:e0:26:ad:5a:c9:e3:51:ad:f7:6a:a0:f0:b0:
9f:1a:53:f9:e1:11:2b:3b:ae:c6:d7:0f:46:7e:19:
61:55:24:ba:4b:69:f1:31:0c:f0:62:84:18:2b:ae:
c5:00:a1:34:c5:1c:42:80:ad:95:4f:02:16:40:5a:
42:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E1:35:D1:A5:B9:2F:5F:B0:BD:E3:21:9C:F8:02:DD:4C:C8:EA:28
X509v3 Authority Key Identifier:
keyid:2F:34:18:07:F2:0B:04:51:9C:55:2B:B3:8C:E3:72:91:4B:7C:C3:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LzQYB_ILBFGcVSuzjONykUt8w0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e64a2f-fe27-4e47-99de-3680aeb632da/1/m-E10aW5L1-wveMhnPgC3UzI6ig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/e64a2f-fe27-4e47-99de-3680aeb632da/1/LzQYB_ILBFGcVSuzjONykUt8w0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.145.32.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:da:22:fd:92:5f:f9:7f:bf:65:c7:0d:18:c4:75:db:ee:1d:
42:b3:ea:42:a2:ee:5f:f2:4f:ed:04:98:b7:06:e8:28:5d:73:
63:61:6d:0f:65:85:8f:9c:76:4a:3f:b5:ed:46:cb:a9:3c:00:
dd:dd:37:68:ef:78:5c:f0:2b:7a:60:67:c3:40:32:91:69:64:
09:91:92:7b:58:e8:a6:a7:1f:4b:1c:c4:7d:22:63:13:e5:9a:
cc:7d:62:20:32:55:cf:29:9e:95:6c:7e:98:99:fd:e7:e2:d6:
67:fb:11:fe:08:3d:c8:c8:f0:6b:dc:ae:8d:8e:24:11:35:bb:
23:d9:3a:77:4a:95:de:a9:02:a3:34:d7:15:3e:39:e1:09:af:
5a:68:e1:5b:9b:4d:c9:0e:32:1e:5e:41:3e:70:23:2d:7b:dd:
a2:26:50:a1:50:67:85:c3:08:f4:d5:58:c7:94:5f:9a:ca:76:
93:71:b5:4a:de:56:fb:c0:4e:2e:0a:3f:71:02:77:59:a4:c1:
cc:41:63:83:9e:37:fc:35:21:ea:0f:e2:f9:09:dd:01:4e:74:
96:a2:4d:d4:b2:f9:36:2f:9c:72:a3:4d:b8:47:81:da:fb:ea:
7e:c3:ca:d5:3f:6e:ab:56:95:fb:17:87:e6:ed:a0:36:ca:0f:
9d:90:15:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:03 2025 by rpki-client on console.sobornost.net