Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/pwGmEYbuZcQZsOR6KNT3jM32lkY.roa
File: pwGmEYbuZcQZsOR6KNT3jM32lkY.roa (raw, json)
Hash identifier: 5UfKqqEXju1N6ARaCHouu2g7PjryinRZ9Cc7bxq100I=
Subject key identifier: A7:01:A6:11:86:EE:65:C4:19:B0:E4:7A:28:D4:F7:8C:CD:F6:96:46
Certificate issuer: /CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Certificate serial: 019420D652921257E3BA095BD405A9751D3C
Authority key identifier: D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/pwGmEYbuZcQZsOR6KNT3jM32lkY.roa
Signing time: Wed 01 Jan 2025 07:48:24 +0000
ROA not before: Wed 01 Jan 2025 07:48:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 48698
IP address blocks: 94.155.53.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:d6:52:92:12:57:e3:ba:09:5b:d4:05:a9:75:1d:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d07d7573aacae821c87d6d36431cfe4b2801ab41
Validity
Not Before: Jan 1 07:48:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a701a61186ee65c419b0e47a28d4f78ccdf69646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:41:45:a5:7d:84:56:c3:f4:c5:11:d4:7a:94:
c5:d2:5e:89:65:a5:c0:6d:65:bb:a0:18:de:4f:e1:
0c:54:a3:ee:bc:f4:00:f5:93:38:12:1d:4d:f6:d5:
59:f3:67:fe:40:5c:25:1c:67:38:32:32:36:3a:4f:
07:a5:a2:cd:e0:45:fc:87:93:bc:2e:3d:7d:a0:3e:
95:be:ca:11:6d:6f:3f:a7:31:dc:f6:e5:ba:55:bf:
ba:93:a4:2f:7c:86:f7:a6:52:ac:f4:ff:7c:5c:c2:
13:b1:4e:82:c3:a1:6c:8e:0c:0f:b9:9e:b1:d0:14:
60:83:66:6f:4c:33:d6:6f:e7:0c:a3:4b:ba:ef:98:
f8:78:4e:cf:95:c3:16:45:14:81:87:57:67:8b:b6:
42:04:69:e7:ff:9e:61:66:a1:14:c8:a7:97:e2:ec:
60:ec:d6:39:f6:b6:7e:db:7b:5b:4f:fb:6b:bf:56:
de:a5:5f:5a:78:a2:61:fe:4a:eb:db:b0:e0:8d:cf:
58:76:6c:69:89:72:7e:40:16:f6:74:88:66:f7:4f:
23:ee:31:5c:97:6a:be:7d:12:fa:31:0d:c2:e8:0e:
b9:43:2d:73:c8:3f:4a:76:79:f0:30:19:27:32:92:
a1:e7:35:05:79:ee:07:56:4a:a8:ab:eb:1d:f8:7d:
8b:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:01:A6:11:86:EE:65:C4:19:B0:E4:7A:28:D4:F7:8C:CD:F6:96:46
X509v3 Authority Key Identifier:
keyid:D0:7D:75:73:AA:CA:E8:21:C8:7D:6D:36:43:1C:FE:4B:28:01:AB:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0H11c6rK6CHIfW02Qxz-SygBq0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/pwGmEYbuZcQZsOR6KNT3jM32lkY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/5725cc-ad70-46f8-bb62-cf9dc5baaa79/1/0H11c6rK6CHIfW02Qxz-SygBq0E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.155.53.0/24
Signature Algorithm: sha256WithRSAEncryption
41:6b:11:e3:5a:38:8d:8b:35:16:a1:69:33:83:75:c3:52:11:
ab:c8:09:95:88:8a:7a:72:c6:74:07:b0:53:d5:ae:f7:f4:f6:
67:67:66:4e:84:76:60:49:bf:78:0f:d4:21:be:83:54:1d:d8:
dc:c1:c4:b0:fd:29:eb:59:0f:c4:1f:b7:39:e1:f5:9b:8b:46:
fd:67:4c:78:77:2c:0c:76:21:b6:08:2b:52:59:45:be:21:ac:
cc:fb:72:ea:fb:fd:87:85:f9:a3:7c:41:e7:a3:b7:7f:0a:f5:
d1:ee:ec:0e:c0:ac:3d:31:8a:d5:2a:00:7d:39:26:fb:ad:06:
c1:2b:f2:6b:8d:74:f3:db:74:4f:cf:67:d8:10:b3:a0:7e:59:
1a:a1:bd:09:b3:8b:b6:41:06:0a:fa:45:45:ca:34:2f:22:09:
9b:83:7d:e3:74:ba:bc:9a:cc:30:f1:13:40:77:f2:bb:8c:bf:
4c:79:6c:a7:ed:7e:06:30:af:b6:73:b8:78:5f:a2:16:1a:59:
f5:9b:af:f6:8b:fb:86:b5:e6:f7:ed:25:5a:7e:8e:ee:84:ce:
74:14:7a:3c:a2:fb:61:43:81:3a:09:b3:15:db:0a:7c:68:0d:
50:f5:71:63:53:87:38:d6:85:28:45:a2:21:35:90:6c:60:f4:
31:1b:b1:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:11 2025 by rpki-client on console.sobornost.net