Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/eb7dd4-fc8f-4937-8db0-a665db22ef72/1/lmgzBptHHcGR1jAKHjpS47zLYEQ.roa
File: lmgzBptHHcGR1jAKHjpS47zLYEQ.roa (raw, json)
Hash identifier: t/2vEU4hMx7G3HXdySNq/pjezwcUhKsGwxxqSv/Bf/U=
Subject key identifier: 96:68:33:06:9B:47:1D:C1:91:D6:30:0A:1E:3A:52:E3:BC:CB:60:44
Certificate issuer: /CN=1caf2fa38e1d1a4d0e06609bf2976e81c50aad0a
Certificate serial: 019425215B6F110BC3A97FDB50C2437DA7B7
Authority key identifier: 1C:AF:2F:A3:8E:1D:1A:4D:0E:06:60:9B:F2:97:6E:81:C5:0A:AD:0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HK8vo44dGk0OBmCb8pdugcUKrQo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/eb7dd4-fc8f-4937-8db0-a665db22ef72/1/lmgzBptHHcGR1jAKHjpS47zLYEQ.roa
Signing time: Thu 02 Jan 2025 03:48:50 +0000
ROA not before: Thu 02 Jan 2025 03:48:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 209116
IP address blocks: 5.181.248.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:5b:6f:11:0b:c3:a9:7f:db:50:c2:43:7d:a7:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1caf2fa38e1d1a4d0e06609bf2976e81c50aad0a
Validity
Not Before: Jan 2 03:48:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=966833069b471dc191d6300a1e3a52e3bccb6044
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1f:69:90:55:f5:39:c9:6b:47:b6:6e:ec:af:
9d:25:b6:4e:7f:08:b8:e6:93:cf:52:0b:ae:43:c2:
ea:7f:9e:36:3c:29:3c:9d:65:d0:32:17:de:0c:4a:
f1:c2:b6:98:89:8f:ad:c3:bd:be:98:03:e5:39:c2:
02:e6:a8:e4:80:c2:fb:69:e0:71:da:c7:e3:79:0b:
08:87:90:37:38:e9:e2:5b:cd:ba:0e:65:95:09:e5:
8e:3d:db:22:96:ca:e7:b1:9a:d4:40:b6:dd:ce:0c:
99:0f:68:ac:1e:b8:2b:88:be:3d:e0:2f:24:d0:83:
0a:1e:46:b4:71:18:87:53:1e:39:6b:55:ca:39:6c:
d6:8a:6b:37:7b:fa:c6:fe:a3:6a:21:79:a0:e4:a7:
01:a8:9a:d5:8a:f2:f8:72:61:2d:2d:b9:08:1b:98:
ff:73:8b:f4:51:dc:9f:86:77:6f:54:bb:6b:bb:7d:
6b:62:f9:50:f7:31:ff:00:19:a8:d6:ae:b7:a8:00:
aa:0c:71:16:e8:ac:4e:9f:7d:ac:0d:10:c0:cb:c5:
f2:7e:03:b3:3d:b0:fc:a2:f3:44:90:a4:cb:60:11:
a6:f5:e1:34:28:c3:20:39:e4:a2:6f:4d:9d:79:97:
cd:77:c5:02:a0:1d:c8:bb:6a:e7:a3:9f:e8:30:72:
cc:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:68:33:06:9B:47:1D:C1:91:D6:30:0A:1E:3A:52:E3:BC:CB:60:44
X509v3 Authority Key Identifier:
keyid:1C:AF:2F:A3:8E:1D:1A:4D:0E:06:60:9B:F2:97:6E:81:C5:0A:AD:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HK8vo44dGk0OBmCb8pdugcUKrQo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/eb7dd4-fc8f-4937-8db0-a665db22ef72/1/lmgzBptHHcGR1jAKHjpS47zLYEQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/eb7dd4-fc8f-4937-8db0-a665db22ef72/1/HK8vo44dGk0OBmCb8pdugcUKrQo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.248.0/22
Signature Algorithm: sha256WithRSAEncryption
01:02:88:16:6c:fe:12:ce:cc:8f:fd:90:62:37:f6:94:e1:db:
20:e3:b6:f5:51:5a:64:88:24:a3:50:20:99:a4:ef:e8:f6:a2:
ca:23:6a:43:af:f5:12:83:04:a2:78:9b:3f:73:a0:ab:d7:29:
b7:e5:96:9b:72:18:2c:28:6e:32:3b:44:53:f0:78:de:47:20:
c4:bc:a3:dc:b1:34:de:03:15:dd:5a:77:8c:db:6c:ad:8c:92:
88:c0:b9:33:c3:57:61:78:cc:3f:35:7a:66:9b:9f:ed:6f:f6:
db:6c:8f:a0:40:1a:23:f4:68:b3:ec:9c:48:d8:fa:2d:78:60:
11:36:48:55:38:56:40:8c:c3:1a:51:70:10:a8:8a:33:39:56:
8a:d3:30:4b:50:b9:6c:1e:b8:0f:6f:13:5f:e9:c6:9e:f0:96:
1d:86:09:52:ad:88:56:e7:21:08:6c:97:dd:9b:cd:46:4a:39:
01:ad:7a:e9:02:86:7a:65:c2:c1:95:79:bb:e6:11:3c:06:46:
05:94:4d:61:ea:ee:b8:54:38:57:31:c8:1e:dd:df:be:04:c1:
8f:a0:b7:f7:71:96:7e:2c:94:26:0c:64:1a:e5:02:4a:29:b4:
47:39:d3:98:84:15:ea:a9:60:b7:b1:fa:34:1d:97:59:b8:63:
c9:ff:55:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:28:45 2025 by rpki-client on console.sobornost.net