Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/55303a-f225-4a3f-825f-5dcd82def84f/1/cS_oROlW9-wwbVo9EJJ4pl2eigE.roa
File: cS_oROlW9-wwbVo9EJJ4pl2eigE.roa (raw, json)
Hash identifier: JJRh33aNovJ8ixT1Vh+De6OT6uSujo/Saa2Iamwl/iI=
Subject key identifier: 71:2F:E8:44:E9:56:F7:EC:30:6D:5A:3D:10:92:78:A6:5D:9E:8A:01
Certificate issuer: /CN=73fc89023eac74ab298563f99ddb71f6f15f9538
Certificate serial: 0194228D108C5F467FB0E60A3B57D097D2AC
Authority key identifier: 73:FC:89:02:3E:AC:74:AB:29:85:63:F9:9D:DB:71:F6:F1:5F:95:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_yJAj6sdKsphWP5ndtx9vFflTg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/55303a-f225-4a3f-825f-5dcd82def84f/1/cS_oROlW9-wwbVo9EJJ4pl2eigE.roa
Signing time: Wed 01 Jan 2025 15:47:37 +0000
ROA not before: Wed 01 Jan 2025 15:47:37 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 201987
IP address blocks: 159.255.148.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:10:8c:5f:46:7f:b0:e6:0a:3b:57:d0:97:d2:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73fc89023eac74ab298563f99ddb71f6f15f9538
Validity
Not Before: Jan 1 15:47:37 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=712fe844e956f7ec306d5a3d109278a65d9e8a01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1c:5c:20:d9:d4:d9:28:db:c3:e6:07:b9:b8:
f5:e9:43:74:73:4b:aa:90:28:c3:98:48:4b:61:b5:
38:4b:f1:5b:37:5f:6e:5f:38:50:78:05:83:48:9d:
8d:70:0d:3b:72:43:a2:6a:53:c3:ad:45:5a:fa:a1:
fd:ef:33:75:dc:e2:e4:d7:9c:d6:14:10:6b:b0:73:
3a:da:b8:2b:be:a6:19:a5:16:4b:8e:45:90:bb:2b:
5d:a5:b6:e3:6a:40:1b:93:8e:fb:d1:8d:e7:a8:f1:
61:ef:c0:54:94:39:9a:0f:ea:02:6e:fd:73:d5:7a:
55:9e:bb:8b:b1:ab:4b:be:a0:f8:44:cb:73:81:83:
29:5a:65:d1:23:79:eb:dd:e4:b0:6f:0e:c8:d3:d0:
64:0c:46:f3:1a:0f:4a:c3:1f:81:7b:86:52:84:74:
2f:d0:8e:14:b7:a0:f1:5c:73:90:8c:e9:3d:e9:a1:
b4:ca:32:4e:bf:5d:09:dc:e4:f6:d3:20:ec:e0:f5:
24:21:e8:c5:9f:7b:3a:67:3c:96:de:a2:b0:4b:cd:
37:1a:4e:20:64:e9:1c:01:ae:bb:ca:6e:3a:57:1b:
1f:59:63:3a:07:f7:f6:92:9e:46:01:4f:7f:82:2d:
c7:30:2c:c7:53:4a:0c:63:4a:f6:21:ee:91:ce:79:
53:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:2F:E8:44:E9:56:F7:EC:30:6D:5A:3D:10:92:78:A6:5D:9E:8A:01
X509v3 Authority Key Identifier:
keyid:73:FC:89:02:3E:AC:74:AB:29:85:63:F9:9D:DB:71:F6:F1:5F:95:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_yJAj6sdKsphWP5ndtx9vFflTg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/55303a-f225-4a3f-825f-5dcd82def84f/1/cS_oROlW9-wwbVo9EJJ4pl2eigE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/55303a-f225-4a3f-825f-5dcd82def84f/1/c_yJAj6sdKsphWP5ndtx9vFflTg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.255.148.0/24
Signature Algorithm: sha256WithRSAEncryption
73:a1:68:56:de:a2:5d:f3:67:b5:5c:7d:34:17:c6:fd:42:af:
e7:d3:d1:a7:3c:b5:b8:b4:a8:2d:a5:61:d6:1c:d8:ec:aa:f2:
a4:52:74:d4:0f:3d:67:69:9d:df:fa:7e:09:e6:2e:3a:cf:25:
dd:3c:2f:42:c8:a5:fd:52:35:c9:77:3e:b4:27:00:4a:8c:8c:
79:43:71:74:46:b5:58:fc:52:e1:96:16:e1:af:ca:4e:8e:57:
8d:8c:9f:68:c3:e9:73:d4:49:6a:c2:3f:99:51:2c:a5:e8:58:
82:dd:b3:86:ab:85:28:e1:b9:13:be:70:c1:ae:11:93:09:91:
fb:55:9e:9a:04:d7:c0:3e:1a:4b:15:f1:cf:a5:b0:36:5d:2c:
4d:05:26:5e:1f:29:db:ec:6d:5e:2f:b3:2b:05:09:bb:6e:67:
dd:90:81:f4:9d:53:37:56:9e:27:07:ae:f1:85:9e:ac:27:05:
17:b5:a9:a6:37:19:7f:46:54:c4:44:96:18:27:01:d1:25:8a:
01:f7:76:00:9f:0f:b5:f0:d9:ff:24:0c:c1:82:d2:eb:87:40:
55:3d:13:7c:38:ad:17:d6:da:5f:72:a8:22:7e:be:6f:85:34:
c3:70:4f:eb:45:85:29:e1:59:09:53:c7:38:c8:51:51:6b:df:
cf:ae:f2:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 20:32:17 2025 by rpki-client on console.sobornost.net