Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/LF52t_xcK8OlTlVz66qeObDc0rM.roa
File: LF52t_xcK8OlTlVz66qeObDc0rM.roa (raw, json)
Hash identifier: QwkKHAmSHKrxN6EnHltEc2QlkaKruaZHOUCtgP8TKsg=
Subject key identifier: 2C:5E:76:B7:FC:5C:2B:C3:A5:4E:55:73:EB:AA:9E:39:B0:DC:D2:B3
Certificate issuer: /CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Certificate serial: 018B0AC0B0B1CC7F6999C9A793E68FA86B49
Authority key identifier: 58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/LF52t_xcK8OlTlVz66qeObDc0rM.roa
Signing time: Sat 07 Oct 2023 15:28:02 +0000
ROA not before: Sat 07 Oct 2023 15:28:02 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 9087
IP address blocks: 193.109.196.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:0a:c0:b0:b1:cc:7f:69:99:c9:a7:93:e6:8f:a8:6b:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=58bf7f3ad53f29a3c43f0ad82017a05368c0104a
Validity
Not Before: Oct 7 15:28:02 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=2c5e76b7fc5c2bc3a54e5573ebaa9e39b0dcd2b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:5b:4e:60:9d:d7:e1:25:97:3b:fb:99:ac:de:
65:08:d7:99:0a:81:a0:c9:ff:c8:31:b4:ea:33:9b:
92:8e:fa:66:de:db:54:34:3d:de:86:ff:b6:57:c1:
ae:0f:ff:13:c0:56:52:3b:b2:54:82:19:3a:71:d2:
e1:38:5d:63:f1:50:53:98:37:0c:19:63:e3:13:85:
3d:78:0b:c1:1a:71:87:53:f0:eb:30:7f:b9:e6:31:
0d:3d:58:eb:37:75:0c:55:06:8e:87:c1:fb:66:dc:
f7:0f:f7:b1:17:e2:93:6e:51:1a:af:55:f7:0d:59:
1a:a1:ad:b6:62:be:10:b3:0b:c8:28:9a:d6:18:30:
30:05:02:ff:5f:d6:95:15:45:ad:9a:c7:e4:ae:19:
66:68:7a:bc:54:b3:2c:3f:48:88:7a:f1:a2:9b:88:
9b:7a:01:09:b3:11:db:6e:58:b4:4f:9a:bc:48:2a:
86:90:0a:34:db:75:3f:0a:37:4c:bd:c1:a9:84:a0:
b7:1c:a4:a8:05:2d:ae:e0:de:5f:fe:67:85:27:58:
22:e6:31:7c:7e:0c:1b:0a:48:88:2e:8c:e4:30:1b:
91:78:75:5c:a2:61:a2:02:ac:03:fd:03:6e:cb:64:
58:75:25:76:4c:de:f4:ea:2c:d5:93:48:ff:91:03:
f2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:5E:76:B7:FC:5C:2B:C3:A5:4E:55:73:EB:AA:9E:39:B0:DC:D2:B3
X509v3 Authority Key Identifier:
keyid:58:BF:7F:3A:D5:3F:29:A3:C4:3F:0A:D8:20:17:A0:53:68:C0:10:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WL9_OtU_KaPEPwrYIBegU2jAEEo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/LF52t_xcK8OlTlVz66qeObDc0rM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/364b94-6ca4-4f9a-88a5-8b3d527c49e4/1/WL9_OtU_KaPEPwrYIBegU2jAEEo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.109.196.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:a5:90:ca:6f:80:c1:c8:e2:2a:eb:a0:c6:1f:c1:f4:ec:0f:
bd:29:a4:c2:17:09:34:66:50:a8:9c:d8:9b:93:b2:44:39:cd:
3f:3a:e5:cb:55:c3:c4:85:9a:db:b4:3f:28:0a:7c:c7:3e:f8:
99:a9:4f:74:5d:b1:3d:77:96:71:a1:27:0e:dc:f2:a9:21:11:
00:89:b7:0b:2c:03:4a:2a:9d:2a:e7:ad:de:6a:93:bd:e6:8a:
5c:0a:39:ae:22:d3:5f:43:bc:ad:c6:6f:12:4d:f4:c7:4c:54:
45:77:39:b4:94:cf:9c:0e:45:03:87:7f:a7:24:c6:e0:e7:34:
0b:73:84:97:8a:46:09:e5:ac:4a:3c:1e:ff:0b:c0:1f:e6:1f:
e4:eb:c4:60:6e:e8:e1:49:d8:c2:13:a9:2e:ae:69:aa:f0:2b:
1b:21:34:33:f8:d3:eb:05:8f:74:19:07:7d:69:de:5d:f3:b7:
13:9a:f8:ba:cf:31:92:c3:1d:0c:ed:83:27:11:f1:f0:e8:d0:
c2:43:ee:c4:c9:72:13:12:69:03:90:73:80:58:02:20:7e:67:
46:08:1c:02:8d:ce:85:4c:51:90:74:71:3e:c8:cb:39:34:32:
d3:7e:1f:7d:94:92:44:eb:29:96:ff:0a:1a:4e:69:ba:ab:a2:
01:8a:32:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 30 05:50:26 2025 by rpki-client