Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/2709b0-f269-46be-afde-d56b36bdfc97/1/VxEiX9_jKsEKvECgxsMfhGWThJw.roa
File: VxEiX9_jKsEKvECgxsMfhGWThJw.roa (raw, json)
Hash identifier: ADcsgIDgCWcUq8s/hB1ax1TeiNrOO4xCuSuKnxf5Q6E=
Subject key identifier: 57:11:22:5F:DF:E3:2A:C1:0A:BC:40:A0:C6:C3:1F:84:65:93:84:9C
Certificate issuer: /CN=cb77f3aad154c7e5fa6524dab6d218855d17adf7
Certificate serial: 02BEB87C
Authority key identifier: CB:77:F3:AA:D1:54:C7:E5:FA:65:24:DA:B6:D2:18:85:5D:17:AD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/y3fzqtFUx-X6ZSTattIYhV0Xrfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/2709b0-f269-46be-afde-d56b36bdfc97/1/VxEiX9_jKsEKvECgxsMfhGWThJw.roa
Signing time: Sat 01 Jan 2022 05:57:15 +0000
ROA not before: Sat 01 Jan 2022 05:57:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212144
IP address blocks: 94.154.118.0/24 maxlen: 24
2a12:7700::/29 maxlen: 29
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46053500 (0x2beb87c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cb77f3aad154c7e5fa6524dab6d218855d17adf7
Validity
Not Before: Jan 1 05:57:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5711225fdfe32ac10abc40a0c6c31f846593849c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3c:d6:d3:f7:4a:d8:fd:35:d2:b3:67:4c:0f:
f1:43:88:f9:46:40:bb:f0:68:55:1c:da:0f:91:d5:
e8:ce:64:b2:10:12:c1:ac:06:d6:6e:49:1d:97:43:
2e:ce:6d:4f:da:80:13:73:91:eb:68:1f:71:8c:53:
17:17:c3:dd:90:f3:f2:12:dc:ca:a0:8e:ad:09:42:
30:19:64:eb:4e:56:30:c3:ec:b1:e8:da:a9:9e:ce:
59:d0:8e:77:1e:28:17:9d:fa:67:5f:c6:63:34:87:
85:29:6f:fd:9a:5b:41:a1:75:02:fa:95:fb:fd:63:
c0:26:29:a6:09:cc:a4:6f:f2:cd:14:36:78:c9:40:
e6:e5:45:db:d7:32:ff:f4:b7:e1:6c:a7:bf:20:7f:
bd:75:11:1a:ee:95:40:27:6a:13:ce:2f:7c:ac:13:
4f:4b:ea:2f:6c:ff:41:36:37:5c:e2:94:48:16:cd:
da:5b:ee:09:06:3c:95:cb:1c:69:81:ca:c5:0f:62:
3b:39:86:2f:13:f9:95:c4:b2:14:1d:6b:93:cd:17:
bd:cc:78:f7:15:73:76:06:89:9f:a4:b6:81:25:3a:
6c:33:55:8e:5e:91:32:21:b8:21:c0:c3:69:dd:10:
6f:cc:59:db:7e:88:fb:e4:2d:b7:af:26:64:08:78:
47:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:11:22:5F:DF:E3:2A:C1:0A:BC:40:A0:C6:C3:1F:84:65:93:84:9C
X509v3 Authority Key Identifier:
keyid:CB:77:F3:AA:D1:54:C7:E5:FA:65:24:DA:B6:D2:18:85:5D:17:AD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/y3fzqtFUx-X6ZSTattIYhV0Xrfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/2709b0-f269-46be-afde-d56b36bdfc97/1/VxEiX9_jKsEKvECgxsMfhGWThJw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/2709b0-f269-46be-afde-d56b36bdfc97/1/y3fzqtFUx-X6ZSTattIYhV0Xrfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.154.118.0/24
IPv6:
2a12:7700::/29
Signature Algorithm: sha256WithRSAEncryption
1a:73:f8:a7:1c:b4:41:4b:e9:f2:73:55:65:5d:72:2f:cd:10:
5f:d4:dc:ae:a8:3e:c5:dd:d4:de:06:75:b5:3c:8f:8a:68:fe:
8c:fa:b8:59:fd:12:14:de:f9:8e:f0:84:ef:69:ff:9e:b4:ce:
e2:79:6b:33:bb:e1:83:df:0c:1c:2e:36:2d:44:e3:6c:b4:12:
8c:fb:b4:16:c9:56:36:20:1f:66:ef:9d:a2:01:f4:43:cc:71:
c2:da:a3:2c:c5:20:69:f2:8f:67:a2:37:86:c6:98:a2:df:0b:
7f:70:4f:56:8c:2e:4e:88:2c:52:91:17:0a:be:7f:c6:6e:41:
04:91:e5:98:9d:9d:5c:1e:07:44:94:11:da:b9:9e:da:62:79:
d8:44:4e:75:52:ad:b3:22:d2:09:cd:e3:8d:6b:31:2a:b1:42:
29:a3:1e:f2:3f:16:79:e9:22:ec:fe:d5:e0:08:3f:d8:9f:48:
3d:07:d0:52:dc:12:d0:b9:34:f1:b2:ca:40:95:bd:d2:e8:86:
b1:59:04:0d:80:4c:1f:45:86:b2:65:e2:f9:d4:dd:e0:eb:c2:
fe:e3:44:d9:bf:7e:9d:4d:ec:6c:30:b3:14:05:c9:d9:1a:ce:
c9:8f:78:7e:ae:c8:01:b2:30:64:ea:24:73:16:46:24:19:dd:
d6:53:6f:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 11:16:39 2025 by rpki-client