Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/Iga5jVF2XbjPh1O_q93OfaOrlUw.roa
File: Iga5jVF2XbjPh1O_q93OfaOrlUw.roa (raw, json)
Hash identifier: fBv3VaWtz/fH5Sfra8JN+CYR+FXB74KZZK6MnISjtgU=
Subject key identifier: 22:06:B9:8D:51:76:5D:B8:CF:87:53:BF:AB:DD:CE:7D:A3:AB:95:4C
Certificate issuer: /CN=1527455ea7fce17cfd0431985258d13e06bfa735
Certificate serial: 0194258FAC06447B577F8912705ABC73EAD1
Authority key identifier: 15:27:45:5E:A7:FC:E1:7C:FD:04:31:98:52:58:D1:3E:06:BF:A7:35
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FSdFXqf84Xz9BDGYUljRPga_pzU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/Iga5jVF2XbjPh1O_q93OfaOrlUw.roa
Signing time: Thu 02 Jan 2025 05:49:20 +0000
ROA not before: Thu 02 Jan 2025 05:49:20 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 16509
IP address blocks: 185.95.174.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:8f:ac:06:44:7b:57:7f:89:12:70:5a:bc:73:ea:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1527455ea7fce17cfd0431985258d13e06bfa735
Validity
Not Before: Jan 2 05:49:20 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=2206b98d51765db8cf8753bfabddce7da3ab954c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ce:22:d1:c8:c3:01:fa:69:84:10:f6:31:40:
dd:64:71:a1:ce:64:58:e9:b9:60:55:62:6a:59:0d:
36:19:07:3a:6f:7c:d9:9e:65:3b:a6:f4:db:a8:4d:
45:8b:20:68:a0:d8:29:75:3a:62:94:da:fd:f4:39:
7f:67:88:26:9d:aa:0c:3e:4e:23:57:65:cc:07:df:
8f:0f:41:ed:c3:c6:94:d8:46:c7:18:39:41:b5:5b:
03:ef:20:04:37:77:bf:c5:20:82:8e:be:fe:38:41:
22:54:8c:fa:18:42:21:8f:1c:d2:c9:a4:59:54:8f:
10:58:6e:0a:20:f9:9b:57:f8:84:48:3d:65:2a:ec:
dc:ce:b9:48:c7:58:1b:4d:1a:e8:52:dc:91:96:73:
b5:4b:4d:7c:31:e1:b6:34:ab:ed:2c:8a:e2:5d:e6:
2b:cf:7f:a2:64:17:e6:30:0b:fc:7d:dd:5b:09:e8:
cc:23:c2:ff:f1:04:31:2d:ec:87:c2:99:da:99:ef:
2c:94:8f:88:e3:54:cd:9e:27:63:c9:92:59:f2:8e:
bb:4a:b9:52:ec:ae:96:ae:c8:aa:44:f6:9e:76:9b:
6d:8d:2b:eb:28:0c:c9:8f:79:4a:12:75:f3:ca:b6:
86:f4:d8:bf:40:f4:53:c2:60:c4:dc:ea:c8:fc:42:
17:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:06:B9:8D:51:76:5D:B8:CF:87:53:BF:AB:DD:CE:7D:A3:AB:95:4C
X509v3 Authority Key Identifier:
keyid:15:27:45:5E:A7:FC:E1:7C:FD:04:31:98:52:58:D1:3E:06:BF:A7:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FSdFXqf84Xz9BDGYUljRPga_pzU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/Iga5jVF2XbjPh1O_q93OfaOrlUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/24c4f6-21ee-4b6b-a945-98f8ccd5db8d/1/FSdFXqf84Xz9BDGYUljRPga_pzU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.95.174.0/24
Signature Algorithm: sha256WithRSAEncryption
a0:cf:18:6a:61:ff:fc:0a:f2:00:04:1d:a4:4c:2c:75:93:2e:
2a:ef:69:bd:03:cd:54:b5:ed:df:59:9a:7d:ae:15:91:b0:43:
3e:f4:07:14:de:00:08:27:a4:f9:b4:c1:cc:ab:3f:05:cb:c1:
e3:a7:dc:45:6a:8e:14:b8:60:c3:ad:6f:fe:c1:4b:20:a5:4a:
ed:57:0b:7a:f9:28:6a:2f:8a:6e:5c:f8:ed:c4:e0:3c:30:f0:
71:0e:0d:69:d2:fa:e6:76:da:c3:fe:2e:80:65:a8:bb:c1:14:
8b:41:18:6d:0f:ed:32:e5:1d:aa:8f:69:ea:0d:dd:f9:5c:4e:
70:fe:f6:d4:2e:60:d2:10:df:43:c2:ec:f6:bb:7e:a7:38:e9:
34:42:6a:af:3d:a4:d8:d9:a9:f2:3e:ec:78:61:e1:bd:71:dc:
a4:76:0e:5f:e3:a3:f5:cd:83:24:b6:22:72:a1:ae:ea:5d:ed:
dc:f2:27:a3:73:46:83:f6:f9:24:a6:2c:41:5c:b4:4b:8c:61:
01:2a:36:d2:63:49:27:f0:bf:92:08:7a:40:2a:3f:c0:51:ae:
10:bd:0b:df:42:64:6f:da:31:fd:ef:82:57:c7:64:95:e0:f1:
8c:3b:65:c0:45:85:2f:da:f3:7d:8f:e7:9d:29:0b:50:b9:e7:
61:01:76:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 11:08:22 2025 by rpki-client