Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/sWLKn_DGOv9Yjxjn9KWn3u-uzrg.roa
File: sWLKn_DGOv9Yjxjn9KWn3u-uzrg.roa (raw, json)
Hash identifier: 6amhlWYBiiQkemQurhKhyju8r4eawHknG9lqacINowM=
Subject key identifier: B1:62:CA:9F:F0:C6:3A:FF:58:8F:18:E7:F4:A5:A7:DE:EF:AE:CE:B8
Certificate issuer: /CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Certificate serial: 019417E3C33DF96F70267383F0BB1370ED32
Authority key identifier: D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/sWLKn_DGOv9Yjxjn9KWn3u-uzrg.roa
Signing time: Mon 30 Dec 2024 14:06:29 +0000
ROA not before: Mon 30 Dec 2024 14:06:29 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 136796
IP address blocks: 195.180.150.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:17:e3:c3:3d:f9:6f:70:26:73:83:f0:bb:13:70:ed:32
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d747017564c711bcbd57680a0dfd00f2a5d099db
Validity
Not Before: Dec 30 14:06:29 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=b162ca9ff0c63aff588f18e7f4a5a7deefaeceb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:33:41:34:cc:fd:a7:ba:0b:21:6f:a8:ca:96:
b4:46:49:49:bb:4f:bc:60:f2:74:18:79:a6:72:08:
2d:00:8f:40:58:bd:96:d7:13:6d:53:5f:86:10:b2:
9a:4d:c4:aa:40:fc:07:2c:32:23:e4:c1:5f:b1:1e:
55:2f:0e:2d:84:f2:28:9a:10:25:8b:ef:0c:29:eb:
f3:5b:68:76:54:8a:fe:6b:c5:21:0d:dd:64:52:d9:
c3:77:2f:b4:f4:21:3c:dd:4c:72:31:e3:6d:7a:af:
40:e0:28:ca:5d:36:54:49:09:c2:8b:f8:71:1f:7e:
99:6b:2a:d6:0c:32:4a:1c:c5:5e:d6:9c:b7:6d:24:
0d:f4:b1:05:99:bd:0c:d9:79:84:41:10:62:88:2d:
c2:01:58:c4:0f:3c:36:a6:9d:e3:56:e2:cc:f9:ca:
0c:fb:ed:b4:48:89:c2:81:7f:34:f4:80:26:85:5b:
6e:9f:d5:62:37:2b:81:76:30:2c:cd:fa:ed:4f:1c:
63:99:0f:7b:d1:22:ff:d4:48:85:af:db:68:f4:59:
46:23:c0:78:93:51:77:23:74:4a:f9:b1:d9:3f:0a:
a4:4a:11:5b:10:27:69:c5:37:ea:bc:9d:52:90:f1:
2c:06:11:0a:ff:6e:22:b6:2f:1a:ef:2d:55:3d:24:
97:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:62:CA:9F:F0:C6:3A:FF:58:8F:18:E7:F4:A5:A7:DE:EF:AE:CE:B8
X509v3 Authority Key Identifier:
keyid:D7:47:01:75:64:C7:11:BC:BD:57:68:0A:0D:FD:00:F2:A5:D0:99:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/10cBdWTHEby9V2gKDf0A8qXQmds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/sWLKn_DGOv9Yjxjn9KWn3u-uzrg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/ba2362-0cc5-49bd-a522-4f0e8ce11a7d/1/10cBdWTHEby9V2gKDf0A8qXQmds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.180.150.0/23
Signature Algorithm: sha256WithRSAEncryption
68:47:a3:a0:c6:10:80:c6:76:f4:d8:bb:d7:cc:97:bc:92:ab:
8e:98:4a:d8:0c:bd:73:0a:7a:e7:99:c9:63:41:82:46:b0:77:
bf:3e:cb:1e:db:55:26:8d:6a:8a:af:0f:28:a4:f6:8a:36:76:
bd:2e:c3:c6:91:c6:e6:ca:75:05:32:c1:82:e4:c2:e0:a5:1c:
81:8b:14:5e:d4:34:15:6e:af:80:86:ea:40:b9:a3:b1:80:5a:
2b:74:c2:a3:14:f0:27:b1:ca:2c:13:a0:aa:d6:c8:1a:15:c3:
b1:ef:44:c3:c5:3e:9a:09:15:1c:e3:c0:99:2e:7f:13:0e:3e:
07:dd:46:00:d6:74:73:e4:c5:7d:99:68:2c:fe:87:46:02:df:
6e:e5:5c:c5:68:2e:45:85:f7:e3:59:af:2b:05:ec:a2:e4:28:
03:86:3b:fb:1a:89:85:37:e0:c1:d2:77:8c:84:42:50:94:fc:
9f:3a:30:ed:95:65:1a:eb:bd:1f:5d:e4:12:9a:fc:58:da:f9:
51:23:52:ac:91:55:ca:c2:f3:e3:46:36:59:82:71:05:69:1e:
75:20:70:9f:46:40:88:24:7b:a1:74:0c:9d:c1:21:d4:7e:21:
8c:4c:ed:da:4e:d3:8f:ec:6c:48:c7:c9:29:09:2d:b1:7d:29:
f6:eb:1a:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:08:59 2025 by rpki-client