Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/HJSwnKLNgwsgkTsWAJGJbhRxrYg.roa
File: HJSwnKLNgwsgkTsWAJGJbhRxrYg.roa (raw, json)
Hash identifier: k/1eexGDlUI1L69r6EcdCcQNtE5gQOhNhUm2uiosEaU=
Subject key identifier: 1C:94:B0:9C:A2:CD:83:0B:20:91:3B:16:00:91:89:6E:14:71:AD:88
Certificate issuer: /CN=ba6d46b76bfd6d42bbd575e2f26fce136b9b6a6d
Certificate serial: 019425FCB51987F9E443C604E91A949DC490
Authority key identifier: BA:6D:46:B7:6B:FD:6D:42:BB:D5:75:E2:F2:6F:CE:13:6B:9B:6A:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/um1Gt2v9bUK71XXi8m_OE2ubam0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/HJSwnKLNgwsgkTsWAJGJbhRxrYg.roa
Signing time: Thu 02 Jan 2025 07:48:25 +0000
ROA not before: Thu 02 Jan 2025 07:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 8220
IP address blocks: 195.245.247.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:fc:b5:19:87:f9:e4:43:c6:04:e9:1a:94:9d:c4:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba6d46b76bfd6d42bbd575e2f26fce136b9b6a6d
Validity
Not Before: Jan 2 07:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=1c94b09ca2cd830b20913b160091896e1471ad88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:0b:42:c6:39:82:28:3c:9d:80:dd:49:69:3f:
e8:12:75:f7:87:47:83:61:21:bc:01:96:c5:e5:0f:
3b:83:74:38:3f:02:91:b3:2a:82:e9:37:8c:39:98:
ee:08:28:d1:db:e6:f7:75:e2:c1:2e:76:55:96:80:
e6:3f:06:c4:4f:fc:89:e9:65:bc:af:c2:d3:30:1f:
2e:94:d8:76:51:5c:62:1a:b3:e2:1d:b0:44:f1:88:
2c:6e:2f:43:3a:2c:8d:b4:4b:de:e2:cd:61:ab:c8:
56:df:cf:cc:ab:e6:67:8e:00:2a:2c:d6:bf:9d:6a:
f7:c2:b0:b7:57:71:5b:fc:e3:38:c2:80:46:42:08:
a6:80:2a:9f:57:72:3b:df:0d:3d:d5:29:7e:56:21:
0f:7a:0a:f1:56:96:55:ed:26:a3:97:b1:e6:37:68:
fc:9b:5f:4c:82:89:b8:39:79:4b:1c:31:fc:ef:f0:
c8:7a:27:6d:f1:a7:23:75:2e:82:a9:2a:12:2d:a8:
5f:cd:63:ed:00:b0:bc:1b:74:ed:5f:fc:e5:78:3e:
71:3d:33:9d:43:4b:33:1e:ef:b0:f5:33:48:41:86:
e0:f7:02:73:12:bf:06:d1:b3:55:17:83:43:7a:8d:
f6:b7:d5:22:af:3d:1a:eb:88:3d:e1:17:fe:1c:ae:
68:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:94:B0:9C:A2:CD:83:0B:20:91:3B:16:00:91:89:6E:14:71:AD:88
X509v3 Authority Key Identifier:
keyid:BA:6D:46:B7:6B:FD:6D:42:BB:D5:75:E2:F2:6F:CE:13:6B:9B:6A:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/um1Gt2v9bUK71XXi8m_OE2ubam0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/HJSwnKLNgwsgkTsWAJGJbhRxrYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/e8be0e-a80d-4a4f-b52f-dff1cffb7b18/1/um1Gt2v9bUK71XXi8m_OE2ubam0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.245.247.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:a1:34:c8:8f:79:0b:10:b3:71:d2:c2:93:f8:25:66:9b:69:
66:b0:46:06:7e:22:3f:59:95:89:e4:40:7c:49:d0:94:39:de:
1b:88:3a:85:26:82:56:2f:e5:50:e5:82:ef:17:b2:58:7d:ca:
bb:79:12:3b:c8:4d:6e:82:ad:4c:f4:1a:02:e3:17:50:19:50:
fc:73:05:ac:bb:a9:46:09:49:e8:35:5e:1d:40:31:f1:b7:14:
c5:81:6e:10:3c:19:6d:62:75:a5:9a:0b:aa:87:bb:1e:a7:5d:
26:89:ab:35:d9:d1:35:6a:01:f9:84:94:7b:f2:b5:6c:af:04:
76:30:82:4a:a9:90:30:1e:20:b6:e8:9f:8a:4d:8c:0c:7e:97:
84:cb:c6:21:b8:12:0c:d6:48:58:a5:49:3a:73:e4:1c:7c:10:
aa:a1:2a:12:5a:48:1e:3f:ec:2a:b7:f3:28:45:5a:1b:36:5c:
1b:13:53:5d:51:7b:39:1e:fc:5b:f9:d9:f7:31:31:08:e6:50:
a8:aa:13:42:3b:e5:63:d1:62:ad:3f:f2:d5:3f:bc:c9:ab:79:
e9:f1:8d:5c:d6:6e:aa:a2:b6:d4:9c:07:29:9d:48:47:97:60:
a4:aa:8b:62:a0:16:d0:f4:ab:10:dc:52:6c:5c:fe:fc:94:c4:
66:cc:17:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 12:33:25 2025 by rpki-client