Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/oS5Y87INuzMm-tCTIpMTSTW5WVE.roa
File: oS5Y87INuzMm-tCTIpMTSTW5WVE.roa (raw, json)
Hash identifier: Nc5ULxq7qk+8OA8AUlHkVutCJnV4RYYoj2IIpYBr+CM=
Subject key identifier: A1:2E:58:F3:B2:0D:BB:33:26:FA:D0:93:22:93:13:49:35:B9:59:51
Certificate issuer: /CN=eae2653179cafe5ff6651c6058b67ad2d2c8485e
Certificate serial: 019421B2588E038C5CD42A97553A7D8AFCF0
Authority key identifier: EA:E2:65:31:79:CA:FE:5F:F6:65:1C:60:58:B6:7A:D2:D2:C8:48:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6uJlMXnK_l_2ZRxgWLZ60tLISF4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/oS5Y87INuzMm-tCTIpMTSTW5WVE.roa
Signing time: Wed 01 Jan 2025 11:48:43 +0000
ROA not before: Wed 01 Jan 2025 11:48:43 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 200632
IP address blocks: 195.242.0.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:58:8e:03:8c:5c:d4:2a:97:55:3a:7d:8a:fc:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eae2653179cafe5ff6651c6058b67ad2d2c8485e
Validity
Not Before: Jan 1 11:48:43 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a12e58f3b20dbb3326fad0932293134935b95951
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:d9:eb:1c:e4:6a:c8:8d:b4:64:f9:3c:f6:30:
39:01:b3:f1:4d:5c:54:bf:48:03:e5:99:fc:96:a3:
a3:02:52:b6:1d:ee:eb:aa:82:e0:87:a0:2c:5a:71:
61:78:cd:69:7f:32:86:87:a9:57:3f:e9:5a:ea:85:
06:93:e4:ac:f8:1c:16:cd:61:8a:cc:41:0c:35:15:
7c:a3:c0:3c:d5:99:f7:cb:06:4f:d2:4e:75:8d:02:
37:3e:c9:b9:16:de:a5:65:64:f5:82:3c:9b:d2:59:
8e:fd:56:b3:a9:93:e0:94:bf:1b:5f:33:7a:b9:1f:
bd:b5:a2:17:96:79:90:f0:91:45:9f:e1:42:43:6e:
9e:df:9c:58:20:5f:a1:31:e8:3a:c4:1b:a2:2f:2b:
4c:66:d3:22:00:fc:38:86:6f:ff:d3:00:08:0a:4e:
62:ed:fd:cc:cb:3e:74:69:18:bb:84:14:28:68:f2:
9f:60:cf:36:0f:c3:52:4d:ed:ad:27:84:f9:60:47:
f5:8f:3f:47:bf:7f:5f:9e:99:4f:0a:7f:54:dc:6a:
a5:52:fa:09:1d:0c:55:00:0d:bf:cf:a4:17:cb:8c:
9e:f5:54:cc:03:13:13:3e:a5:e4:a8:90:ef:68:ae:
59:58:b1:5f:79:cc:e0:31:7f:f0:bd:38:96:cc:3c:
de:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:2E:58:F3:B2:0D:BB:33:26:FA:D0:93:22:93:13:49:35:B9:59:51
X509v3 Authority Key Identifier:
keyid:EA:E2:65:31:79:CA:FE:5F:F6:65:1C:60:58:B6:7A:D2:D2:C8:48:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6uJlMXnK_l_2ZRxgWLZ60tLISF4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/oS5Y87INuzMm-tCTIpMTSTW5WVE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/19e9c5-82e2-438b-a0e9-992d797f4bbb/1/6uJlMXnK_l_2ZRxgWLZ60tLISF4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.242.0.0/23
Signature Algorithm: sha256WithRSAEncryption
7c:4f:32:fd:55:5c:5d:3b:33:7c:dc:2d:fc:b3:07:45:f2:58:
6b:f5:f7:e2:a8:00:14:9f:b6:d8:c1:d5:65:cb:e6:16:35:f1:
04:64:cb:5e:ac:c8:69:50:a6:08:1a:fa:96:67:76:ed:c6:71:
f9:22:3c:4c:fd:e6:25:71:1a:56:d2:cc:24:ad:d7:6a:0d:d3:
4e:18:a4:58:63:12:56:e0:b9:66:9d:f9:d3:67:4a:4a:6a:87:
67:b9:5b:4d:80:8d:14:43:bc:e8:cf:5d:d2:c9:61:38:71:db:
27:19:89:1c:66:26:1c:d4:63:51:b9:ee:c3:76:22:60:5b:5c:
10:61:eb:e7:36:5f:08:6f:ad:5e:69:2d:9b:40:94:36:01:63:
62:c1:72:07:1f:23:3e:10:a4:4c:6d:c3:44:c3:65:7d:41:16:
94:e9:ae:32:f4:94:41:c2:93:e9:bf:90:fa:2a:ee:4d:7e:1c:
dd:49:e7:2b:e1:0b:e7:9f:d0:e7:bf:67:32:97:b6:f8:23:3f:
23:de:c0:c7:68:33:20:33:35:b9:5a:ee:82:3f:72:a4:dd:b4:
f2:7d:70:d4:e3:30:d3:92:08:f0:11:89:0a:99:2d:ef:04:12:
a3:66:4b:c3:59:73:a6:3b:c0:c8:34:49:2b:bf:47:12:38:e4:
39:6a:1b:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 05:00:06 2025 by rpki-client