Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/6a3e2b-5d40-467e-b467-fe3d6ecd4b3c/1/asH1NiK0lWRhOJfog_6lggdZBuk.roa
File: asH1NiK0lWRhOJfog_6lggdZBuk.roa (raw, json)
Hash identifier: UP22QlxrgM1QLhMMOsXdQ4pCGngzo2GvBVVvnQrwKAw=
Subject key identifier: 6A:C1:F5:36:22:B4:95:64:61:38:97:E8:83:FE:A5:82:07:59:06:E9
Certificate issuer: /CN=9b070c07a292618186385cc204ec95fb64af5d19
Certificate serial: 01856F54A9D53B3E3D33C81A877DFCB04DC8
Authority key identifier: 9B:07:0C:07:A2:92:61:81:86:38:5C:C2:04:EC:95:FB:64:AF:5D:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwcMB6KSYYGGOFzCBOyV-2SvXRk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/6a3e2b-5d40-467e-b467-fe3d6ecd4b3c/1/asH1NiK0lWRhOJfog_6lggdZBuk.roa
Signing time: Sun 01 Jan 2023 21:54:57 +0000
ROA not before: Sun 01 Jan 2023 21:54:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 1239
IP address blocks: 176.97.195.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6f:54:a9:d5:3b:3e:3d:33:c8:1a:87:7d:fc:b0:4d:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b070c07a292618186385cc204ec95fb64af5d19
Validity
Not Before: Jan 1 21:54:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=6ac1f53622b49564613897e883fea582075906e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:3a:7d:cd:91:d5:0f:af:c7:e3:84:5f:ad:6a:
4d:a9:7a:58:ae:2f:d5:93:c0:cf:bf:0e:38:23:1d:
ba:93:55:2a:47:82:11:04:4d:1f:e0:97:16:a3:da:
b2:73:82:69:d8:f0:9a:d3:a6:e6:1f:fd:fd:1d:e7:
bc:06:fc:6e:15:a8:71:29:77:31:a1:fd:25:6a:32:
19:cc:f9:7c:a2:c1:48:c2:a2:46:43:ff:04:e5:81:
90:19:c0:df:bc:52:44:c9:a1:40:10:9a:72:3e:cf:
12:3f:9d:3f:44:ff:20:c1:59:bd:53:39:50:98:60:
51:df:af:00:f4:33:8b:56:67:68:de:a8:ff:48:ff:
7d:75:0e:50:55:01:16:e1:f8:67:81:1f:03:ba:25:
1a:8b:4b:8c:8a:b3:98:b3:f2:26:7e:ef:b6:43:38:
c6:54:e6:15:b1:a4:9b:68:93:91:34:2e:a9:2b:50:
99:c9:12:3a:91:d3:82:96:44:84:d2:c2:15:38:57:
80:d4:0a:31:ef:34:15:e1:5d:3b:96:b2:59:38:ed:
09:51:7b:c5:45:19:ce:42:ee:76:31:57:2e:0b:5d:
01:b9:d3:19:b3:69:05:27:ca:02:32:19:6e:90:6a:
e8:0a:3a:89:1a:5c:a2:5a:b4:fd:7e:af:7a:1d:9d:
0b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:C1:F5:36:22:B4:95:64:61:38:97:E8:83:FE:A5:82:07:59:06:E9
X509v3 Authority Key Identifier:
keyid:9B:07:0C:07:A2:92:61:81:86:38:5C:C2:04:EC:95:FB:64:AF:5D:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwcMB6KSYYGGOFzCBOyV-2SvXRk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/6a3e2b-5d40-467e-b467-fe3d6ecd4b3c/1/asH1NiK0lWRhOJfog_6lggdZBuk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/6a3e2b-5d40-467e-b467-fe3d6ecd4b3c/1/mwcMB6KSYYGGOFzCBOyV-2SvXRk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.97.195.0/24
Signature Algorithm: sha256WithRSAEncryption
18:b8:0a:9b:35:d3:8f:17:ab:a8:4b:5a:c6:28:c3:63:d9:37:
01:5a:6b:c2:2c:2c:c5:5c:75:8d:00:e8:3a:48:9e:b7:bb:ba:
05:1a:53:8a:73:9b:bb:18:d1:89:15:a2:e4:90:64:78:d7:17:
37:37:7c:1f:15:18:82:9c:34:ad:57:03:8c:1e:ff:c9:13:d6:
76:71:d0:5d:bb:df:ce:05:fc:74:2d:35:7e:14:2e:de:d2:42:
fd:c2:1b:ea:72:9e:0e:db:3c:fd:63:25:c5:f5:eb:06:bc:38:
38:0d:0b:f7:e1:23:4b:e0:c6:bd:01:dc:a0:14:38:9f:9a:57:
28:bc:ad:1c:8f:3f:b9:f7:92:49:33:0c:75:50:ff:41:44:4f:
5c:26:bd:40:85:bc:eb:9d:11:16:c0:a6:f1:71:b7:3c:1a:d7:
a3:0d:2d:95:18:e2:56:66:c7:e7:4f:1c:91:8b:fb:8e:48:f4:
7f:18:c4:49:b9:8d:b7:e3:69:69:77:38:8f:ce:42:76:a7:72:
1b:12:dc:dd:f4:59:d0:45:ba:4b:2d:44:58:63:47:0d:d5:0c:
0b:88:d1:9e:1a:41:92:4a:7f:28:c2:3f:db:52:27:a1:93:32:
ef:ec:f4:c0:4f:45:8c:d9:99:07:ad:42:82:29:fd:be:43:47:
31:85:e1:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 12 12:33:41 2025 by rpki-client