Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/Ryh96TNsFDTBX8AhOLVLFUkhpVc.roa
File: Ryh96TNsFDTBX8AhOLVLFUkhpVc.roa (raw, json)
Hash identifier: 0Qp0gwqDLIaKxWIqe67rjLkbpKQf4AaipILt+VQUj9U=
Subject key identifier: 47:28:7D:E9:33:6C:14:34:C1:5F:C0:21:38:B5:4B:15:49:21:A5:57
Certificate issuer: /CN=586b0182105bb27b0c8bcf2842bd3c1a85164bd1
Certificate serial: 019425219A7A034883A3D876B8753DBF846C
Authority key identifier: 58:6B:01:82:10:5B:B2:7B:0C:8B:CF:28:42:BD:3C:1A:85:16:4B:D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WGsBghBbsnsMi88oQr08GoUWS9E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/Ryh96TNsFDTBX8AhOLVLFUkhpVc.roa
Signing time: Thu 02 Jan 2025 03:49:06 +0000
ROA not before: Thu 02 Jan 2025 03:49:06 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 5650
IP address blocks: 194.179.224.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:25:21:9a:7a:03:48:83:a3:d8:76:b8:75:3d:bf:84:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=586b0182105bb27b0c8bcf2842bd3c1a85164bd1
Validity
Not Before: Jan 2 03:49:06 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=47287de9336c1434c15fc02138b54b154921a557
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f3:40:c5:2e:dd:03:3d:b3:e0:33:62:d1:95:
b2:e5:31:1f:54:70:06:e2:ff:2a:29:b7:9f:e0:8a:
0b:39:63:a6:49:48:d0:99:c7:43:3c:5f:12:46:01:
7f:31:a1:85:ed:ea:db:3b:1b:60:dd:18:97:63:e6:
12:7c:75:ad:c5:0e:04:e7:ad:ff:1f:cb:3a:dc:90:
ba:81:72:d7:eb:58:e3:e3:76:a4:0f:cb:a1:05:c4:
e3:8d:85:a6:a9:14:ad:92:e9:92:77:3a:6f:6c:72:
27:4d:fb:de:a7:e2:0f:b3:f7:53:47:26:1b:b4:7b:
9f:72:2b:8c:a4:51:d4:80:9c:53:9a:14:fc:d8:91:
6e:0e:f2:9e:44:92:0c:89:e0:f5:25:41:7b:b9:6c:
26:1e:78:da:6a:fc:8b:15:76:31:fb:32:c0:5e:df:
12:d6:d8:72:6f:b3:24:be:15:55:d4:b5:f1:65:dd:
95:53:3c:47:18:33:6d:86:23:28:df:96:27:c6:89:
90:64:04:e9:93:c9:33:4d:26:58:7d:00:8f:69:27:
62:62:2f:a8:38:58:9e:64:4a:84:99:b1:37:f2:5c:
26:e4:d0:b0:4e:f7:bb:8b:fc:06:88:65:54:a9:b6:
8f:58:e6:95:bc:b0:bc:0c:e6:77:66:97:80:66:b9:
7d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:28:7D:E9:33:6C:14:34:C1:5F:C0:21:38:B5:4B:15:49:21:A5:57
X509v3 Authority Key Identifier:
keyid:58:6B:01:82:10:5B:B2:7B:0C:8B:CF:28:42:BD:3C:1A:85:16:4B:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WGsBghBbsnsMi88oQr08GoUWS9E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/Ryh96TNsFDTBX8AhOLVLFUkhpVc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/52b481-f303-4a96-97dd-7370fd80df6c/1/WGsBghBbsnsMi88oQr08GoUWS9E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.179.224.0/24
Signature Algorithm: sha256WithRSAEncryption
01:5c:16:2c:3f:b0:4a:4a:20:73:12:3a:f1:f1:7c:26:0b:de:
42:4a:1b:f4:d9:4d:d7:f9:bc:50:ea:a7:90:7d:4e:67:3f:6d:
9c:f4:fb:f3:ca:f0:58:44:af:06:1d:f7:e8:79:b3:a0:e1:b4:
56:16:ce:26:94:34:70:f3:02:c5:db:4b:94:e8:43:1c:eb:89:
69:a9:11:1c:54:bb:e6:fd:fe:fe:d6:a2:b2:5c:47:23:4a:d3:
90:c2:57:4c:89:94:78:af:40:38:3a:64:d0:d6:b2:66:48:51:
0f:36:02:ad:34:99:b4:33:64:eb:bb:32:1f:95:5e:da:60:ed:
32:79:8a:2e:07:73:fe:ec:97:0c:dd:79:41:14:05:af:23:a6:
9c:e4:25:d2:97:d9:f9:3e:52:22:d6:7c:f3:62:74:b9:3b:e2:
8a:67:f5:0c:4b:97:5b:98:9b:80:ac:78:1b:0d:f1:c8:19:3e:
4e:e6:7e:a6:28:94:e0:51:e8:d2:af:6e:f5:f5:63:51:6c:8a:
b0:17:98:b0:dd:9e:20:3b:cf:4b:62:24:21:43:57:1b:b6:79:
fc:92:a7:49:f7:47:1b:89:5b:54:4d:59:4a:7d:ae:66:97:1a:
fc:13:ef:37:b3:71:3f:f7:c7:cf:14:ba:70:05:0f:cc:ab:10:
48:b9:67:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 21:59:50 2025 by rpki-client