Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/SVAg0Z2mSW0BWGEamcw29kxYvWc.roa
File: SVAg0Z2mSW0BWGEamcw29kxYvWc.roa (raw, json)
Hash identifier: gdvnQlQFG/5mwHa3zc1QmZd/357voff+eYZyQeycnfQ=
Subject key identifier: 49:50:20:D1:9D:A6:49:6D:01:58:61:1A:99:CC:36:F6:4C:58:BD:67
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0195953F53370A91891D040D636CD068EFDA
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/SVAg0Z2mSW0BWGEamcw29kxYvWc.roa
Signing time: Fri 14 Mar 2025 15:21:50 +0000
ROA not before: Fri 14 Mar 2025 15:21:50 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 213796
IP address blocks: 94.156.11.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:95:3f:53:37:0a:91:89:1d:04:0d:63:6c:d0:68:ef:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Mar 14 15:21:50 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=495020d19da6496d0158611a99cc36f64c58bd67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:6b:f7:84:51:91:3a:f7:b7:16:25:41:7d:cb:
92:83:4d:bc:df:07:92:6d:01:79:f8:fc:92:00:53:
c8:d2:ee:c2:48:81:86:18:eb:8a:9f:1f:53:35:9c:
8b:4d:4e:e2:2f:1f:6f:af:65:06:01:fa:49:55:c4:
2f:23:65:51:d4:09:d7:ed:0a:8a:c3:cc:eb:16:a7:
e8:04:fd:29:a4:8f:d3:37:7f:d2:6b:30:dc:5e:ac:
d0:8e:17:ae:9f:2b:9f:ec:a7:fe:c1:01:79:fb:67:
76:3b:63:62:fa:fc:30:1b:df:ec:bd:8c:b8:f7:fc:
ad:2b:fa:5c:5d:26:7d:1e:9d:b2:5b:38:9e:e1:99:
4f:1d:35:39:4c:c5:d6:55:e6:b9:62:5e:40:dc:d1:
9f:27:d8:e2:31:53:2d:62:24:1f:8e:6a:0d:6f:a0:
ae:5c:62:cf:e3:e6:c2:1d:aa:81:80:6c:ec:ec:45:
6b:52:d2:6d:1a:27:7b:1b:e2:31:91:51:d0:61:7a:
37:fa:79:03:dd:0a:df:dd:ba:d3:4b:b7:a7:32:e5:
48:ed:e4:4e:aa:2f:46:22:d4:91:6e:50:37:90:4c:
82:c5:7d:55:39:75:ce:3e:bc:e4:57:d4:19:20:6a:
e0:2c:bc:74:a7:56:7b:3a:65:6c:45:ab:83:71:19:
76:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:50:20:D1:9D:A6:49:6D:01:58:61:1A:99:CC:36:F6:4C:58:BD:67
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/SVAg0Z2mSW0BWGEamcw29kxYvWc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
94.156.11.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:13:ac:69:a3:e3:b1:1f:a1:f9:2a:30:9e:c8:09:27:e4:86:
cb:dc:77:17:ae:4c:3f:8c:86:e8:cf:7d:0f:15:71:4a:17:2e:
0b:6c:1a:1e:58:9f:84:f8:4d:e7:2d:b7:9c:8c:cf:ca:84:7a:
65:05:aa:d6:5d:dc:2c:6c:d7:0e:b6:f3:80:5b:d6:1b:45:d4:
c9:3b:f0:de:94:f1:dd:ee:eb:28:4e:bf:4b:f7:57:6c:7c:56:
ac:bd:7b:a8:5b:7d:0f:9a:5f:d5:c2:7a:09:67:a2:1e:92:cf:
9d:6e:34:5a:ec:16:0e:ce:3c:4d:3a:d4:49:aa:66:1f:98:aa:
bc:95:1e:3f:27:0c:e6:6e:64:3f:18:93:72:42:9c:79:a0:05:
11:a4:de:7e:de:6e:36:78:da:49:4f:b7:9a:e6:65:aa:46:0b:
c9:a9:75:8d:e4:a6:f0:18:1f:91:51:5f:67:e0:3c:67:4a:ad:
3a:5d:02:58:34:80:61:8c:74:b8:a1:92:1e:29:45:f4:9e:02:
f3:12:bb:7d:87:e2:35:c2:f9:b0:cc:e7:9a:0a:c0:7c:fc:cd:
1d:be:0b:b9:46:ed:a4:6f:cb:15:d8:89:d0:00:c2:7f:79:9c:
a0:d3:dc:6a:d8:1c:9d:b4:87:02:7c:89:67:5f:52:ea:b6:1d:
60:72:26:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 08:37:29 2025 by rpki-client