Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2fbf83-b28b-4d36-b118-eb1086075167/1/shOhiBOeIEERNiXLGV1Iw0PNV0g.roa
File: shOhiBOeIEERNiXLGV1Iw0PNV0g.roa (raw, json)
Hash identifier: sqGIWcXpvn249v712xwd+H5EyDdP5MHgy2b2TjPqY+M=
Subject key identifier: B2:13:A1:88:13:9E:20:41:11:36:25:CB:19:5D:48:C3:43:CD:57:48
Certificate issuer: /CN=6827dc221544fc74215112a5812de196a2872e86
Certificate serial: 3F4218A6
Authority key identifier: 68:27:DC:22:15:44:FC:74:21:51:12:A5:81:2D:E1:96:A2:87:2E:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aCfcIhVE_HQhURKlgS3hlqKHLoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2fbf83-b28b-4d36-b118-eb1086075167/1/shOhiBOeIEERNiXLGV1Iw0PNV0g.roa
Signing time: Sat 01 Jan 2022 00:58:57 +0000
ROA not before: Sat 01 Jan 2022 00:58:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3175
IP address blocks: 195.128.51.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1061296294 (0x3f4218a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6827dc221544fc74215112a5812de196a2872e86
Validity
Not Before: Jan 1 00:58:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b213a188139e2041113625cb195d48c343cd5748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d8:cd:94:f7:66:33:99:65:1c:96:5b:36:a8:
94:c3:ec:a2:09:af:f3:c5:ec:52:f9:df:39:d3:19:
cb:43:a8:da:65:15:31:4f:7a:5d:e4:83:df:fd:ce:
fe:2b:de:c5:45:96:3e:57:62:ac:b6:d6:e9:ab:32:
96:1a:c8:9e:ce:40:f5:a2:fd:74:a8:5b:89:8d:69:
ef:79:ef:90:dc:f5:18:c4:35:b3:9e:19:e8:cd:8d:
ef:c3:68:89:cc:c5:a2:64:cf:c1:6d:74:6a:c3:02:
66:b6:0f:5a:ec:83:f6:c7:19:1e:f1:09:d3:15:67:
7d:2f:d1:21:37:7f:04:82:68:fe:80:55:83:e1:aa:
ce:a4:7d:37:2f:0a:05:7f:5c:89:9f:2b:2e:77:e0:
2b:1b:d5:94:2f:3c:9b:95:8d:a5:1b:79:f4:c5:87:
da:34:1a:77:a1:98:aa:f3:69:ab:d2:52:44:e9:9b:
95:02:d8:03:74:4c:4f:f8:83:06:ba:b0:23:47:f7:
88:c2:ca:16:c8:6b:6d:a6:0c:52:09:a9:7e:b2:51:
df:3c:4f:3c:4f:be:8e:20:6e:62:a5:1a:d6:20:a0:
ac:b6:f8:9b:96:19:0a:6b:b2:91:78:cf:4e:cf:0d:
5c:2d:d4:30:ca:03:f4:34:48:51:5a:3a:64:ab:88:
24:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:13:A1:88:13:9E:20:41:11:36:25:CB:19:5D:48:C3:43:CD:57:48
X509v3 Authority Key Identifier:
keyid:68:27:DC:22:15:44:FC:74:21:51:12:A5:81:2D:E1:96:A2:87:2E:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aCfcIhVE_HQhURKlgS3hlqKHLoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fbf83-b28b-4d36-b118-eb1086075167/1/shOhiBOeIEERNiXLGV1Iw0PNV0g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2fbf83-b28b-4d36-b118-eb1086075167/1/aCfcIhVE_HQhURKlgS3hlqKHLoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.128.51.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:79:42:ef:7e:a7:15:15:b8:e9:ce:68:78:83:3c:34:5b:4d:
43:4f:05:ae:2a:1a:bc:d6:19:33:0e:80:72:13:1f:94:95:34:
2c:4e:6c:e9:14:9d:d3:98:bb:3c:c1:34:11:f9:06:aa:64:12:
42:8b:14:5b:4f:b4:23:ae:0e:d9:bf:da:36:38:17:2a:55:22:
9f:26:ac:1c:08:9e:c8:b4:45:00:ea:2d:e3:0a:4d:14:4c:c4:
8e:56:e3:8f:01:88:7d:ed:af:25:ff:95:1c:69:9d:4c:f1:83:
66:d3:16:de:84:60:0c:ea:83:1d:9c:4d:42:c4:5d:57:8e:fa:
41:ed:f9:96:dc:ab:25:25:70:ea:22:f2:2f:c6:b0:3a:ff:53:
da:af:a0:57:29:33:31:30:fd:4f:c3:97:75:57:8b:dd:1e:da:
9a:11:c6:c0:a7:16:1c:ee:a9:20:66:78:ed:18:9b:ef:e7:e8:
7e:19:b3:f5:e1:65:fd:16:a2:34:67:e8:a1:0b:dd:8d:72:75:
e3:5d:c2:ff:87:9b:a7:3b:78:74:a3:bc:8a:6a:3d:b5:5a:78:
f3:49:7a:05:a0:dc:ea:46:f5:f0:56:d9:8f:d3:21:ac:c6:c1:
f6:b4:44:06:0f:be:06:9f:d4:01:35:19:bf:45:1a:98:8a:4c:
b1:11:78:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 10:35:24 2025 by rpki-client