Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/683d3d-f362-4cb5-92d9-5bd1a71679c1/1/p6qthrN8_e6stt0izeQsC_H8i0s.roa
File: p6qthrN8_e6stt0izeQsC_H8i0s.roa (raw, json)
Hash identifier: xtnHMRFtTRaKU4NhAA9P2QlXHUkeUgYSEJTI5w51nTw=
Subject key identifier: A7:AA:AD:86:B3:7C:FD:EE:AC:B6:DD:22:CD:E4:2C:0B:F1:FC:8B:4B
Certificate issuer: /CN=ad327ae7f5b3fc008264971fa81a590a9bdf2238
Certificate serial: 019426D954C41AF1DC6891F78A745B850990
Authority key identifier: AD:32:7A:E7:F5:B3:FC:00:82:64:97:1F:A8:1A:59:0A:9B:DF:22:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rTJ65_Wz_ACCZJcfqBpZCpvfIjg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/683d3d-f362-4cb5-92d9-5bd1a71679c1/1/p6qthrN8_e6stt0izeQsC_H8i0s.roa
Signing time: Thu 02 Jan 2025 11:49:24 +0000
ROA not before: Thu 02 Jan 2025 11:49:24 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 20668
IP address blocks: 194.48.255.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:d9:54:c4:1a:f1:dc:68:91:f7:8a:74:5b:85:09:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad327ae7f5b3fc008264971fa81a590a9bdf2238
Validity
Not Before: Jan 2 11:49:24 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=a7aaad86b37cfdeeacb6dd22cde42c0bf1fc8b4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:51:45:8b:92:73:60:a6:7b:e8:15:42:19:2d:
9f:dd:8c:46:6d:32:a3:42:f4:ad:38:35:72:90:36:
6d:0e:83:64:42:36:91:ea:8b:b8:74:e0:45:45:b1:
34:a6:c5:d9:4a:af:08:86:a1:7d:d2:dd:46:a0:c0:
4a:ed:fd:cd:88:1a:34:eb:53:36:17:34:48:db:6f:
b6:d6:a3:fd:28:75:72:3d:79:64:0d:bc:8a:6b:e0:
22:65:21:e5:ce:e7:6b:9c:06:29:00:de:87:3a:8d:
c1:7a:54:29:ab:2d:d8:44:d4:08:02:7f:7a:65:17:
ca:8f:30:a8:40:15:d5:85:05:03:12:f5:48:11:74:
ca:e5:6f:04:e3:a1:6a:4b:0f:e1:08:db:f8:2f:65:
07:a2:2f:88:d8:b1:91:aa:7c:00:88:94:2d:80:6c:
1f:a3:f2:41:3d:eb:aa:ad:7f:bc:62:ca:62:f7:ef:
7a:4c:36:8b:5f:1b:1a:31:a5:40:1a:29:0b:7e:2e:
13:7d:97:db:bc:bc:50:e8:54:93:0f:c7:1e:5b:6d:
27:0e:66:f5:35:30:a7:98:69:84:20:65:dc:79:30:
61:c6:23:91:e8:1f:90:e8:85:73:05:cf:94:e1:2a:
80:f8:1e:14:89:e6:63:e8:26:f7:63:42:38:1f:fc:
03:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:AA:AD:86:B3:7C:FD:EE:AC:B6:DD:22:CD:E4:2C:0B:F1:FC:8B:4B
X509v3 Authority Key Identifier:
keyid:AD:32:7A:E7:F5:B3:FC:00:82:64:97:1F:A8:1A:59:0A:9B:DF:22:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rTJ65_Wz_ACCZJcfqBpZCpvfIjg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/683d3d-f362-4cb5-92d9-5bd1a71679c1/1/p6qthrN8_e6stt0izeQsC_H8i0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/683d3d-f362-4cb5-92d9-5bd1a71679c1/1/rTJ65_Wz_ACCZJcfqBpZCpvfIjg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.48.255.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:bd:de:95:d1:de:9e:07:94:40:e1:bc:25:dd:99:00:aa:21:
9c:69:24:39:ba:15:a7:96:92:8b:f4:42:f0:8e:9e:1b:8e:00:
a4:c7:cd:3f:3c:3a:37:81:a8:e4:9b:23:af:a0:6a:1f:6a:62:
a8:18:a8:f4:a6:21:53:ae:4d:4a:a6:da:ee:e7:70:2c:61:99:
60:ab:9c:5c:79:97:68:63:10:15:c2:88:12:ba:65:01:12:01:
59:9a:38:ab:d4:dc:aa:8c:23:1e:a8:13:ac:c6:ee:b0:a8:c8:
b3:1a:29:83:c8:32:bf:a1:97:d5:8f:60:ba:e6:cf:ed:44:08:
8b:cf:39:84:d2:e1:8b:83:87:be:bc:dd:8d:9d:4a:f5:69:8e:
99:b9:af:ff:ae:03:28:e1:a9:a5:f0:8a:f9:3b:ba:1e:04:de:
a0:47:43:81:2b:67:af:e0:5f:cc:0b:19:29:2a:67:5d:c3:72:
0c:02:1f:10:72:3d:f0:0a:ee:60:53:fa:f4:e3:d1:af:63:a9:
b1:8a:c9:e9:e0:ca:8d:27:ab:22:80:32:d1:2c:c0:88:ec:5d:
3d:57:d3:5b:18:86:ee:ed:96:5b:d5:0d:a3:02:6f:ac:cf:72:
bc:87:dc:ee:28:7e:8c:0c:ac:f3:c5:92:b7:e0:de:02:4f:ad:
17:0b:7a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 22:20:35 2025 by rpki-client