Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/V2UHD8Ezb4do1e1amF_9bhIjwm0.roa
File: V2UHD8Ezb4do1e1amF_9bhIjwm0.roa (raw, json)
Hash identifier: y2BL9g++y9jPkFQqtQIhZUhynDTSuho7DqIRo/6vN6o=
Subject key identifier: 57:65:07:0F:C1:33:6F:87:68:D5:ED:5A:98:5F:FD:6E:12:23:C2:6D
Certificate issuer: /CN=53c912a0411bb0174507092d0ca35a91ad79905c
Certificate serial: 0194228D13D92402FB6CE234AEA74A232CCE
Authority key identifier: 53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/V2UHD8Ezb4do1e1amF_9bhIjwm0.roa
Signing time: Wed 01 Jan 2025 15:47:38 +0000
ROA not before: Wed 01 Jan 2025 15:47:38 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 49685
IP address blocks: 194.59.136.0/24 maxlen: 24
194.59.138.0/24 maxlen: 24
2a07:cb80::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:8d:13:d9:24:02:fb:6c:e2:34:ae:a7:4a:23:2c:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53c912a0411bb0174507092d0ca35a91ad79905c
Validity
Not Before: Jan 1 15:47:38 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=5765070fc1336f8768d5ed5a985ffd6e1223c26d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:86:2c:75:69:f3:c6:4c:e7:17:76:f3:69:57:
60:a8:f4:d5:cf:69:30:67:96:3d:40:e9:ce:e6:e1:
ff:27:91:7c:d9:48:15:29:f3:c1:6d:7c:69:e7:36:
70:aa:e9:54:4b:47:ff:51:7c:da:e5:f1:68:e4:ff:
e1:88:ea:6f:7d:fc:fa:14:82:c3:d5:ef:06:26:80:
37:81:da:af:e9:92:9d:50:48:e4:6d:51:3e:1d:e5:
2b:87:43:74:6f:1e:5b:8d:75:a5:32:2e:91:02:d4:
39:25:1a:e7:01:c7:ea:1e:62:10:3d:44:42:99:01:
3f:ba:61:e5:7d:b6:1b:bc:18:39:c9:ba:e8:c3:df:
63:7b:f3:c0:2d:d1:54:5b:1e:51:be:aa:fe:8f:75:
26:73:14:8c:40:af:b6:58:6e:43:1c:0a:44:d4:ac:
76:d1:79:84:95:96:06:20:c2:61:c9:4c:a0:26:fe:
2a:47:66:61:b7:49:fa:53:87:dd:16:ee:d3:1c:be:
96:c8:91:26:63:bb:21:8f:15:84:3e:33:e8:10:1c:
64:ac:5d:a1:6d:13:ed:9f:10:ef:09:12:88:ea:f8:
57:5e:57:ca:8b:a3:74:43:ee:fe:51:ef:60:13:1e:
40:76:61:93:82:84:b1:1d:d3:76:28:bc:1b:62:f2:
94:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:65:07:0F:C1:33:6F:87:68:D5:ED:5A:98:5F:FD:6E:12:23:C2:6D
X509v3 Authority Key Identifier:
keyid:53:C9:12:A0:41:1B:B0:17:45:07:09:2D:0C:A3:5A:91:AD:79:90:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U8kSoEEbsBdFBwktDKNaka15kFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/V2UHD8Ezb4do1e1amF_9bhIjwm0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/d77e60-8916-4f96-8ed0-e21c436b62ef/1/U8kSoEEbsBdFBwktDKNaka15kFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.59.136.0/24
194.59.138.0/24
IPv6:
2a07:cb80::/32
Signature Algorithm: sha256WithRSAEncryption
84:72:47:5a:b3:67:ba:ac:24:fb:27:2d:51:31:15:ff:b1:fb:
e2:4d:f1:ec:a4:88:7f:bf:1a:9f:69:d5:00:2e:4b:bb:df:9b:
67:be:5d:5f:9c:ac:73:0b:d8:82:2b:01:be:aa:55:69:73:29:
15:ec:24:21:36:c3:0e:1f:1b:1a:7e:a6:48:e3:2e:b4:99:3b:
fb:e7:81:0c:84:98:93:da:20:b2:72:83:63:3a:79:f0:0d:72:
0d:98:cd:89:5a:a6:0e:ae:c2:18:89:b6:9a:35:65:86:e3:8d:
cf:d3:fd:4b:ec:17:ff:00:9b:71:76:85:8b:36:9a:be:25:ff:
3f:ed:7c:8c:98:47:eb:62:07:55:ed:81:c1:af:79:25:cc:ab:
90:46:db:0c:7d:7d:e9:c7:29:02:5e:ba:93:a7:56:fc:bf:c4:
b1:d2:34:6e:b6:c8:70:f1:86:24:f8:db:8d:52:e5:1c:cd:c3:
21:26:b6:b6:2c:a8:ab:a3:da:c3:8f:6a:a5:9c:53:83:45:af:
b4:a7:7d:26:53:c0:86:45:45:8c:62:5d:37:77:32:d8:b9:bd:
49:bc:16:4f:ee:69:97:27:53:23:09:4c:13:6a:83:ba:75:61:
30:e3:fd:f5:1c:4b:01:1f:fd:0a:de:4f:77:04:6c:d5:ba:ce:
0a:71:99:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 06:09:47 2025 by rpki-client