Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/B6e0XtDqKk15RrMq7MMMXhVQ0Jg.roa
File: B6e0XtDqKk15RrMq7MMMXhVQ0Jg.roa (raw, json)
Hash identifier: qIFUlWmXJaNb3h5STgyP8Vod2Vs8j9C3jS+KUXR0VPA=
Subject key identifier: 07:A7:B4:5E:D0:EA:2A:4D:79:46:B3:2A:EC:C3:0C:5E:15:50:D0:98
Certificate issuer: /CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Certificate serial: 0194266BE28C5B10E9AB4140BB9EB7FC862C
Authority key identifier: 75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/B6e0XtDqKk15RrMq7MMMXhVQ0Jg.roa
Signing time: Thu 02 Jan 2025 09:49:52 +0000
ROA not before: Thu 02 Jan 2025 09:49:52 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9009
IP address blocks: 194.147.44.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:26:6b:e2:8c:5b:10:e9:ab:41:40:bb:9e:b7:fc:86:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=75386a6fae1e55f576a405bd74b7f08e7a6c4653
Validity
Not Before: Jan 2 09:49:52 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=07a7b45ed0ea2a4d7946b32aecc30c5e1550d098
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a6:f5:b4:62:06:a9:eb:72:0e:f2:ee:67:08:
24:04:84:e1:d8:ec:19:99:8e:d6:ff:94:d8:fe:cf:
24:83:2b:9f:35:01:83:20:9e:ce:13:1f:b3:cc:14:
66:7a:27:82:ff:81:d5:32:f3:c4:ec:01:4b:67:9b:
fa:7f:da:ff:15:64:d6:ec:a2:be:f7:28:ed:c2:9c:
39:b3:0a:bb:85:f0:5f:d6:d3:1d:b9:3c:d8:88:cd:
bf:e6:b3:81:2f:3b:96:d2:22:db:d1:0a:c5:cd:2a:
09:16:28:bb:ec:77:ee:1b:c1:f7:0d:70:57:7b:a4:
df:f8:6e:28:15:21:b4:89:9a:84:e8:65:55:17:31:
eb:7e:84:c1:a4:56:5e:95:d4:89:70:63:37:94:29:
9c:1f:a2:8a:28:e2:52:a4:95:fa:c0:0d:d6:7b:2b:
44:f7:a8:3c:5d:ef:c6:8a:86:23:b8:56:4d:ca:8c:
f4:cf:64:16:71:ff:2d:6e:f9:70:13:2d:4e:c0:62:
71:40:bd:8c:ed:7b:cf:97:eb:84:9c:88:a9:f1:7c:
21:ab:f4:3b:d8:4b:13:75:d1:6b:3d:f1:38:8a:03:
c9:0c:e2:fd:1b:79:e1:14:b5:31:29:40:ad:2f:fa:
f6:ff:3f:3a:f0:cb:7d:fe:35:e7:06:bc:13:66:c8:
5a:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:A7:B4:5E:D0:EA:2A:4D:79:46:B3:2A:EC:C3:0C:5E:15:50:D0:98
X509v3 Authority Key Identifier:
keyid:75:38:6A:6F:AE:1E:55:F5:76:A4:05:BD:74:B7:F0:8E:7A:6C:46:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dThqb64eVfV2pAW9dLfwjnpsRlM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/B6e0XtDqKk15RrMq7MMMXhVQ0Jg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/d9a01c-5c91-4d00-a09a-f8792f577b9a/1/dThqb64eVfV2pAW9dLfwjnpsRlM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.147.44.0/24
Signature Algorithm: sha256WithRSAEncryption
a7:3b:4e:a4:bc:59:3f:5b:81:91:d3:36:8d:d0:8b:57:cc:a5:
62:9e:60:a6:51:ee:cb:10:84:c2:b1:db:be:4e:18:60:9a:6d:
72:fb:4a:50:ab:11:d8:64:a4:81:b9:3c:c9:e8:6d:40:a8:4a:
13:28:5d:ae:73:f4:23:47:52:32:7d:0c:52:56:fe:ea:9d:cf:
aa:a8:97:99:c0:78:f6:85:67:83:90:42:a6:0b:ae:d4:6c:4f:
fb:4e:fc:b6:85:ca:c2:65:b8:ee:30:85:16:33:29:62:48:66:
27:44:f4:8d:0a:cc:a4:01:dd:39:e4:0c:a3:2a:57:3a:15:27:
98:3f:31:4e:48:46:aa:65:66:88:58:c5:5b:89:03:4a:37:51:
04:b8:3b:b9:bb:e2:c2:48:05:3b:a5:f5:fe:1b:0f:02:bc:07:
10:73:df:e4:8e:b2:4b:60:9a:81:ef:2e:ec:c8:b4:ff:01:92:
ba:c0:00:4c:c0:ef:ad:77:5c:29:8d:02:74:86:5d:f5:5f:ef:
c0:75:52:64:68:bb:15:be:30:dc:02:a4:3e:58:3b:5d:83:78:
cc:ee:47:59:73:52:98:26:0c:35:bc:7f:8b:74:37:6e:62:ce:
15:58:35:4f:a1:1c:cc:38:35:f3:4e:aa:f9:9e:ea:f1:4d:f4:
30:ba:9a:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 12 05:28:17 2025 by rpki-client