Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/97e6ab-0f17-4a9a-b887-30c259cb4464/1/9Z_4cYUSidt5WEPWdI0msz98i-Y.roa
File: 9Z_4cYUSidt5WEPWdI0msz98i-Y.roa (raw, json)
Hash identifier: 0SJO87KjXKYGtsryd2oXucS6KUhxf5nPXGivkar5k28=
Subject key identifier: F5:9F:F8:71:85:12:89:DB:79:58:43:D6:74:8D:26:B3:3F:7C:8B:E6
Certificate issuer: /CN=01d319e3690547461d98d7efb08c661f9127bdde
Certificate serial: 0159FCF2
Authority key identifier: 01:D3:19:E3:69:05:47:46:1D:98:D7:EF:B0:8C:66:1F:91:27:BD:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AdMZ42kFR0YdmNfvsIxmH5Envd4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/97e6ab-0f17-4a9a-b887-30c259cb4464/1/9Z_4cYUSidt5WEPWdI0msz98i-Y.roa
Signing time: Sat 01 Jan 2022 14:04:06 +0000
ROA not before: Sat 01 Jan 2022 14:04:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44632
IP address blocks: 194.8.95.0/24 maxlen: 24
194.8.94.0/23 maxlen: 23
194.8.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22674674 (0x159fcf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=01d319e3690547461d98d7efb08c661f9127bdde
Validity
Not Before: Jan 1 14:04:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f59ff871851289db795843d6748d26b33f7c8be6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:16:9a:fd:61:fe:e7:5c:ef:b4:ca:1a:a9:17:
81:62:05:81:a7:65:17:8a:e8:ff:20:9d:da:60:9a:
99:1a:d3:63:63:12:67:50:8c:50:1a:6d:50:7a:7b:
f7:80:ab:bd:82:66:0c:ff:41:a4:63:13:ab:8c:ee:
4e:d4:ee:51:7c:84:08:97:72:d6:06:ea:94:1c:6c:
f1:d8:c9:f9:b7:6d:14:0e:4a:0e:ce:8b:56:7d:0a:
fc:ce:88:0e:98:07:22:34:81:08:74:c6:fa:c8:09:
14:73:bc:af:00:e2:38:db:1f:4e:86:13:00:fa:0e:
4e:7a:2f:96:f9:05:25:93:34:71:63:57:8b:56:2f:
4a:3d:2f:78:66:8a:04:8a:55:49:6c:52:55:d1:7e:
d2:0b:bc:21:a8:bd:52:b8:a6:47:5f:61:8a:a3:c7:
f8:3c:77:30:10:34:91:d4:3b:8b:1f:cc:63:8b:a1:
6f:25:06:63:2a:d5:49:d0:c0:01:9c:61:d2:d3:83:
99:0c:ca:32:31:3d:4f:56:f6:93:97:60:f5:a0:2d:
a4:b3:83:19:af:c0:e9:90:f7:1f:50:26:87:10:8b:
aa:fe:db:39:32:93:86:73:e6:26:a8:4f:65:51:af:
2e:10:4d:2f:6b:aa:dd:62:68:16:b7:6b:af:d2:c6:
a7:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9F:F8:71:85:12:89:DB:79:58:43:D6:74:8D:26:B3:3F:7C:8B:E6
X509v3 Authority Key Identifier:
keyid:01:D3:19:E3:69:05:47:46:1D:98:D7:EF:B0:8C:66:1F:91:27:BD:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AdMZ42kFR0YdmNfvsIxmH5Envd4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/97e6ab-0f17-4a9a-b887-30c259cb4464/1/9Z_4cYUSidt5WEPWdI0msz98i-Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/97e6ab-0f17-4a9a-b887-30c259cb4464/1/AdMZ42kFR0YdmNfvsIxmH5Envd4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.8.94.0/23
Signature Algorithm: sha256WithRSAEncryption
ac:d3:23:8f:fa:c2:bd:b9:a6:89:dc:f0:48:88:b3:48:0d:4d:
20:6f:44:d7:a8:98:d6:7e:dd:71:5c:86:cd:d9:ec:56:52:93:
6a:dd:b4:db:7d:b3:cd:63:54:f3:a4:ae:84:40:c9:71:b1:41:
d7:96:74:13:ba:80:b9:90:34:39:01:7a:5d:36:62:ab:09:7e:
52:ef:50:c5:6b:63:05:09:fb:3a:12:71:de:ef:7c:f2:b1:fb:
01:b1:41:a6:eb:11:f5:b3:03:50:4d:2f:b0:a9:2d:06:a5:07:
c1:f7:f8:26:33:20:4c:35:16:1a:75:3a:e1:9c:00:85:61:84:
ef:6a:ce:83:78:2f:1f:9b:45:2b:4a:e2:d0:39:74:57:03:05:
8d:64:6f:10:cd:33:23:24:3c:70:62:99:e6:25:6f:3e:56:13:
7a:b9:b8:38:0a:e2:0a:bf:73:64:06:85:82:b3:46:21:ee:b9:
f2:ce:2e:0c:4b:83:e2:9c:a6:a9:42:bc:09:37:fb:64:cf:eb:
e0:2e:29:2c:2a:32:5f:ee:7a:48:17:b3:1c:91:4c:b7:35:14:
40:bf:8e:23:dd:7e:dd:31:a8:99:8b:08:6b:91:c7:18:48:83:
a8:01:0d:f6:d4:34:1c:ed:0c:90:f1:d7:18:15:bc:69:9f:d9:
03:2a:bf:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:25:18 2025 by rpki-client