Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/7faae6-9f30-42ed-b375-55a43aab8f73/1/va7AQWl8BQjaONNSCF5yVhc4880.roa
File: va7AQWl8BQjaONNSCF5yVhc4880.roa (raw, json)
Hash identifier: AGJNupVoKM3POzJ8IDK+xNNPIdqw4tebW6fT+PeJcHc=
Subject key identifier: BD:AE:C0:41:69:7C:05:08:DA:38:D3:52:08:5E:72:56:17:38:F3:CD
Certificate issuer: /CN=437a5c7e7c7eab2392372fc38d48c7a977b24abd
Certificate serial: 01942825EE5B394412A52047EAA284803851
Authority key identifier: 43:7A:5C:7E:7C:7E:AB:23:92:37:2F:C3:8D:48:C7:A9:77:B2:4A:BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q3pcfnx-qyOSNy_DjUjHqXeySr0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/7faae6-9f30-42ed-b375-55a43aab8f73/1/va7AQWl8BQjaONNSCF5yVhc4880.roa
Signing time: Thu 02 Jan 2025 17:52:42 +0000
ROA not before: Thu 02 Jan 2025 17:52:42 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 9211
IP address blocks: 194.76.62.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:28:25:ee:5b:39:44:12:a5:20:47:ea:a2:84:80:38:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=437a5c7e7c7eab2392372fc38d48c7a977b24abd
Validity
Not Before: Jan 2 17:52:42 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=bdaec041697c0508da38d352085e72561738f3cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a4:b8:65:c0:9a:63:c9:2f:e0:71:aa:2e:09:
51:37:ea:99:03:a1:58:9c:76:67:95:1b:8c:e3:7d:
25:20:9a:29:47:78:ff:c2:9b:9b:93:f9:95:2f:13:
08:d4:8f:8b:c1:e4:08:31:59:72:e7:72:95:1a:25:
ef:91:d4:f9:70:d1:7e:40:07:6e:19:b6:14:d8:03:
80:4b:1f:8f:9f:33:c7:62:6d:cc:3d:15:ba:a8:c3:
98:45:84:e9:c5:4e:91:7d:2f:26:e8:b5:6c:43:a4:
ab:d5:35:1f:d5:86:25:ae:66:d2:fb:7f:e0:eb:c7:
71:58:9a:a2:53:1a:34:f0:04:b2:ff:cf:8e:cf:fb:
71:8c:1f:b4:e6:14:c7:9a:25:53:8c:16:40:d5:63:
74:99:aa:31:21:bc:a5:a8:3e:b5:32:25:a0:03:33:
ea:c4:50:92:f2:16:c3:d8:1a:dd:5d:05:d7:98:97:
35:c2:72:7f:5e:42:e6:b9:4d:cd:94:16:76:74:fa:
89:ae:25:d6:a2:ec:87:53:78:bd:78:c8:89:82:66:
1c:cd:0a:fc:83:ed:7e:86:0a:1c:ea:56:72:1e:c0:
7a:8f:00:58:25:fc:d3:bb:69:d2:b9:be:63:63:9c:
ed:69:1a:e4:21:6a:6a:b5:78:cc:3a:c7:68:21:34:
50:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:AE:C0:41:69:7C:05:08:DA:38:D3:52:08:5E:72:56:17:38:F3:CD
X509v3 Authority Key Identifier:
keyid:43:7A:5C:7E:7C:7E:AB:23:92:37:2F:C3:8D:48:C7:A9:77:B2:4A:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q3pcfnx-qyOSNy_DjUjHqXeySr0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7faae6-9f30-42ed-b375-55a43aab8f73/1/va7AQWl8BQjaONNSCF5yVhc4880.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/7faae6-9f30-42ed-b375-55a43aab8f73/1/Q3pcfnx-qyOSNy_DjUjHqXeySr0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.76.62.0/23
Signature Algorithm: sha256WithRSAEncryption
08:40:ed:6b:ed:c7:38:53:93:6f:97:9b:0c:e1:f8:4a:78:52:
aa:f8:4c:36:00:d4:e1:97:70:22:98:af:48:9b:e3:e2:d4:46:
7f:a6:53:bc:51:06:d6:39:bc:dc:bf:05:e2:49:d6:3c:79:86:
68:d3:c8:d1:d9:77:23:32:68:ff:8c:05:d3:64:e8:75:e6:6d:
4a:4a:50:d0:c3:e8:be:fe:e5:29:25:a7:65:76:46:0c:c3:6a:
2d:e1:fc:9f:dd:27:e7:54:1f:e8:58:46:ba:8f:40:2a:d5:ac:
4f:a0:22:46:5e:2d:ff:7d:94:09:82:fa:87:b0:ad:ce:47:55:
87:02:d5:ec:67:9d:4f:94:95:d7:a1:98:ec:c7:02:c3:2c:a2:
f3:9a:b1:25:69:91:16:d9:bd:6d:55:a9:d2:98:b4:31:7d:b2:
a4:03:2e:01:52:48:17:d3:20:c0:d5:4f:9f:92:cb:42:d3:f5:
38:99:49:dc:ad:43:11:25:50:79:8d:ae:be:f7:05:3c:5b:96:
98:d5:b3:d8:aa:7c:ee:eb:ff:f9:e5:8f:ff:db:3b:42:46:e0:
77:4b:6f:78:3a:fc:a1:a1:5a:0f:75:4f:b0:b5:44:e4:32:83:
37:69:74:58:b0:90:c5:57:94:be:2b:78:f9:c6:32:f7:b2:18:
e8:4a:32:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:58:37 2025 by rpki-client