Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/8f17fa-f428-4dd1-b28b-44362038d5d1/1/aqtEt0UfquFSrnW-N4u5XrDmV4w.roa
File: aqtEt0UfquFSrnW-N4u5XrDmV4w.roa (raw, json)
Hash identifier: elwno27phc5Ne2XQeSTKSR+tf8lIjbRlcrmDYrTGA2E=
Subject key identifier: 6A:AB:44:B7:45:1F:AA:E1:52:AE:75:BE:37:8B:B9:5E:B0:E6:57:8C
Certificate issuer: /CN=0141c53a7e41acca08f2ceb069a3cfff68f485eb
Certificate serial: 03BE83F5
Authority key identifier: 01:41:C5:3A:7E:41:AC:CA:08:F2:CE:B0:69:A3:CF:FF:68:F4:85:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AUHFOn5BrMoI8s6waaPP_2j0hes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/8f17fa-f428-4dd1-b28b-44362038d5d1/1/aqtEt0UfquFSrnW-N4u5XrDmV4w.roa
Signing time: Tue 26 Apr 2022 07:15:16 +0000
ROA not before: Tue 26 Apr 2022 07:15:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211252
IP address blocks: 194.49.95.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62817269 (0x3be83f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0141c53a7e41acca08f2ceb069a3cfff68f485eb
Validity
Not Before: Apr 26 07:15:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6aab44b7451faae152ae75be378bb95eb0e6578c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:35:06:03:fd:c2:cc:e0:4a:30:4e:a0:93:92:
42:8b:b2:fd:95:44:0b:37:19:91:8f:ad:d9:ac:a3:
48:5e:76:8f:c8:c1:fe:47:99:6f:fb:8b:41:a5:09:
b1:66:46:ec:51:1e:26:94:50:b5:83:2b:fb:11:79:
13:b8:84:c8:1b:df:34:7d:40:cb:cd:e7:4a:a0:c4:
a0:5a:42:cc:80:e8:15:98:79:4c:e7:1b:0c:f3:86:
78:59:e5:d1:6e:e9:36:b4:87:8d:7b:9c:12:8a:aa:
7d:78:a3:0c:9b:7b:39:68:4f:f1:fe:2f:e9:0c:54:
d0:35:96:37:0e:ca:c8:bb:3c:d2:06:d5:92:9f:9d:
33:5c:11:ef:68:ec:c6:35:62:a9:9a:53:14:5e:5e:
57:04:07:fa:1d:84:38:f3:0b:f4:e3:82:9c:67:84:
6b:39:88:f5:fe:c1:c6:01:5b:b4:fc:6c:b1:73:1d:
ca:18:4e:03:af:fb:fa:46:83:66:d5:a0:d2:e5:b9:
b2:06:14:c8:b6:f9:96:f6:a3:39:27:df:49:2b:64:
e0:12:dd:d5:d9:94:05:45:1f:28:1a:a7:f8:67:a2:
a4:a2:95:23:1d:68:5e:14:aa:8f:2d:9a:37:c2:4f:
f4:3d:b9:c6:db:14:d9:53:bf:72:44:f7:68:87:25:
03:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:AB:44:B7:45:1F:AA:E1:52:AE:75:BE:37:8B:B9:5E:B0:E6:57:8C
X509v3 Authority Key Identifier:
keyid:01:41:C5:3A:7E:41:AC:CA:08:F2:CE:B0:69:A3:CF:FF:68:F4:85:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AUHFOn5BrMoI8s6waaPP_2j0hes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/8f17fa-f428-4dd1-b28b-44362038d5d1/1/aqtEt0UfquFSrnW-N4u5XrDmV4w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/8f17fa-f428-4dd1-b28b-44362038d5d1/1/AUHFOn5BrMoI8s6waaPP_2j0hes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.49.95.0/24
Signature Algorithm: sha256WithRSAEncryption
73:e1:40:e4:84:14:07:28:41:a3:ed:2c:33:55:18:e1:e1:65:
1d:41:08:0a:d3:19:33:b3:0d:62:b6:40:bb:b1:08:db:de:6b:
ac:d6:6e:05:f3:0a:f7:26:4b:8d:b6:a1:c1:d4:30:cd:6c:4e:
04:6b:ea:3e:3c:12:4c:41:2c:7c:88:78:52:03:0f:86:cb:41:
41:92:aa:b2:a2:83:eb:7b:da:2a:e9:a9:8c:48:b7:e3:26:b5:
87:a5:bf:79:4a:4d:70:3e:61:50:be:6d:39:d3:95:85:4b:3f:
94:ef:5b:65:c5:ce:36:da:80:66:ce:2a:4b:4c:cc:dd:a6:07:
c1:82:18:e2:7e:db:cf:19:10:ba:7b:24:2d:99:4b:6d:ce:cf:
c3:c5:54:26:3b:d7:19:fb:aa:96:86:42:f4:44:bc:98:19:77:
10:0b:ce:3d:96:3e:2d:3c:c9:4c:d0:c7:b9:f6:fa:b8:18:c1:
8e:9a:cb:8c:96:04:88:02:d0:42:7b:a0:68:53:51:f5:6b:69:
67:0a:26:b1:91:9f:2a:cf:e8:80:c9:7d:cf:13:ff:e3:fc:13:
83:18:ec:83:b4:87:22:c0:21:43:19:41:d0:9e:cd:8a:e6:7f:
40:51:e4:b3:54:e5:1c:56:ea:e6:87:ae:b2:1f:9a:d3:06:08:
ee:be:d5:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:56:38 2025 by rpki-client