Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/fe05b4-0873-4f1f-ba1f-7e9c0b02248e/1/BFXbBXmgj_U02tRnQ5cIwT3U598.roa
File: BFXbBXmgj_U02tRnQ5cIwT3U598.roa (raw, json)
Hash identifier: Y3AkRUWe6b+8HIEcIYVHhjtW0X1zsv/QwB6RX5f9lr8=
Subject key identifier: 04:55:DB:05:79:A0:8F:F5:34:DA:D4:67:43:97:08:C1:3D:D4:E7:DF
Certificate issuer: /CN=011bf02928cccb516b719fe558884842f19c0877
Certificate serial: 019423D7FE36E3A8F13CFE06D35A4539E861
Authority key identifier: 01:1B:F0:29:28:CC:CB:51:6B:71:9F:E5:58:88:48:42:F1:9C:08:77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ARvwKSjMy1FrcZ_lWIhIQvGcCHc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/fe05b4-0873-4f1f-ba1f-7e9c0b02248e/1/BFXbBXmgj_U02tRnQ5cIwT3U598.roa
Signing time: Wed 01 Jan 2025 21:49:05 +0000
ROA not before: Wed 01 Jan 2025 21:49:05 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 15404
IP address blocks: 194.33.183.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:23:d7:fe:36:e3:a8:f1:3c:fe:06:d3:5a:45:39:e8:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=011bf02928cccb516b719fe558884842f19c0877
Validity
Not Before: Jan 1 21:49:05 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0455db0579a08ff534dad467439708c13dd4e7df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a7:89:9c:98:92:93:77:f5:1e:ab:b8:cc:ff:
9c:4c:c3:4d:c8:69:69:5b:17:26:88:27:85:68:21:
f9:15:ad:81:38:3e:24:57:49:90:93:25:80:b3:d1:
c8:65:95:c8:a9:9c:c5:57:12:2a:e5:a0:57:66:c7:
61:62:d1:d6:fc:2d:47:8a:51:f2:28:a8:92:66:8e:
75:11:ab:58:bd:fe:90:b8:08:04:07:91:e3:f3:9c:
a2:40:f8:6e:19:e6:d4:2f:5e:d6:76:3a:66:ba:20:
ed:e7:b4:1d:ab:da:91:7c:a3:a9:67:b7:44:1e:73:
9d:00:8d:86:b4:42:33:31:23:3f:fb:92:00:7e:7b:
ce:8f:09:fe:e6:58:24:4d:c2:be:f2:ed:5c:f4:47:
5a:4b:b6:b4:d5:26:bc:42:05:c7:7d:e0:32:56:de:
86:83:69:87:44:79:cd:e3:8e:7e:bd:df:d9:da:b8:
8d:99:96:00:b3:76:71:79:23:34:a9:0b:2e:53:32:
e1:19:81:ea:62:38:15:a5:ac:f7:42:f3:e8:f2:35:
1a:5e:c6:cd:78:ff:62:be:59:1f:df:fb:ef:d0:bb:
cb:4a:e4:8b:e2:38:11:13:85:67:4f:71:ca:5e:6b:
de:68:b3:df:ea:1d:1f:ee:8b:57:39:6b:95:78:c0:
78:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:55:DB:05:79:A0:8F:F5:34:DA:D4:67:43:97:08:C1:3D:D4:E7:DF
X509v3 Authority Key Identifier:
keyid:01:1B:F0:29:28:CC:CB:51:6B:71:9F:E5:58:88:48:42:F1:9C:08:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ARvwKSjMy1FrcZ_lWIhIQvGcCHc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/fe05b4-0873-4f1f-ba1f-7e9c0b02248e/1/BFXbBXmgj_U02tRnQ5cIwT3U598.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/fe05b4-0873-4f1f-ba1f-7e9c0b02248e/1/ARvwKSjMy1FrcZ_lWIhIQvGcCHc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.33.183.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:f0:f5:97:ca:43:ca:ad:ce:ca:ee:43:91:8b:78:f2:fa:66:
57:3d:5c:f6:b4:65:10:4c:d8:d1:ea:2c:fd:8c:84:a6:70:6f:
89:2c:e4:5e:30:a0:75:bc:c4:0a:e3:17:6e:87:ad:8a:52:e0:
b2:cb:12:b1:be:15:a7:ee:44:35:df:aa:22:f8:bc:d3:32:22:
6c:46:18:dd:91:36:a5:bc:42:15:d1:18:84:f4:ac:07:17:3e:
ff:83:84:db:f6:6c:24:ad:88:4e:30:67:7e:db:11:03:b1:e6:
68:ee:1c:61:b9:ea:c3:1a:da:4b:8c:02:71:a8:70:70:6c:b0:
4e:d1:11:22:77:8e:d4:d2:e4:a7:5d:24:b8:7f:23:3f:da:6f:
bc:2d:d1:3e:40:a6:ae:d4:cb:1d:41:42:81:ec:03:9f:78:a3:
05:80:50:ba:91:a1:b6:f7:4a:bb:da:9a:38:80:52:50:8d:ed:
16:8c:7b:4a:98:cc:0d:6a:5a:06:56:35:5e:1c:4b:cc:8b:04:
ec:51:2b:47:3d:cc:fd:0a:01:69:a9:99:16:21:81:aa:f2:21:
36:ab:e5:59:e0:68:79:11:59:a4:b0:eb:ef:8c:6d:de:a5:c8:
b7:a7:45:da:65:e4:d6:d9:a7:c8:ca:aa:51:3b:1d:9b:be:7b:
f5:53:ce:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:54:17 2025 by rpki-client