Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/3vscPrpislZni088gSeU_vchuVM.roa
File: 3vscPrpislZni088gSeU_vchuVM.roa (raw, json)
Hash identifier: RdaePCsiRpudR2jnkcaBssWuJ/a7bC5gLhKQ7Z8MNEo=
Subject key identifier: DE:FB:1C:3E:BA:62:B2:56:67:8B:4F:3C:81:27:94:FE:F7:21:B9:53
Certificate issuer: /CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Certificate serial: 01945F7D79E5131277B8D1B5B8FD65703A38
Authority key identifier: 4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/3vscPrpislZni088gSeU_vchuVM.roa
Signing time: Mon 13 Jan 2025 11:47:26 +0000
ROA not before: Mon 13 Jan 2025 11:47:26 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 197450
IP address blocks: 176.96.128.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:5f:7d:79:e5:13:12:77:b8:d1:b5:b8:fd:65:70:3a:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4f9509b33da55f3e5d5283eb621d0d35d7aeed5c
Validity
Not Before: Jan 13 11:47:26 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=defb1c3eba62b256678b4f3c812794fef721b953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ec:61:19:4e:f6:47:95:7f:89:38:56:79:a4:
00:d2:ea:30:0d:c8:0c:e4:6b:cf:a3:54:f6:6a:22:
85:dc:e8:f3:ad:cd:49:00:45:8a:e3:8b:3f:c1:06:
64:2a:f7:4e:88:10:63:c6:3f:9b:03:25:12:2e:a1:
57:56:8a:65:e1:8c:71:9a:27:63:0b:ba:a8:ee:0b:
14:8d:58:fd:69:2d:b6:67:82:b1:46:e9:ec:2d:56:
c5:c4:c3:82:dd:3f:35:16:b7:8d:4d:32:39:f5:8f:
28:f6:b8:d7:0a:86:29:9e:fb:c8:99:9b:d1:12:b3:
6e:a4:65:e7:f4:84:a6:b4:6c:2f:a5:3c:94:78:1b:
8a:67:2b:c0:83:a0:d4:72:12:62:87:6f:d3:ed:16:
3a:af:b0:7a:b1:26:3e:79:c2:cf:12:25:1f:26:17:
8e:65:73:07:b3:3d:0f:ea:86:7d:ce:7a:59:b7:f3:
f4:96:3e:04:a4:c5:52:2b:6b:63:f6:71:19:ee:57:
ac:bb:72:40:2c:89:f3:b4:fd:35:a4:9d:15:99:53:
f9:a9:cf:f8:47:bd:15:c9:b4:8c:a8:af:64:20:d3:
ea:5d:11:59:a5:f1:46:df:44:75:00:ce:af:ec:71:
2f:cf:36:96:3b:fa:75:09:b4:1c:7b:fd:ab:27:96:
4a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:FB:1C:3E:BA:62:B2:56:67:8B:4F:3C:81:27:94:FE:F7:21:B9:53
X509v3 Authority Key Identifier:
keyid:4F:95:09:B3:3D:A5:5F:3E:5D:52:83:EB:62:1D:0D:35:D7:AE:ED:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/3vscPrpislZni088gSeU_vchuVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/6fc1bc-a5f8-42a8-95e4-60107e2b5109/1/T5UJsz2lXz5dUoPrYh0NNdeu7Vw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
176.96.128.0/24
Signature Algorithm: sha256WithRSAEncryption
86:5d:7e:52:eb:79:fb:07:74:13:07:be:3b:c6:f0:c7:00:c4:
24:4e:13:9f:42:f0:31:a7:15:32:4c:ef:c8:50:93:55:9b:c5:
e5:52:19:c7:47:6f:25:9c:94:cb:8a:fa:df:a3:10:bb:c3:84:
a7:e5:c9:f1:c3:b7:79:e3:a8:27:a1:57:64:cd:4a:c0:31:d5:
db:26:a6:18:28:e1:30:45:43:94:de:69:74:e9:bd:1c:11:c7:
ab:49:95:6c:59:1a:57:6a:68:62:b6:52:d3:fd:54:86:e2:dd:
ee:48:21:fd:18:63:76:fb:9d:ad:1a:ac:c6:f3:d5:9a:87:51:
96:03:6d:13:19:e5:a4:08:51:c2:ed:d8:17:0b:4e:12:4c:56:
b7:c2:cd:24:1a:68:19:db:a7:a7:7f:86:03:02:3e:13:59:ef:
01:4f:2f:1c:d6:a9:40:3e:ae:c3:26:1c:3d:8e:38:e6:7b:38:
74:de:29:bb:40:52:00:e1:ca:ac:73:07:b5:d1:c5:d3:3d:ef:
ae:42:ff:6e:79:c1:1b:4a:46:ce:87:f6:a7:a6:fa:b0:20:0e:
40:4f:9b:a9:4d:05:9e:9c:4c:f4:4b:27:4e:b6:44:0c:c5:73:
f2:c2:13:f2:cd:50:a0:85:5a:f2:b6:fe:89:f2:53:04:dd:83:
1a:ab:f5:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 18 12:27:44 2025 by rpki-client