Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/3e7210-0528-4456-b68e-a713a1915c90/1/Vsn3jYRWMir2G2-W8jrydR_iJwk.roa
File: Vsn3jYRWMir2G2-W8jrydR_iJwk.roa (raw, json)
Hash identifier: +JLCfjRT9K7qAkhsFi/9o8pUTPcML+dFZemwYUpHZ7U=
Subject key identifier: 56:C9:F7:8D:84:56:32:2A:F6:1B:6F:96:F2:3A:F2:75:1F:E2:27:09
Certificate issuer: /CN=9c1394768c9a39a6112674d7375972a6696b4680
Certificate serial: 019422FC1D8E6AAA8327C34845086E673B5B
Authority key identifier: 9C:13:94:76:8C:9A:39:A6:11:26:74:D7:37:59:72:A6:69:6B:46:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nBOUdoyaOaYRJnTXN1lypmlrRoA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/3e7210-0528-4456-b68e-a713a1915c90/1/Vsn3jYRWMir2G2-W8jrydR_iJwk.roa
Signing time: Wed 01 Jan 2025 17:48:55 +0000
ROA not before: Wed 01 Jan 2025 17:48:55 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 207083
IP address blocks: 194.146.104.0/24 maxlen: 24
194.146.114.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:22:fc:1d:8e:6a:aa:83:27:c3:48:45:08:6e:67:3b:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1394768c9a39a6112674d7375972a6696b4680
Validity
Not Before: Jan 1 17:48:55 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=56c9f78d8456322af61b6f96f23af2751fe22709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:14:de:77:77:e7:f5:a9:44:0c:10:b8:d6:c2:
c6:01:1b:b2:26:e2:f9:fd:f6:39:e1:7f:fa:16:b9:
25:5d:1b:a5:19:0a:77:6d:e3:a0:f0:c5:42:28:1f:
0d:47:c3:aa:1c:d2:0d:a2:3f:b8:97:d5:c6:33:2f:
1c:90:6e:1b:c1:08:88:27:76:8c:bb:cf:f7:ce:15:
11:2d:3a:e9:67:a5:54:d0:2e:8e:86:01:4b:5f:19:
6e:f2:5f:26:0d:88:1e:ae:8e:f1:b7:08:13:7a:22:
20:0c:38:1a:b7:71:73:32:c3:a2:b7:fe:99:6a:9e:
3c:86:a6:84:cf:aa:e6:d1:cc:a7:f3:ae:4b:8d:18:
c0:54:92:50:d9:b9:c5:ac:6b:a2:76:53:fd:71:08:
b4:8b:89:00:87:1c:30:1d:31:94:20:90:28:20:72:
cc:3d:8c:98:96:78:2c:bf:e1:5a:2d:11:8a:1f:69:
e5:b2:2d:96:ef:17:68:22:20:27:7c:23:e8:2c:66:
e1:65:47:2c:33:e4:ef:b0:fb:32:9e:8a:dc:0d:ca:
af:4a:ae:81:57:25:d7:80:50:9f:9f:83:fa:30:8e:
65:c0:d5:0f:69:07:19:87:72:28:ec:0b:a5:80:e6:
f7:38:a4:36:43:b1:f0:ff:28:07:3e:4a:eb:d4:43:
db:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:C9:F7:8D:84:56:32:2A:F6:1B:6F:96:F2:3A:F2:75:1F:E2:27:09
X509v3 Authority Key Identifier:
keyid:9C:13:94:76:8C:9A:39:A6:11:26:74:D7:37:59:72:A6:69:6B:46:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nBOUdoyaOaYRJnTXN1lypmlrRoA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3e7210-0528-4456-b68e-a713a1915c90/1/Vsn3jYRWMir2G2-W8jrydR_iJwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/3e7210-0528-4456-b68e-a713a1915c90/1/nBOUdoyaOaYRJnTXN1lypmlrRoA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.146.104.0/24
194.146.114.0/24
Signature Algorithm: sha256WithRSAEncryption
43:d1:14:9e:93:22:85:87:73:25:69:93:1a:cc:74:21:07:ad:
e6:12:16:57:2b:ac:5a:15:af:4b:98:37:12:a0:c0:c4:55:c7:
fe:9b:d3:d9:82:1b:30:bc:a5:85:63:7a:e6:37:95:ac:af:81:
7b:45:3a:17:c8:2e:b2:fd:44:7a:a8:b4:1c:62:c9:d9:d3:d8:
25:6c:d2:0e:fe:a0:3c:3f:6f:5d:35:48:c0:42:39:6b:70:aa:
41:11:db:71:08:52:10:10:29:b9:10:0e:af:c6:b8:00:1c:f5:
e8:d4:1d:b2:4e:44:49:ad:df:24:fb:ec:51:a7:62:66:dd:f4:
cf:38:55:98:c3:f9:a5:95:ad:c6:bb:df:17:aa:4c:9a:5d:7f:
23:72:66:43:78:e0:db:6f:a8:e2:5c:25:2e:3e:28:4a:2e:61:
d7:b0:f5:79:0c:bb:ca:a5:18:da:d4:3b:36:b9:88:d5:14:8c:
d9:00:f2:cc:c6:bb:4e:08:4f:00:5e:dd:f9:bb:fd:e5:25:52:
0d:a1:3e:ed:c5:e7:c8:69:50:cf:03:d6:f2:f8:d3:08:8c:31:
04:56:a5:ce:b0:ea:cf:4b:ca:9b:4c:88:c5:40:b6:9f:45:c7:
66:09:ff:b0:0d:11:7c:e8:f4:17:b6:14:1b:b9:a3:ab:8e:5d:
b7:e5:a8:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 20 02:48:49 2025 by rpki-client