Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/RyUHQEgGXjRJvvBofzPoVBVvJLI.roa
File: RyUHQEgGXjRJvvBofzPoVBVvJLI.roa (raw, json)
Hash identifier: 8LvL1DJ5MAmrFF0fUbGtnSpplfiMkmqva41THaM74ck=
Subject key identifier: 47:25:07:40:48:06:5E:34:49:BE:F0:68:7F:33:E8:54:15:6F:24:B2
Certificate issuer: /CN=43a438813750133e55001bf89670a0db3ae5be1f
Certificate serial: 019421B212E627F8DC20D4DC40EA890BFF69
Authority key identifier: 43:A4:38:81:37:50:13:3E:55:00:1B:F8:96:70:A0:DB:3A:E5:BE:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Q6Q4gTdQEz5VABv4lnCg2zrlvh8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/RyUHQEgGXjRJvvBofzPoVBVvJLI.roa
Signing time: Wed 01 Jan 2025 11:48:25 +0000
ROA not before: Wed 01 Jan 2025 11:48:25 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 41778
IP address blocks: 194.50.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:21:b2:12:e6:27:f8:dc:20:d4:dc:40:ea:89:0b:ff:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43a438813750133e55001bf89670a0db3ae5be1f
Validity
Not Before: Jan 1 11:48:25 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=4725074048065e3449bef0687f33e854156f24b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:b3:12:88:98:61:81:a2:27:3e:f8:66:79:72:
75:d1:ae:b5:8c:d1:f4:8f:01:d0:a0:27:c1:be:9f:
94:21:59:9e:3b:e0:0c:b6:35:06:45:df:b5:72:7f:
99:d8:03:68:98:da:9e:fc:65:8d:e2:c9:7d:8f:c7:
f2:4d:02:92:21:e7:6f:ef:67:b7:5f:13:c4:aa:d0:
c0:03:38:02:38:97:c0:17:6c:29:ba:15:98:ee:0e:
7d:e5:29:35:4b:73:8b:83:2b:96:b2:8d:3f:84:1f:
b9:0f:84:8e:9a:80:09:70:15:c1:74:7c:84:df:a2:
1f:cf:70:f0:aa:81:fe:df:6d:58:d7:f4:e8:62:0d:
0a:8a:4d:3a:a6:3f:6c:0c:c8:11:6d:47:2e:9b:d8:
7b:f1:96:66:ad:de:29:ff:a4:e5:18:ce:91:db:b3:
b4:20:75:2e:41:fd:91:ac:9e:95:ed:8d:95:91:66:
88:91:e1:7d:af:bc:60:a2:3a:11:19:9e:41:de:6d:
80:c0:f3:77:6c:0b:76:69:5f:98:f1:4b:b1:05:b3:
cf:61:b7:94:6e:fe:e6:97:46:58:86:2d:b4:e4:cc:
13:0d:fa:81:f2:40:68:bd:ec:c2:64:8d:74:22:ec:
ee:65:fc:73:56:37:c3:9c:29:49:36:f7:c8:93:86:
b9:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:25:07:40:48:06:5E:34:49:BE:F0:68:7F:33:E8:54:15:6F:24:B2
X509v3 Authority Key Identifier:
keyid:43:A4:38:81:37:50:13:3E:55:00:1B:F8:96:70:A0:DB:3A:E5:BE:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Q6Q4gTdQEz5VABv4lnCg2zrlvh8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/RyUHQEgGXjRJvvBofzPoVBVvJLI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/5cb473-35a1-4727-8773-a0d6f0eeb5c2/1/Q6Q4gTdQEz5VABv4lnCg2zrlvh8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.50.177.0/24
Signature Algorithm: sha256WithRSAEncryption
48:9b:50:a1:a9:46:87:da:2f:31:c2:b0:37:eb:71:ad:62:fc:
f8:07:ea:dc:be:55:24:00:26:c2:55:ae:d4:2b:9c:6c:e6:ce:
d6:73:fe:5e:18:06:f3:9a:ee:51:f8:3a:2e:d6:b4:c7:c6:44:
33:be:b3:38:48:6a:be:df:25:c4:cd:6e:04:bb:a2:39:24:d3:
26:a9:a9:00:3d:de:fb:35:a3:86:a7:25:46:be:2d:af:4a:03:
cb:d9:79:97:fd:8b:53:58:39:16:53:90:4d:f1:0f:fd:b2:38:
6f:e2:64:fd:14:81:f2:37:e3:09:69:6d:d8:60:85:53:fd:88:
e9:06:44:34:90:e7:3d:94:5c:ed:7f:c3:5f:26:22:ba:e2:55:
ce:df:36:89:30:7b:b4:01:fa:cc:2c:f9:65:52:69:11:7c:26:
08:e9:75:da:4c:b3:d3:6c:4b:0c:b3:59:f3:38:80:4d:89:df:
28:5e:b1:13:67:b5:86:bb:86:8f:1b:c1:5b:41:e4:47:66:17:
60:a2:e1:cc:39:e5:80:8d:9d:0d:b2:a3:b9:54:26:9c:e8:51:
83:64:3f:7e:8a:0d:7c:ec:54:fa:23:66:78:e2:b2:06:38:92:
c1:f1:fa:cb:b5:c8:f5:35:fb:0f:e5:0a:43:ec:cd:a9:60:29:
13:e0:e9:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 03:19:14 2025 by rpki-client