Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/4c3akicStY2IACCoacZJa7ZV4ac.roa
File: 4c3akicStY2IACCoacZJa7ZV4ac.roa (raw, json)
Hash identifier: F/ixQZATKaEWm9FBWAw8OfPcVHAQujSAFQxfgFANS/o=
Subject key identifier: E1:CD:DA:92:27:12:B5:8D:88:00:20:A8:69:C6:49:6B:B6:55:E1:A7
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01873C1753ECC7A97A25F25B6499279C53B8
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/4c3akicStY2IACCoacZJa7ZV4ac.roa
Signing time: Sat 01 Apr 2023 09:12:54 +0000
ROA not before: Sat 01 Apr 2023 09:12:54 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 206794
IP address blocks: 195.65.86.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:3c:17:53:ec:c7:a9:7a:25:f2:5b:64:99:27:9c:53:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Apr 1 09:12:54 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e1cdda922712b58d880020a869c6496bb655e1a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:5d:2e:c5:a7:c3:5e:f4:f2:79:33:c8:a2:de:
05:c2:67:91:12:2b:c7:3c:88:ea:70:01:90:13:46:
b6:cc:d4:be:2c:fb:03:b9:1c:b7:aa:77:94:69:c2:
52:84:f8:2f:a4:f8:b3:b5:16:93:e8:ad:a3:a6:e9:
9f:96:26:a6:05:d5:f6:bd:2e:c1:9d:9d:35:88:90:
3b:33:0e:23:18:b2:a4:96:7c:b9:8a:bc:43:e2:0a:
46:ed:23:81:8f:8b:29:96:6c:bc:5a:0b:55:79:ab:
e9:6a:c6:9e:c5:af:93:aa:a8:b5:68:17:de:94:34:
9d:2f:96:d8:20:25:2e:34:af:16:00:29:10:d3:f0:
3d:88:ba:e2:e2:04:5e:32:dd:e5:7a:de:7b:e0:14:
38:a8:d3:1f:70:c3:16:1a:2c:23:98:a4:79:5d:d6:
1d:72:57:71:6f:8f:81:34:c6:3c:16:70:cb:c8:55:
9a:8d:d4:6e:80:e5:48:62:62:41:55:a8:b0:7b:ff:
b0:14:40:fc:c4:99:00:26:26:ce:85:a6:0f:12:c9:
3f:94:ed:62:c3:9f:fe:2c:cd:27:df:fd:29:71:14:
e4:6f:ff:83:f8:a2:04:42:18:64:f9:5a:e1:c7:d3:
1d:15:7b:cc:19:cb:b0:22:a1:ab:1b:56:a3:0f:6f:
0c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:CD:DA:92:27:12:B5:8D:88:00:20:A8:69:C6:49:6B:B6:55:E1:A7
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/4c3akicStY2IACCoacZJa7ZV4ac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.65.86.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:89:35:60:53:44:d0:d7:ac:20:79:20:3f:f8:2b:2e:27:3b:
58:c0:24:84:3c:f5:50:43:59:e0:38:c7:ea:9f:d8:43:4a:42:
af:53:b4:45:1d:b7:6d:ce:2d:28:5a:97:bb:56:4f:4c:3b:da:
dd:78:a2:15:96:48:03:c2:da:2b:a0:39:27:9e:43:81:56:99:
26:ed:1d:ea:ae:a6:2d:65:48:fd:1a:1a:d9:94:b2:ae:3e:b8:
39:02:81:cc:fd:27:d3:93:bf:7b:9c:09:e0:4a:3d:43:ce:37:
04:c1:39:45:3c:14:40:19:b0:ed:1e:b5:8b:53:96:5c:fd:63:
96:85:da:b4:1b:6e:11:57:ed:c2:2b:b4:2d:92:d9:7a:fd:a1:
ff:8d:54:1f:51:b8:ac:d5:52:9b:5e:d0:1d:58:34:0a:04:8a:
2a:5d:48:14:7c:42:bb:93:fd:67:08:c9:bf:2e:b6:34:75:39:
6d:d7:50:55:ff:2c:0d:e0:0a:be:61:8d:9f:54:b4:d8:d1:20:
97:fa:34:f5:5b:23:ac:c6:d3:ce:a3:e7:de:6a:37:6b:bd:37:
de:51:89:bb:61:c7:3d:bf:06:62:25:45:b6:29:2c:a3:dc:f8:
24:49:63:9a:fa:71:00:86:82:8c:29:f7:5c:cb:cd:7a:7e:29:
3d:5b:17:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:32:01 2025 by rpki-client