Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/5Bs_jUjv0l_TKh3-Ibz7Y3JjAh4.roa
File: 5Bs_jUjv0l_TKh3-Ibz7Y3JjAh4.roa (raw, json)
Hash identifier: l3NFDbIOSsNhXwmtc6RnOuc+rviYZs7JOCcBfguhg4s=
Subject key identifier: E4:1B:3F:8D:48:EF:D2:5F:D3:2A:1D:FE:21:BC:FB:63:72:63:02:1E
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01942067C58E541C1C1190576F1DA9824484
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/5Bs_jUjv0l_TKh3-Ibz7Y3JjAh4.roa
Signing time: Wed 01 Jan 2025 05:47:39 +0000
ROA not before: Wed 01 Jan 2025 05:47:39 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 29058
IP address blocks: 194.209.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:20:67:c5:8e:54:1c:1c:11:90:57:6f:1d:a9:82:44:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 05:47:39 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=e41b3f8d48efd25fd32a1dfe21bcfb637263021e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:f0:75:7a:8b:89:50:d5:00:95:3b:38:7e:77:
66:66:1b:8b:82:7b:bd:e0:62:32:05:a4:ab:4e:b5:
4c:ed:51:ab:ab:23:83:d2:12:78:42:2b:2e:30:79:
1e:a8:68:53:5b:37:a2:e5:78:b7:5a:aa:d4:fd:0d:
e1:ac:d2:10:ab:4d:60:71:cf:10:eb:50:d6:1d:ad:
a7:d2:08:b1:80:3b:7f:51:91:14:9c:82:3c:5e:99:
6c:f8:d5:4a:30:73:2e:97:4c:6b:97:ae:f1:b3:f2:
d2:9c:19:67:b2:2e:7e:67:11:00:62:82:ab:20:db:
d2:be:55:6a:ff:e4:f1:f7:d9:3c:71:a6:b8:98:aa:
18:04:d2:d3:34:35:ef:76:2d:1e:a4:df:bf:b7:a5:
f4:e9:e2:1a:d8:66:fa:e1:61:d8:f6:4b:e9:fb:0c:
3e:7a:70:ab:f7:1c:f2:0c:71:07:1e:cb:f5:3a:5a:
70:4c:be:f7:4b:f0:25:63:f0:66:ad:4d:83:55:2a:
86:bb:67:cb:9a:fc:a8:6c:45:6f:24:d6:e7:0d:d2:
e3:94:fb:cc:f2:2e:9f:2d:a7:1a:eb:a9:a5:f0:f8:
a0:9c:b7:6c:63:f0:23:26:e5:fe:7b:c5:eb:67:2f:
57:dd:d7:41:c0:2b:d1:1b:23:82:f6:c4:fa:c6:75:
24:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:1B:3F:8D:48:EF:D2:5F:D3:2A:1D:FE:21:BC:FB:63:72:63:02:1E
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/5Bs_jUjv0l_TKh3-Ibz7Y3JjAh4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.209.3.0/24
Signature Algorithm: sha256WithRSAEncryption
72:9e:a9:c3:4e:45:68:96:33:9d:bd:ca:ac:bd:c1:58:57:d2:
9b:8c:f5:37:c9:87:5e:13:1b:13:b2:cf:63:7e:a8:8b:fb:9b:
b4:a6:f5:bb:cf:20:c5:5d:2b:8b:a4:12:ce:22:9c:cc:1c:85:
2b:da:73:47:87:8a:d2:a4:7e:5a:70:5c:13:bf:19:c1:a5:f0:
7c:00:bc:56:26:5d:c2:dc:51:ea:19:b5:b6:c6:63:5a:a2:82:
91:5c:1b:7e:4e:cb:ea:1b:58:df:25:26:69:aa:0f:5f:b2:61:
12:04:3c:b0:96:e0:fd:0b:3e:11:7a:13:4a:9d:21:8d:74:78:
c5:a6:ea:59:6d:63:88:0c:95:9c:15:9d:4d:6c:9e:88:9c:3a:
31:8e:98:7c:f4:71:7e:5d:9b:20:55:c4:7e:03:58:27:96:75:
17:4d:d4:74:47:d9:e8:81:ad:ea:21:f2:ef:57:2a:4e:2e:72:
d9:20:e6:9f:bf:12:b4:bc:23:a6:b8:79:74:b0:22:77:f4:ba:
f4:40:11:c5:32:c2:a9:ae:7f:af:41:3a:d0:d2:d3:ec:09:13:
84:2a:da:7b:7d:d0:9a:b6:9f:48:df:60:59:ed:26:f5:08:17:
99:77:8a:9b:44:d0:95:1e:91:13:fc:9d:bb:6b:8f:8d:8d:96:
99:54:f5:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:31:59 2025 by rpki-client