Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/6Fyf3mR5Kxoo0E28LYMBJT0oYmU.roa
File: 6Fyf3mR5Kxoo0E28LYMBJT0oYmU.roa (raw, json)
Hash identifier: JzWaExRAvww21tF3FCC321vPDNfW8olRs2PU7hN4CLs=
Subject key identifier: E8:5C:9F:DE:64:79:2B:1A:28:D0:4D:BC:2D:83:01:25:3D:28:62:65
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 01856D8B1ABCB755A8D99B9C97D492756110
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/6Fyf3mR5Kxoo0E28LYMBJT0oYmU.roa
Signing time: Sun 01 Jan 2023 13:35:10 +0000
ROA not before: Sun 01 Jan 2023 13:35:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 209494
IP address blocks: 195.65.43.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:8b:1a:bc:b7:55:a8:d9:9b:9c:97:d4:92:75:61:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 13:35:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e85c9fde64792b1a28d04dbc2d8301253d286265
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:f6:f0:17:23:ac:6b:05:e9:be:c7:a2:f2:46:
1d:93:3f:fc:67:b3:94:c7:99:0c:ea:19:cb:e2:7b:
76:76:1d:c6:c4:27:0f:b6:11:ab:83:78:d8:ea:30:
cd:4b:e0:4d:fe:f1:1d:73:e0:10:7e:4f:e5:29:e5:
89:a0:c7:86:d5:a1:6c:87:d6:a3:70:03:1f:5f:77:
40:aa:a2:b0:cb:46:f1:3d:d7:15:58:d3:4e:74:70:
12:46:f3:5d:d9:e9:50:57:8d:ae:f6:83:b3:dc:de:
75:53:1c:7f:1d:5d:e4:1f:0b:f7:2c:fa:f0:b1:18:
c3:11:0a:c5:7a:cf:89:14:f4:5e:fb:da:24:3c:40:
21:0e:2d:a6:46:d4:ce:77:fe:b0:4c:3b:37:0d:00:
cb:c5:80:e6:2d:69:fd:9e:15:a1:79:c1:db:03:a9:
d5:9a:e1:b8:20:c3:8a:b6:ae:89:09:93:b2:e1:33:
d4:e2:f8:c0:a3:3e:4a:3c:db:05:ad:e2:ce:cc:34:
78:dd:93:2c:c3:dc:b0:b7:a8:ff:13:a1:7d:9a:1d:
63:b9:3c:9d:dd:bb:da:35:c9:34:67:5e:aa:38:fd:
a2:60:89:6b:4b:a9:e1:66:6e:9c:2b:cc:00:62:7f:
15:c6:8e:dd:bb:26:55:bc:ab:fd:47:4c:cd:d2:d2:
47:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:5C:9F:DE:64:79:2B:1A:28:D0:4D:BC:2D:83:01:25:3D:28:62:65
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/6Fyf3mR5Kxoo0E28LYMBJT0oYmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.65.43.0/24
Signature Algorithm: sha256WithRSAEncryption
37:a6:fc:0a:0d:90:1e:b7:c6:e1:c8:56:71:c6:c9:c3:bd:ad:
9d:d7:98:97:a1:a8:ed:e8:f3:94:5c:0b:84:9b:56:98:28:ce:
af:79:56:52:6d:7c:85:e5:5f:3b:c3:5a:02:23:f2:29:c4:96:
74:bb:bd:af:27:92:26:c2:39:92:1d:08:fd:f2:09:bd:8b:22:
25:1d:f5:db:c8:94:12:ac:64:5f:09:c4:28:85:b7:93:81:e1:
43:99:34:22:7d:21:c5:06:8f:74:a9:9b:8a:83:65:89:71:94:
53:c7:c8:67:36:1b:fc:25:6f:e6:70:04:ee:ff:aa:3b:73:c5:
55:07:da:81:07:66:8c:a6:f2:27:ad:53:40:99:bd:b2:b6:97:
15:e9:a3:c8:99:12:15:a2:a7:0f:4f:4a:43:54:0c:d8:cb:06:
67:1e:3b:44:a1:3e:97:32:72:19:88:a2:39:61:52:a7:38:36:
1e:82:d8:75:79:c5:3b:f7:3e:34:2a:8c:88:68:1e:3a:a9:eb:
f4:7a:14:11:63:72:08:a4:27:d1:76:bf:e6:c5:d3:81:ce:0b:
ba:4a:6c:e8:11:7b:f7:22:39:74:65:6b:fd:d4:2c:42:79:ad:
07:1c:e0:24:3b:b3:2e:9d:18:78:c2:9c:fc:c8:13:70:5f:6a:
6f:ba:31:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 10:52:47 2025 by rpki-client