Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/AKg-9Dot_3KnRxReZ2GghZqVBOU.roa
File: AKg-9Dot_3KnRxReZ2GghZqVBOU.roa (raw, json)
Hash identifier: MszMEVTosXoDI/JmE5hBVoFuXP/neL6HXnu5ZxVh9UE=
Subject key identifier: 00:A8:3E:F4:3A:2D:FF:72:A7:47:14:5E:67:61:A0:85:9A:95:04:E5
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 50DB9442
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/AKg-9Dot_3KnRxReZ2GghZqVBOU.roa
Signing time: Sat 01 Jan 2022 16:01:52 +0000
ROA not before: Sat 01 Jan 2022 16:01:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51817
IP address blocks: 194.209.170.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1356567618 (0x50db9442)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 16:01:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=00a83ef43a2dff72a747145e6761a0859a9504e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cb:0c:33:a9:4f:a7:c4:95:76:9f:e2:ba:81:
44:b3:9c:58:bc:80:2e:cd:47:75:07:da:01:30:16:
ec:59:73:64:c9:08:84:c5:e8:6a:ce:b7:96:97:2d:
2e:79:07:b5:d8:91:26:31:f5:4b:13:f9:f5:f2:47:
c1:2b:96:74:95:fb:a7:73:40:9d:2b:82:6e:38:41:
40:93:19:9a:33:80:8f:dd:b0:3f:87:10:98:f7:79:
0d:98:67:fc:d0:de:23:55:dd:93:0c:62:9b:df:e0:
de:d1:ab:31:17:1b:5c:8a:8d:74:e9:b9:85:c3:62:
89:72:db:a8:98:00:d1:5a:82:6f:94:b1:bd:af:3a:
4d:43:d5:b1:8c:73:41:f1:f0:7b:5b:3a:dd:fa:57:
8f:a9:17:eb:63:97:73:e2:f2:c0:95:ff:91:bd:62:
e9:de:69:6e:c3:07:43:f1:f6:68:8d:d9:b7:ef:b6:
31:ae:b1:b4:06:2a:c6:f5:e0:50:9a:38:27:af:5c:
91:7d:a6:ae:86:82:c6:b4:e9:52:1d:23:ba:79:d9:
87:96:32:64:dc:66:47:f6:3f:5b:90:62:61:99:03:
dc:b6:a6:57:c3:67:20:e7:f8:a5:cb:2a:89:b6:02:
1e:5f:36:33:c6:b7:5c:2b:07:71:a3:ea:7a:dc:bc:
95:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:A8:3E:F4:3A:2D:FF:72:A7:47:14:5E:67:61:A0:85:9A:95:04:E5
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/AKg-9Dot_3KnRxReZ2GghZqVBOU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.209.170.0/24
Signature Algorithm: sha256WithRSAEncryption
32:cc:e6:55:29:41:d3:9f:6b:5c:d3:a0:20:02:27:f5:2d:d4:
33:6c:8d:13:e7:75:f9:1a:30:87:2e:73:52:fa:74:7d:a7:c6:
e4:20:6d:3c:b0:37:2b:90:12:be:76:1f:15:8f:96:5a:c6:2d:
26:f1:19:5a:4e:8f:c2:27:b7:28:59:0a:5e:7b:fc:3f:5f:02:
9c:aa:1a:98:34:fc:60:48:68:b6:1a:d4:44:18:46:e4:a1:29:
aa:86:ad:73:ca:d1:81:dd:af:40:3a:2b:3f:c3:04:94:13:e8:
8c:88:b6:ea:ae:1d:9f:59:c2:ea:ab:79:8f:12:6b:12:91:5a:
53:6b:9a:9e:4f:76:b3:17:10:52:21:e4:01:ed:ab:2a:99:b5:
a4:f0:86:56:b4:cc:2b:f5:6c:d2:16:95:24:d5:10:f1:06:08:
d5:04:a8:46:90:31:21:41:7b:c9:33:10:d2:c1:9d:9e:9b:a3:
1a:e5:10:3a:ab:74:d7:fc:4a:66:f3:d9:08:da:76:a9:76:c7:
f2:6c:62:42:84:e6:ac:53:70:88:57:34:b3:e5:34:cb:a6:71:
1f:c9:78:dd:eb:81:b0:1c:42:c1:70:09:ca:c5:5b:6c:54:a6:
22:18:3a:82:f3:cd:64:ec:6b:3c:cd:73:36:e6:bf:35:be:c0:
c1:31:01:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:31:54 2025 by rpki-client