Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/Ah-MFzNxgcqehrSam5AWsnTP1KI.roa
File: Ah-MFzNxgcqehrSam5AWsnTP1KI.roa (raw, json)
Hash identifier: 2yxdoe1TPl9KPPRNns1r/kmFCeo8F5s8IARFxDAUO3o=
Subject key identifier: 02:1F:8C:17:33:71:81:CA:9E:86:B4:9A:9B:90:16:B2:74:CF:D4:A2
Certificate issuer: /CN=2663f3db152e055ac145bdbb429e018654204c8d
Certificate serial: 50F26D8F
Authority key identifier: 26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/Ah-MFzNxgcqehrSam5AWsnTP1KI.roa
Signing time: Sat 01 Jan 2022 16:02:04 +0000
ROA not before: Sat 01 Jan 2022 16:02:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212920
IP address blocks: 195.65.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1358065039 (0x50f26d8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2663f3db152e055ac145bdbb429e018654204c8d
Validity
Not Before: Jan 1 16:02:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=021f8c17337181ca9e86b49a9b9016b274cfd4a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:8d:47:3c:58:a0:ce:52:a6:86:cc:c6:d3:1a:
d5:d3:ac:ed:08:05:75:43:20:4b:91:a9:b6:4b:58:
0c:99:85:e2:4d:81:16:8c:ea:c1:cc:f4:0a:da:52:
c7:d2:12:69:40:df:24:02:9b:ff:d7:df:20:56:8c:
06:ec:7e:9a:02:9a:5a:b2:c1:f3:c0:19:86:0d:3b:
2f:02:4e:b0:3d:e9:49:7e:8e:f8:7e:e8:6a:a5:9f:
e2:f2:6a:38:5a:de:44:6c:25:df:a3:4f:3d:6c:8e:
28:c8:03:8a:3e:f9:85:ad:21:9c:6c:f5:d0:37:58:
53:35:3a:f6:09:e1:f3:62:df:ba:f0:43:b3:f2:2e:
88:39:40:fe:6e:6c:9f:5f:11:c2:a4:2c:7d:e5:bb:
33:43:67:11:89:99:b4:f4:da:20:5a:cc:1c:73:4e:
42:81:d8:f0:2a:32:03:d4:32:03:54:08:d1:b1:f5:
9d:df:71:52:13:af:b8:74:b6:17:01:ae:6f:04:0c:
a5:bf:bb:fb:53:56:92:fc:d7:44:4b:60:9a:2c:4c:
8a:7e:0e:53:4a:12:0a:ea:11:d2:e6:8c:e5:9c:d3:
90:b5:8f:16:40:59:d0:a8:24:c5:d8:aa:b6:74:5b:
0d:da:eb:81:21:d0:96:4f:4f:04:55:9a:1e:ca:d6:
f1:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:1F:8C:17:33:71:81:CA:9E:86:B4:9A:9B:90:16:B2:74:CF:D4:A2
X509v3 Authority Key Identifier:
keyid:26:63:F3:DB:15:2E:05:5A:C1:45:BD:BB:42:9E:01:86:54:20:4C:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JmPz2xUuBVrBRb27Qp4BhlQgTI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/Ah-MFzNxgcqehrSam5AWsnTP1KI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c8c6f6-595c-45b1-a76e-bd192676c9bb/1/JmPz2xUuBVrBRb27Qp4BhlQgTI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.65.91.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:6d:73:43:2e:b2:62:25:65:88:2f:ea:55:67:a1:01:e2:63:
9a:8a:53:34:4e:b9:72:c2:00:fb:5e:2d:09:86:67:22:f3:ef:
40:25:68:11:a9:41:67:70:65:b0:5a:f0:d1:04:5a:e3:6f:ba:
1f:99:f8:75:05:ed:f5:e3:2b:95:c3:7d:62:12:59:c0:53:00:
b6:09:71:af:cf:ca:5b:9e:e1:28:ea:26:ac:6d:64:1c:06:7f:
6c:6f:c4:49:93:9b:40:e3:55:70:7e:a8:2e:af:e6:8a:84:03:
f6:73:20:84:06:b2:db:0e:3a:36:52:3f:90:f8:01:71:44:f3:
3e:1e:89:9b:af:d9:6f:48:5e:e4:5a:f1:fc:34:b9:6a:c0:40:
3a:b4:42:06:77:01:4f:73:db:b1:b1:a0:52:dd:b3:13:5b:d2:
66:3b:f9:89:79:c7:86:76:e7:25:5b:fe:31:ef:79:85:72:36:
87:6b:a8:9e:a7:2a:4a:2a:b6:da:b9:e7:f7:35:81:6d:c0:ec:
d9:c6:0b:94:15:a6:74:1a:59:2e:bd:55:b1:5e:2e:4c:3a:2a:
7e:88:bc:31:86:a7:51:f5:aa:11:93:92:8c:4a:ab:47:53:2c:
5a:8a:fe:41:db:81:29:00:ce:b0:4f:ad:e3:67:30:b0:d5:c3:
da:7b:e1:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 12:13:55 2025 by rpki-client